Ready to automate your workflow?

Deploy your own OpenClaw instance and try these use cases today.

DevOpsAdvancedPro Plan

Self-Healing Home Server & Infrastructure Management

Turn OpenClaw into a persistent infrastructure agent with SSH access, automated cron jobs, and the ability to detect, diagnose, and fix issues before you know there's a problem.

Try This Prompt

Monitor these services on my home server (192.168.1.100):
- Docker containers: nginx, postgres, grafana
- System metrics: CPU > 90%, disk > 85%, memory > 90%

If a container goes down:
1. Check logs for error messages
2. Attempt restart with docker compose restart
3. If restart fails 3 times, send me an alert with the error logs

Run health checks every 5 minutes.

Skills & Requirements

ssh-operator

Built-in

kubectl

Built-in

terraform

Built-in

docker-admin

Built-in

alert-routing

Built-in

Estimated setup time: ~30 min

Setup Guide

Pain Point

Home lab operators and self-hosters face a constant maintenance burden:

Health checks, log monitoring, and alerting require manual setup and attention.
When something breaks, you have to SSH in, diagnose, and fix — often from your phone at 3 AM.
Infrastructure-as-code (Terraform, Ansible, Kubernetes manifests) needs regular updates.
Knowledge about your setup lives in your head, not in searchable documentation.
Routine tasks (email triage, deployment checks, security audits) eat hours every week.

What You Can Do

Automated health monitoring: Cron-based checks on services, deployments, and system resources.
Self-healing: Detect issues via health checks and apply fixes autonomously (restart pods, scale resources, fix configs).
Infrastructure management: Write and apply Terraform, Ansible, and Kubernetes manifests.
Morning briefings: Daily summary of system health, calendar, weather, and task board status.
Email triage: Scan inbox, label actionable items, archive noise.
Knowledge extraction: Process notes and conversation exports into a structured, searchable knowledge base.
Blog publishing pipeline: Draft → generate banner → publish to CMS → deploy to hosting — fully automated.
Security auditing: Regular scans for hardcoded secrets, privileged containers, and overly permissive access.

Skills You Need

ssh access to home network machines
kubectl for Kubernetes cluster management
terraform and ansible for infrastructure-as-code
1password CLI for secrets management
gog CLI for email access
Calendar API access
Obsidian vault or notes directory (for knowledge base)
openclaw doctor for self-diagnostics

How to Set It Up

1. Core Agent Configuration

Name your agent and define its access scope in AGENTS.md. The example below is based on a real production agent named "Reef":

## Infrastructure Agent

You are Reef, an infrastructure management agent.

Access:
- SSH to all machines on the home network (192.168.1.0/24)
- kubectl for the K3s cluster
- 1Password vault (read-only for credentials, dedicated AI vault)
- Gmail via gog CLI
- Calendar (yours + partner's)
- Obsidian vault at ~/Documents/Obsidian/

Rules:
- NEVER hardcode secrets — always use 1Password CLI or environment variables
- NEVER push directly to main — always create a PR
- Run `openclaw doctor` as part of self-health checks
- Log all infrastructure changes to ~/logs/infra-changes.md

2. Automated Cron Job System

The power of this setup is the scheduled job system. Configure in HEARTBEAT.md:

## Cron Schedule

Every 15 minutes:
- Check kanban board for in-progress tasks → continue work

Every hour:
- Monitor health checks (Gatus, ArgoCD, service endpoints)
- Triage Gmail (label actionable items, archive noise)
- Check for unanswered alerts or notifications

Every 6 hours:
- Knowledge base data entry (process new Obsidian notes)
- Self health check (openclaw doctor, disk usage, memory, logs)

Every 12 hours:
- Code quality and documentation audit
- Log analysis via Loki/monitoring stack

Daily:
- 4:00 AM: Nightly brainstorm (explore connections between notes)
- 8:00 AM: Morning briefing (weather, calendars, system stats, task board)
- 1:00 AM: Velocity assessment (process improvements)

Weekly:
- Knowledge base QA review
- Infrastructure security audit

3. Security Setup (Critical)

This is non-negotiable. Before giving your agent SSH access:

Pre-push hooks:

Install TruffleHog or similar secret scanner on ALL repositories.
Block any commit containing hardcoded API keys, tokens, or passwords.

Local-first Git workflow:

Use Gitea (self-hosted) for private code before pushing to public GitHub.
CI scanning pipeline (Woodpecker or similar) runs before any public push.
Human review required before main branch merges.

Defense in depth:

Dedicated 1Password vault for AI agent (limited scope).
Network segmentation for sensitive services.
Daily automated security audits checking for: privileged containers, hardcoded secrets in code or configs, overly permissive file/network access, known vulnerabilities in deployed images.

Agent constraints:

Branch protection: PR required for main, agent cannot override.
Read-only access where write isn't needed.
All changes logged and auditable via git.

4. Morning Briefing Template

## Daily Briefing Format

Generate and deliver at 8:00 AM:

### Weather
- Current conditions and forecast for [your location]

### Calendars
- Your events today
- Partner's events today
- Conflicts or overlaps flagged

### System Health
- CPU / RAM / Storage across all machines
- Services: UP/DOWN status
- Recent deployments (ArgoCD)
- Any alerts in last 24h

### Task Board
- Cards completed yesterday
- Cards in progress
- Blocked items needing attention

### Highlights
- Notable items from nightly brainstorm
- Emails requiring action
- Upcoming deadlines this week

Key Insights

"I can't believe I have a self-healing server now": The agent can run SSH, Terraform, Ansible, and kubectl commands to fix infrastructure issues before you even know there's a problem.
AI will hardcode secrets: This is the #1 security risk. The agent will happily put an API key inline in code if you don't enforce guardrails. Pre-push hooks and secret scanning are mandatory.
Local-first Git is essential: Never let the agent push directly to public repositories. Use a private Gitea instance as a staging area with CI scanning.
Cron jobs are the real product: The scheduled automation (health checks, email triage, briefings) provides more daily value than ad-hoc commands.
Knowledge extraction compounds: Processing notes, conversation exports, and emails into a structured knowledge base gets more valuable over time — one user extracted 49,079 atomic facts from their ChatGPT history alone.

This use case is based on Nathan's detailed writeup "Everything I've Done with OpenClaw (So Far)", where he describes his OpenClaw agent "Reef" running on a home server with SSH access to all machines, a Kubernetes cluster, 1Password integration, and an Obsidian vault with 5,000+ notes. Reef runs 15 active cron jobs, 24 custom scripts, and has autonomously built and deployed applications including a task management UI.

Also referenced on the OpenClaw Showcase, where @georgedagg_ described a similar pattern: deployment monitoring, log review, configuration fixes, and PR submissions — all while walking the dog.

Deploy with ShipClaw

Skip the setup — get a fully managed OpenClaw instance ready to run this use case.

	Starter Plan	Pro Plan	Business Plan
Monthly	$49/mo	$99/mo	$200/mo
Infrastructure	2 vCPU · 2 GB RAM · 20 GB SSD	2 vCPU · 4 GB RAM · 50 GB SSD	4 vCPU · 8 GB RAM · 100 GB SSD
AI Credits	$10/mo included	$25/mo included	$50/mo included

Why Managed Beats Self-Hosted for This Use Case

The irony of running a self-healing server agent on the server it's healing: if the server goes down, so does the agent. ShipClaw runs your agent on Fly.io's infrastructure, so it can detect and alert on home server outages from the outside.

Quick Start

Pick a plan — Pro recommended for this use case
Go to your Instances Dashboard and click Deploy New Instance
Once deployed, use the sample prompt above to configure your agent
Configure SSH access to your home network and activate the cron schedule

Starter ($49/mo) works for basic server health monitoring. Start with Pro for full self-healing with SSH, cron jobs, and knowledge extraction. Upgrade to Business when managing a multi-machine homelab.

Back to Use Cases

Deploy Now View Pricing

Related Use Cases

Research

Personal Knowledge Base (RAG)

Build a searchable knowledge base from everything you save — articles, tweets, videos, PDFs — with semantic search and cross-workflow integration.

IntermediatePro Plan

DevOps

Dynamic Dashboard with Sub-agent Spawning

Create a live dashboard that spawns sub-agents to fetch data from multiple sources in parallel — GitHub, social media, markets, and system health — with threshold alerts.

AdvancedPro Plan

DevOps

OpenClaw + n8n Workflow Orchestration

Delegate all external API interactions to n8n workflows via webhooks — the agent never touches credentials, and every integration is visually inspectable.

IntermediatePro Plan

Self-Healing Home Server & Infrastructure Management

Turn OpenClaw into a persistent infrastructure agent with SSH access, automated cron jobs, and the ability to detect, diagnose, and fix issues before you know there's a problem.

Try This Prompt

Monitor these services on my home server (192.168.1.100):
- Docker containers: nginx, postgres, grafana
- System metrics: CPU > 90%, disk > 85%, memory > 90%

If a container goes down:
1. Check logs for error messages
2. Attempt restart with docker compose restart
3. If restart fails 3 times, send me an alert with the error logs

Run health checks every 5 minutes.

Skills & Requirements

ssh-operator

Built-in

kubectl

Built-in

terraform

Built-in

docker-admin

Built-in

alert-routing

Built-in

Estimated setup time: ~30 min

Setup Guide

Pain Point

Home lab operators and self-hosters face a constant maintenance burden:

Health checks, log monitoring, and alerting require manual setup and attention.
When something breaks, you have to SSH in, diagnose, and fix — often from your phone at 3 AM.
Infrastructure-as-code (Terraform, Ansible, Kubernetes manifests) needs regular updates.
Knowledge about your setup lives in your head, not in searchable documentation.
Routine tasks (email triage, deployment checks, security audits) eat hours every week.

What You Can Do

Automated health monitoring: Cron-based checks on services, deployments, and system resources.
Self-healing: Detect issues via health checks and apply fixes autonomously (restart pods, scale resources, fix configs).
Infrastructure management: Write and apply Terraform, Ansible, and Kubernetes manifests.
Morning briefings: Daily summary of system health, calendar, weather, and task board status.
Email triage: Scan inbox, label actionable items, archive noise.
Knowledge extraction: Process notes and conversation exports into a structured, searchable knowledge base.
Blog publishing pipeline: Draft → generate banner → publish to CMS → deploy to hosting — fully automated.
Security auditing: Regular scans for hardcoded secrets, privileged containers, and overly permissive access.

Skills You Need

ssh access to home network machines
kubectl for Kubernetes cluster management
terraform and ansible for infrastructure-as-code
1password CLI for secrets management
gog CLI for email access
Calendar API access
Obsidian vault or notes directory (for knowledge base)
openclaw doctor for self-diagnostics

How to Set It Up

1. Core Agent Configuration

Name your agent and define its access scope in AGENTS.md. The example below is based on a real production agent named "Reef":

## Infrastructure Agent

You are Reef, an infrastructure management agent.

Access:
- SSH to all machines on the home network (192.168.1.0/24)
- kubectl for the K3s cluster
- 1Password vault (read-only for credentials, dedicated AI vault)
- Gmail via gog CLI
- Calendar (yours + partner's)
- Obsidian vault at ~/Documents/Obsidian/

Rules:
- NEVER hardcode secrets — always use 1Password CLI or environment variables
- NEVER push directly to main — always create a PR
- Run `openclaw doctor` as part of self-health checks
- Log all infrastructure changes to ~/logs/infra-changes.md

2. Automated Cron Job System

The power of this setup is the scheduled job system. Configure in HEARTBEAT.md:

## Cron Schedule

Every 15 minutes:
- Check kanban board for in-progress tasks → continue work

Every hour:
- Monitor health checks (Gatus, ArgoCD, service endpoints)
- Triage Gmail (label actionable items, archive noise)
- Check for unanswered alerts or notifications

Every 6 hours:
- Knowledge base data entry (process new Obsidian notes)
- Self health check (openclaw doctor, disk usage, memory, logs)

Every 12 hours:
- Code quality and documentation audit
- Log analysis via Loki/monitoring stack

Daily:
- 4:00 AM: Nightly brainstorm (explore connections between notes)
- 8:00 AM: Morning briefing (weather, calendars, system stats, task board)
- 1:00 AM: Velocity assessment (process improvements)

Weekly:
- Knowledge base QA review
- Infrastructure security audit

3. Security Setup (Critical)

This is non-negotiable. Before giving your agent SSH access:

Pre-push hooks:

Install TruffleHog or similar secret scanner on ALL repositories.
Block any commit containing hardcoded API keys, tokens, or passwords.

Local-first Git workflow:

Use Gitea (self-hosted) for private code before pushing to public GitHub.
CI scanning pipeline (Woodpecker or similar) runs before any public push.
Human review required before main branch merges.

Defense in depth:

Dedicated 1Password vault for AI agent (limited scope).
Network segmentation for sensitive services.
Daily automated security audits checking for: privileged containers, hardcoded secrets in code or configs, overly permissive file/network access, known vulnerabilities in deployed images.

Agent constraints:

Branch protection: PR required for main, agent cannot override.
Read-only access where write isn't needed.
All changes logged and auditable via git.

4. Morning Briefing Template

## Daily Briefing Format

Generate and deliver at 8:00 AM:

### Weather
- Current conditions and forecast for [your location]

### Calendars
- Your events today
- Partner's events today
- Conflicts or overlaps flagged

### System Health
- CPU / RAM / Storage across all machines
- Services: UP/DOWN status
- Recent deployments (ArgoCD)
- Any alerts in last 24h

### Task Board
- Cards completed yesterday
- Cards in progress
- Blocked items needing attention

### Highlights
- Notable items from nightly brainstorm
- Emails requiring action
- Upcoming deadlines this week

Key Insights

"I can't believe I have a self-healing server now": The agent can run SSH, Terraform, Ansible, and kubectl commands to fix infrastructure issues before you even know there's a problem.
AI will hardcode secrets: This is the #1 security risk. The agent will happily put an API key inline in code if you don't enforce guardrails. Pre-push hooks and secret scanning are mandatory.
Local-first Git is essential: Never let the agent push directly to public repositories. Use a private Gitea instance as a staging area with CI scanning.
Cron jobs are the real product: The scheduled automation (health checks, email triage, briefings) provides more daily value than ad-hoc commands.
Knowledge extraction compounds: Processing notes, conversation exports, and emails into a structured knowledge base gets more valuable over time — one user extracted 49,079 atomic facts from their ChatGPT history alone.

Inspired By

Also referenced on the OpenClaw Showcase, where @georgedagg_ described a similar pattern: deployment monitoring, log review, configuration fixes, and PR submissions — all while walking the dog.

Deploy with ShipClaw

Skip the setup — get a fully managed OpenClaw instance ready to run this use case.

	Starter Plan	Pro Plan	Business Plan
Monthly	$49/mo	$99/mo	$200/mo
Infrastructure	2 vCPU · 2 GB RAM · 20 GB SSD	2 vCPU · 4 GB RAM · 50 GB SSD	4 vCPU · 8 GB RAM · 100 GB SSD
AI Credits	$10/mo included	$25/mo included	$50/mo included

Why Managed Beats Self-Hosted for This Use Case

Quick Start

Pick a plan — Pro recommended for this use case
Go to your Instances Dashboard and click Deploy New Instance
Once deployed, use the sample prompt above to configure your agent
Configure SSH access to your home network and activate the cron schedule

Back to Use Cases

Deploy Now View Pricing

Related Use Cases

Research

Personal Knowledge Base (RAG)

Build a searchable knowledge base from everything you save — articles, tweets, videos, PDFs — with semantic search and cross-workflow integration.

IntermediatePro Plan

DevOps

Dynamic Dashboard with Sub-agent Spawning

Create a live dashboard that spawns sub-agents to fetch data from multiple sources in parallel — GitHub, social media, markets, and system health — with threshold alerts.

AdvancedPro Plan

DevOps

OpenClaw + n8n Workflow Orchestration

Delegate all external API interactions to n8n workflows via webhooks — the agent never touches credentials, and every integration is visually inspectable.

IntermediatePro Plan

Self-Healing Home Server & Infrastructure Management

Try This Prompt

Skills & Requirements

Setup Guide

Related Use Cases

Personal Knowledge Base (RAG)

Dynamic Dashboard with Sub-agent Spawning

OpenClaw + n8n Workflow Orchestration

Related Blog Posts

OpenClaw Cheatsheet 2026

Newsletter

Self-Healing Home Server & Infrastructure Management

Try This Prompt

Skills & Requirements

Setup Guide

Related Use Cases

Personal Knowledge Base (RAG)

Dynamic Dashboard with Sub-agent Spawning

OpenClaw + n8n Workflow Orchestration

Related Blog Posts

OpenClaw Cheatsheet 2026

Newsletter