Dependency Checker
Weekly scan for outdated or vulnerable dependencies across repos.
Template
Every Monday at 9am:
1. For each tracked repo, check for Dependabot alerts:
gh api repos/{owner}/{repo}/dependabot/alerts --jq '.[] | select(.state=="open")'
2. Check for outdated packages (npm outdated, pip list --outdated)
3. Categorize: critical security, major version bumps, minor updates
4. Post summary: repo name, alert count by severity, recommended actions
5. If critical vulnerabilities found, send an immediate notificationSetup
- 1
Copy the HEARTBEAT.md content below into your OpenClaw workspace at `~/.openclaw/workspace/HEARTBEAT.md`.
- 2
Install the required skills: `clawhub install github`, `clawhub install message`.
- 3
Open your agent channel (Telegram or any connected channel) and send a message to confirm it's running.
- 4
Your agent will follow the schedule in HEARTBEAT.md automatically. Check back in 30 minutes to see it in action.
- 5
Customize the template: adjust timing, thresholds, and notification targets to fit your setup.
Tip: The template uses placeholder values like {your brand} or {repo}. Replace these with your actual values before saving.
Version History
Install commands
clawhub install github
clawhub install messageFile type
Defines scheduled tasks. Runs on a heartbeat interval.
Version
Updated Mar 8, 2025
You might also like
GitHub PR Reviewer
Auto-review new PRs during business hours. Post summaries, flag issues.
~$0.50/day · ~5 min setup
CI Monitor
Watch GitHub Actions. Alert on failures with the relevant logs.
~$0.20/day · ~3 min setup
Deploy Tracker
Track deployments across repos. Daily changelog of what shipped.
~$0.15/day · ~5 min setup