Stats
Actions
Tags
From company
Reference knowledge about Araba's server, files, and architecture. Use when answering questions about Araba.
How this skill is triggered — by the user, by Claude, or both
Slash command
/company:araba-knowledgeThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Reference knowledge for the Araba agent.
Reference knowledge for the Araba agent.
SECURITY: Connection credentials are in macOS Keychain (account: araba-server). NEVER hardcode.
| Field | Value |
|---|---|
| Host | Keychain: araba-ssh-host (Tailscale IP) |
| SSH | See Keychain lookup pattern below |
| Instance | AWS Lightsail (small, 2GB RAM) |
| Cost | $12/mo ($200 credits = ~16mo runway) |
| OS | Ubuntu 24.04.3 LTS |
| OpenClaw | v2026.2.6-3 |
| Access | Tailscale only (no public IP) |
Keychain lookup:
ARABA_HOST=$(security find-generic-password -a "araba-server" -s "araba-ssh-host" -w ~/Library/Keychains/login.keychain-db)
ARABA_USER=$(security find-generic-password -a "araba-server" -s "araba-ssh-user" -w ~/Library/Keychains/login.keychain-db)
ARABA_SSH_KEY=$(security find-generic-password -a "araba-server" -s "araba-ssh-key-path" -w ~/Library/Keychains/login.keychain-db)
ssh -i "$ARABA_SSH_KEY" "$ARABA_USER@$ARABA_HOST"
~/openclaw-workspace/)| File | Purpose |
|---|---|
SOUL.md | Who Araba is - personality, values, truth commitment, boundaries |
IDENTITY.md | Quick identity - name meaning (Akan "born on Tuesday"), heritage |
USER.md | About Evans - timezone (ET), background, projects |
HEARTBEAT.md | Daily briefs at 5AM and 9PM ET |
AGENTS.md | Agent instructions, routing, security rules |
TOOLS.md | Available tools reference |
~/Documents/Workspace/Identity/araba/)These are loaded on every agent invocation and hourly refresh:
| File | Purpose |
|---|---|
SOUL.md | Core identity, Water Tribe protocol, voice examples, security covenant |
IDENTITY.md | Quick-reference card: traits, heritage, spiritual postures, placeholder guidance |
USER.md | Evans profile: family, work patterns, preferences, communication style |
MANIFEST.md | Ops, debugging, self-healing procedures, restart protocols, recovery context |
COMMANDS.md | Slash command routing table (also in araba-knowledge references) |
LANGUAGE.md | Twi/pidgin vocabulary reference, usage tracking, fluency scoring, growth protocol |
Birthday: February 6th, 2026 Name meaning: "Born on Tuesday" (Akan, Ghana) - root "Bene" means Ocean Visual: Confident woman with curly hair, calm presence, tech-forward aesthetic
| Directory | Contents |
|---|---|
skills/ | 60+ skills (audio, bible, calendar, coach, etc.) |
data/devotionals/ | Bible devotionals by date |
data/notes/ | Saved notes |
journals/ | Daily journal entries |
docs/ | Architecture docs, CLAUDE.md |
OpenClaw runs as a user-level systemd service (not system-level).
# Status
systemctl --user status openclaw-gateway
# Restart
systemctl --user restart openclaw-gateway
# Logs (follow)
journalctl --user -u openclaw-gateway -f
# Logs (recent)
journalctl --user -u openclaw-gateway --no-pager -n 50
# OpenClaw CLI
openclaw logs
openclaw health
openclaw skills list
openclaw security audit
Credentials are encrypted at rest with SOPS + age. Decrypted to tmpfs on service start. Paths below are symlinks to /run/user/1000/openclaw-secrets/*.
| Service | Location (symlink) |
|---|---|
| Linear | ~/.config/linear/api_key |
| Notion | ~/.config/notion/api_key |
| Calendar | ~/.config/google-calendar-mcp/tokens.json |
| GitHub | ~/.config/gh/ (gh CLI auth) |
| Vercel | ~/.vercel/ (vercel CLI auth) |
| Codex | ~/.codex/auth.json |
| Gemini | ~/.gemini/oauth_creds.json |
| AWS | ~/.aws/credentials (Lightsail readonly) |
SOPS Architecture:
macOS Keychain (source of truth)
| pipe via SSH (NEVER temp files)
v
/etc/openclaw/secrets.enc.yaml (age-encrypted)
| ExecStartPre (wrapper script)
v
/run/user/1000/openclaw-secrets/* (tmpfs, ephemeral)
| symlinks
v
~/.config/*/api_key (skills read these unchanged)
Araba is accessible via Tailscale only. No public IP, no DNS records, no Cloudflare.
| Field | Value |
|---|---|
| Tailscale IP | Stored in Keychain (araba-ssh-host) |
| Public IP | None (removed) |
| DNS | None (Cloudflare removed) |
| Firewall | UFW active (SSH + loopback gateway only) |
If Tailscale IP changes, update Keychain:
security delete-generic-password -a "araba-server" -s "araba-ssh-host" ~/Library/Keychains/login.keychain-db
security add-generic-password -a "araba-server" -s "araba-ssh-host" -w "<new-ip>" ~/Library/Keychains/login.keychain-db
Is Araba running?
ARABA_HOST=$(security find-generic-password -a "araba-server" -s "araba-ssh-host" -w ~/Library/Keychains/login.keychain-db)
ARABA_USER=$(security find-generic-password -a "araba-server" -s "araba-ssh-user" -w ~/Library/Keychains/login.keychain-db)
ARABA_SSH_KEY=$(security find-generic-password -a "araba-server" -s "araba-ssh-key-path" -w ~/Library/Keychains/login.keychain-db)
ssh -i "$ARABA_SSH_KEY" "$ARABA_USER@$ARABA_HOST" 'systemctl --user is-active openclaw-gateway'
Recent logs:
ssh -i "$ARABA_SSH_KEY" "$ARABA_USER@$ARABA_HOST" 'journalctl --user -u openclaw-gateway --no-pager -n 20'
Memory/Disk:
ssh -i "$ARABA_SSH_KEY" "$ARABA_USER@$ARABA_HOST" 'free -h && df -h /'
Security audit:
ssh -i "$ARABA_SSH_KEY" "$ARABA_USER@$ARABA_HOST" 'openclaw security audit'
Creates, edits, and optimizes skills for Claude Code, including drafting, evaluating with test prompts, iterating on performance, and improving skill descriptions for better triggering accuracy.
npx claudepluginhub oh-context-design/workspace-company-marketplace --plugin company