-
Notifications
You must be signed in to change notification settings - Fork 0
Bootstrap Scripts Guide
After deploying Loki, bootstrap scripts configure your agent with security baselines, development tools, and integrations. These scripts live in the essential/ and optional/ directories of the loki-agent repository.
Connect to your Loki instance and tell it:
"Read the files in the
essential/folder one by one and execute each bootstrap."
Each bootstrap:
- Is a markdown file with instructions your agent follows
- Is idempotent — safe to re-run if interrupted
- Creates a marker file (e.g.
memory/.bootstrapped-security) to track completion - Can be skipped if the marker already exists
Run these first, in any order. They set up the foundation your agent needs.
Enables GuardDuty, Security Hub, Inspector, and Access Analyzer monitoring. Sets up AWS Budgets alerts to catch cost surprises. Creates security-focused cron jobs for ongoing monitoring.
Installs the core AWS infrastructure skills that teach Loki how to provision and manage AWS resources following best practices. Covers CDK, CloudFormation, Lambda, API Gateway, DynamoDB, S3, ECS, and more.
Sets up MCPorter for managing MCP (Model Context Protocol) servers. Configures the AWS MCP servers for documentation search, API access, and CloudFormation schema lookups.
Enables vector-based memory search using Bedrock embeddings (Cohere Embed v4). Lets Loki search its own memory files semantically instead of just by keyword.
Establishes coding conventions: all code through version control, IaC-first infrastructure, naming standards, and project structure guidelines.
Configures OpenClaw to fetch secrets (API keys, tokens) from AWS Secrets Manager via the EC2 instance profile. No hardcoded secrets.
Sets up Playwright as an MCP server for browser automation — useful for testing web UIs, scraping, and automated workflows.
Configures a daily cron job that summarizes your AWS account status: costs, security findings, pipeline health, and resource changes.
Sets up disk monitoring, cleanup crons, and symlinks to keep the root volume lean. Moves heavy directories (Docker, tmp, builds) to the data volume.
Style guide for generating AWS architecture diagrams using draw.io with the re:Invent dark theme.
Add these based on your workflow needs.
Connects Loki to a Telegram bot for chat-based interaction. Includes setup instructions for BotFather and formatting rules for Telegram messages.
Exposes the OpenClaw control dashboard via CloudFront + Cognito authentication. Gives you a browser-based interface for managing your agent.
Wires up CodePipeline and GitHub Actions notifications to Telegram and/or OpenClaw. Get build started/passed/failed alerts.
Deploys a self-hosted Outline wiki on ECS Fargate with Aurora PostgreSQL. Great for team knowledge sharing and documentation.
Adds a GitHub Action that runs Claude Code for automatic code review on PRs and commits.
Advanced model setup: configure primary/fallback models, LiteLLM proxy routing, cost optimization between Opus and Sonnet.
Tips for reducing system prompt size when hitting context limits. Covers workspace file pruning, memory consolidation, and skill management.