nemoclaw-contributor-onboard
准备 NemoClaw 源代码检出,通过仓库的一键设置和就绪检查实现合规贡献。在新贡献者询问时使用…
npx skills add https://github.com/nvidia/nemoclaw --skill nemoclaw-contributor-onboardOnboard a NemoClaw Contributor
Use the repository setup script as the executable source of truth. Do not duplicate its dependency, build, hook, CLI-exposure, or readiness logic in agent commands.
Establish Trust First
- Read the root
AGENTS.mdandCONTRIBUTING.mdcompletely. - Inspect the worktree and current branch without discarding or overwriting existing changes.
- Refresh the trusted
origin/mainreference, then compare the entire checkout/worktree diff against that up-to-date base before executing any checkout-local code. Include staged, unstaged, and untracked files; review lockfiles and all transitively executed source, not only the entry script or package manifests. - If any execution surface differs from trusted
origin/main, review the diff and obtain explicit approval before running it.
Route by Intent
- Readiness only: run
./scripts/dev-setup.sh --doctorand never run setup, repair, CLI exposure, runtime onboarding, or the pinned agent. Use./scripts/dev-setup.sh --doctor --jsonwhen a machine-readable report helps. - Initial checkout setup: run
./scripts/dev-setup.shfrom the repository root. - Explicit repository repair: run
./scripts/dev-setup.sh --repaironly when the user asks to repair or retry repository-local setup. - CLI exposure: after explicit approval, run
./scripts/dev-setup.sh --expose-cli. - Runtime onboarding: after explicit approval, run
./scripts/dev-setup.sh --with-runtime.
The default and repair modes may update repository-local dependencies, builds, hooks, and the root Python environment.
They must not create a gateway or sandbox or expose a host-visible nemoclaw command.
CLI exposure is an explicit opt-in that may use an npm link or a user-local shim.
Handle User-Controlled Changes
Pause and obtain explicit approval before installing or changing host packages, starting or replacing a container runtime, accepting a license, generating or registering a signing key, changing GitHub state, or changing global Git configuration.
- Ask for contributor name and email only when the doctor reports that identity is missing.
- Prefer repository-local Git identity changes when the user approves them.
- Use
gh auth login -h github.comfor missing GitHub authentication and pause for browser or device authentication. - Let the user choose and register a Git-supported commit-signing key.
- Follow
../_shared/git-github-hard-stop.mdfor authentication, authorization, SSH, remote-access, or push failures. - Never print tokens, credential values, private keys, or command output that may contain them.
- Never place secrets in command arguments, generated reports, or tracked files.
After an approved host, account, identity, or signing remediation, rerun npm run dev:doctor or ./scripts/dev-setup.sh --doctor instead of rerunning setup.
Reserve setup and --repair for repository-local dependency, build, or hook repair.
Decide on Runtime Onboarding
Ask whether the intended issue requires a live gateway or sandbox after source setup is ready. Documentation work and isolated unit tests normally do not require runtime onboarding.
If runtime validation is required and the user approves it, run:
./scripts/dev-setup.sh --with-runtime
This delegates to interactive nemoclaw onboard and also opts into development CLI exposure as part of that approved flow.
Do not preselect third-party software acceptance, inference provider or model, credentials, sandbox name or resources, messaging integrations, or network policy unless the user already supplied those decisions.
Launch the Pinned Agent Only on Request
When the user specifically asks to use the repository-pinned coding agent, run the doctor first. If readiness fails, report the remediation and obtain authorization for the matching setup or repair mode rather than mutating the checkout automatically. When readiness passes, run:
npm run agent
Pass user-supplied Pi arguments after --.
Do not install or invoke a global Pi binary.
Prepare for the First PR
Before the contributor starts implementation, explain this workflow:
- Create a feature branch from current
main. - Use Conventional Commits in
<type>(<scope>): <description>form. - Run tests targeted to the changed behavior and
npm run docsfor documentation changes. - Commit with configured signing so every pushed commit appears as
Verifiedon GitHub. - Include
Signed-off-by: Name <email>in the PR description for DCO compliance. - Follow
.github/PULL_REQUEST_TEMPLATE.mdand monitor required CI and automated review feedback.
Use nemoclaw-contributor-create-pr when the user asks to publish the changes.
Do not create a branch, commit, push, or PR unless the user's request includes that action.
Report the Result
Summarize repository-local setup performed, doctor status, user-controlled remediations still needed, whether CLI exposure or runtime onboarding ran, and the next safe contributor action.