ClawHub
Code PluginExecutes codesource-linked

OrgX for OpenClaw

Persistent organizational memory and coordination for OpenClaw agents

Community code plugin. Review compatibility and verification before install.
@useorgx/openclaw-plugin · runtime id orgx
Install
openclaw plugins install clawhub:@useorgx/openclaw-plugin
Latest Release
Version 0.7.30
Compatibility
{
  "builtWithOpenClawVersion": "2026.3.24",
  "minGatewayVersion": "2026.1.0",
  "pluginApiRange": ">=2026.1.0",
  "pluginSdkVersion": "2026.3.24"
}
Capabilities
{
  "bundledSkills": [],
  "capabilityTags": [
    "executes-code"
  ],
  "channels": [],
  "commandNames": [],
  "configSchema": true,
  "configUiHints": false,
  "executesCode": true,
  "hooks": [],
  "httpRouteCount": 0,
  "materializesDependencies": false,
  "providers": [],
  "runtimeId": "orgx",
  "serviceNames": [],
  "setupEntry": false,
  "toolNames": []
}
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The code and SKILL.md match the claimed purpose (entity graph, dashboard, local MCP bridge, background sync). However the registry metadata declares no required env vars or primary credential even though the README/SKILL.md describes an API key, telemetry toggles (ORGX_TELEMETRY_ENABLED / ORGX_TELEMETRY_DISABLED / POSTHOG_DISABLED), and optional MCP client auto-configuration—these should have been declared. Also the package contains a full dashboard/dist and many compiled assets, while the registry lists 'No install spec / instruction-only', which is an incoherence to confirm.
Instruction Scope
Runtime instructions are within the scope of an OrgX coordination plugin (install via openclaw plugin manager, browser pairing, optional MCP edits, local state files under ~/.config/useorgx and ~/.openclaw/orgx-outbox). They do reference writing/updating client config files (~/.claude/mcp.json, ~/.codex/config.toml, ~/.cursor/mcp.json) and running a background sync/watchdog process if enabled—these are powerful actions but described as opt-in. The SKILL.md contains prompt-injection signals (system-prompt-override, unicode-control-chars) flagged by the pre-scan, which may indicate embedded control characters or manipulative content in the instructions and should be inspected manually.
Install Mechanism
No external downloads or obscure URLs are referenced in the SKILL.md beyond the OrgX domains (https://www.useorgx.com, https://mcp.useorgx.com/mcp) — that is expected. The higher risk signal is that the registry lists 'No install spec — instruction-only' while the package clearly contains hundreds of code/dist files (dashboard, compiled JS, openclaw.plugin.json, package.json). Confirm how the plugin will be installed (via the OpenClaw plugin installer or npm) and whether bundled code is extracted/executed on install. The included assets appear to be standard build outputs (JS/CSS) for a dashboard rather than a remote fetch.
!
Credentials
The SKILL.md describes storing API credentials locally and references telemetry-related environment variables; yet requires.env and primary credential fields in the registry are empty. That is a meaningful omission: an API key/capability to update MCP client config files and read/write local auth files is central to the plugin's function and should be declared. The plugin may also modify other client config files (Claude/Codex/Cursor) if you enable auto-configuration—this broad access is disproportionate if not explicitly documented in the registry metadata.
Persistence & Privilege
The plugin runs a background sync service and can launch a gateway watchdog process; it writes persistent local files under user config paths. It does not set always:true in registry metadata (good), and auto-modification of MCP client configs is opt-in. Still, persistent background operation and local config writes are significant privileges and should be enabled only after reviewing source and explicit consent in the dashboard.
Scan Findings in Context
[system-prompt-override] unexpected: The SKILL.md triggered a 'system-prompt-override' pattern. OrgX's instructions should not need to include prompt control sequences; this may indicate embedded/invisible control text or formatting artifacts. Inspect SKILL.md and included files for suspicious control characters or injection attempts before trusting automated evaluation.
[unicode-control-chars] unexpected: Control/unicode characters were detected in SKILL.md content. These are not expected for normal README/instruction text and can be used to obfuscate or manipulate prompt interpreters. Manually open the SKILL.md in a hex-aware editor to confirm no hidden characters are present.
What to consider before installing
What to check before installing OrgX: - Metadata mismatch: The package contains many compiled files and a plugin manifest, but the registry entry lists 'No install spec' and declares no required env vars or primary credential. Ask the maintainer to clarify the install mechanism and to list required env vars (API key, telemetry toggles) in registry metadata. - Credentials: OrgX uses an API key stored locally and may optionally auto-configure other MCP clients (~/.claude/mcp.json, ~/.codex/config.toml, ~/.cursor/mcp.json). Treat that as sensitive: prefer the manual API-key pairing option and review any backups the plugin claims to create before allowing automatic edits. - Persistent processes & local files: The plugin runs a background sync service and a watchdog by default as part of normal operation. If you do not want persistent services, verify how to disable them (e.g., ORGX_DISABLE_GATEWAY_WATCHDOG=1) and where files are written (~/.config/useorgx, ~/.openclaw/orgx-outbox). Confirm file permissions and review stored auth.json to ensure no plaintext secrets are exposed. - Telemetry: Telemetry is off by default according to SKILL.md, but PostHog code is present. Confirm how to disable telemetry (ORGX_TELEMETRY_DISABLED, POSTHOG_DISABLED) and verify the default behavior in the shipped code (package.json / telemetry modules). - Prompt-injection signals: The SKILL.md triggered 'system-prompt-override' and 'unicode-control-chars' detections. Open the SKILL.md and any README in a text editor that can show hidden control characters. If you find strange control characters or large embedded blocks not meant for humans, do not install until clarified. - Source review: The package contains a 'dist' and a GitHub link is provided. Review the repository (https://github.com/useorgx) for source history, maintainer identity, issues, and release process. Prefer to inspect openclaw.plugin.json and package.json for install scripts, postinstall hooks, and any child_process/spawn calls that could execute arbitrary commands. - Network endpoints: OrgX communicates with https://www.useorgx.com and https://mcp.useorgx.com/mcp as part of pairing and sync. Verify these domains (TLS certificate, organization, expected API) and ensure your environment's network controls/logging can monitor plugin traffic. - Least privilege: Only enable optional behaviors that you need (managed agent suite provisioning, MCP auto-configuration, telemetry). Use manual key setup if you want tighter control. If possible, run the plugin in a constrained environment or test workspace before enabling it in production. If you want, I can: 1) point to the specific files to inspect first (openclaw.plugin.json, package.json, auth-store.js, and any postinstall hooks), 2) extract and show small excerpts of SKILL.md in a control-character–visible form, or 3) summarize network-related code paths found in the dist files.
dist/gateway-watchdog.js:86
Shell command execution detected (child_process).
dist/http/helpers/autopilot-runtime.js:212
Shell command execution detected (child_process).
dist/http/helpers/autopilot-slice-utils.js:669
Shell command execution detected (child_process).
dist/http/helpers/openclaw-cli.js:22
Shell command execution detected (child_process).
dist/http/routes/live-legacy.js:367
Shell command execution detected (child_process).
dist/http/routes/live-terminal.js:75
Shell command execution detected (child_process).
dist/stores/sqlite-state.js:89
Shell command execution detected (child_process).
dist/auth/flows.js:31
Environment variable access combined with network send.
dist/contracts/client.js:25
Environment variable access combined with network send.
dist/gateway-watchdog.js:37
Environment variable access combined with network send.
dist/hooks/post-reporting-event.mjs:140
Environment variable access combined with network send.
dist/http/helpers/llm-client.js:52
Environment variable access combined with network send.
dist/http/index.js:224
Environment variable access combined with network send.
dist/index.js:123
Environment variable access combined with network send.
dist/telemetry/posthog.js:17
Environment variable access combined with network send.
dist/tools/core-tools.js:1597
Environment variable access combined with network send.
!
dist/gateway-watchdog.js:1
File read combined with network send (possible exfiltration).
!
dist/http/index.js:20
File read combined with network send (possible exfiltration).
!
dist/index.js:17
File read combined with network send (possible exfiltration).
Patterns worth reviewing
These patterns may indicate risky behavior. Check the VirusTotal and OpenClaw results above for context-aware analysis before installing.
Verification
{
  "hasProvenance": false,
  "scanStatus": "clean",
  "scope": "artifact-only",
  "sourceCommit": "1a724e48ac62485d0e249ded3681f02b9b6ecf01",
  "sourceRepo": "useorgx/openclaw-plugin",
  "sourceTag": "release/v0.7.30",
  "summary": "Validated package structure and linked the release to source metadata.",
  "tier": "source-linked"
}
Tags
{
  "latest": "0.7.30"
}

OrgX for OpenClaw

Your agents are capable. They just can't remember yesterday.

OpenClaw agents are powerful. They write code, manage files, browse the web, and execute complex tasks. But every session starts from zero. Your agents do not know what the other agents decided. They do not know what you approved last Tuesday. They cannot build on work from three days ago without you manually pasting context back in.

You are the one holding it all together. You are the human API.

OrgX fixes this. It gives your OpenClaw agents persistent organizational memory, shared structure, and coordinated execution so they stop working like strangers and start working like a team.

What changes after you install this

Before OrgXAfter OrgX
Each agent starts every session with amnesiaAgents query decisions, context, and history from prior sessions
You manually stitch context between agentsAgents read and write to a shared entity graph: initiatives, milestones, decisions, tasks
"What was I working on?" requires you to rememberThe morning brief tells your agents, and you, exactly where things stand
Running 5+ agents means 5+ unsyncable contextsOne coordination layer across all agents and sessions
Heartbeat files and markdown workaroundsTyped organizational structure with semantic relationships

Install

# From your OpenClaw workspace
openclaw plugins install clawhub:@useorgx/openclaw-plugin

# npm also works if you prefer the package directly
openclaw plugins install @useorgx/openclaw-plugin

Then open the OrgX dashboard in your OpenClaw gateway, click Connect OrgX, and approve the browser pairing flow. First sync runs automatically after connect.

Agent-suite provisioning is opt-in. MCP client config edits are also opt-in. You can review and apply the managed suite later from Settings -> Agent Suite in the dashboard, and you can explicitly enable MCP client auto-configuration in plugin config if you want that behavior.

Manual key setup is still available if you prefer it. Use the onboarding panel and choose Manual API key.

What you get

Persistent Organizational Memory

Your agents can query what happened in past sessions. Decisions persist. Context accumulates. An agent spawned today can ask, "What did we decide about the API design last week?" and get an answer.

Optional Agent Suite Provisioning

OrgX can create managed agent workspaces, install coordinated configurations, and preserve your local overrides when you explicitly apply the suite. Your existing setup does not get clobbered. It gets enhanced.

Shared Entity Graph

Initiatives, workstreams, milestones, decisions, and tasks: all structured, all queryable, all shared across your agents. This is not a flat to-do list. It is a model of how your work actually connects.

Live Dashboard

See what your agents are doing, what decisions are pending, and what is blocked. One view across your entire agent operation.

Local MCP Bridge

OrgX connects through MCP, so the coordination layer can live wherever your agents work. The plugin exposes a local bridge at /orgx/mcp. If you want Claude, Cursor, or Codex wired to that bridge automatically, you can explicitly enable that behavior in plugin config.

How it works with your existing setup

OrgX does not replace your OpenClaw agents or change how they work. It adds a shared memory and coordination layer underneath them.

┌─────────────────────────────────────────┐
│           Your OpenClaw Agents          │
│  (coding, research, marketing, ops...)  │
└──────────────┬──────────────────────────┘
               │ read/write
┌──────────────▼──────────────────────────┐
│          OrgX Entity Graph              │
│  decisions · initiatives · milestones   │
│  tasks · memory · agent trust levels    │
└──────────────┬──────────────────────────┘
               │ persists across
┌──────────────▼──────────────────────────┐
│     Every session. Every agent.         │
│     Every tool. Forever.                │
└─────────────────────────────────────────┘

Your agents keep their skills, configurations, and autonomy. They just gain the ability to remember, coordinate, and build on each other's work.

vs. heartbeat files, Paperclip, and manual context

ApproachMemoryStructureCross-agent coordination
Heartbeat .md filesFile-based, fragileFlat task listsManual
PaperclipFile-based + schedulesOrg chart + ticketsDelegation via hierarchy
OrgXTyped entity graphSemantic: initiatives -> workstreams -> milestones -> decisions -> tasksShared memory + trust architecture + autonomous coordination

Heartbeat files are a workaround. Paperclip organizes the workaround. OrgX removes the need for the workaround entirely.

Quick start: scaffold your first initiative

After connecting, try this in any OpenClaw agent session:

Scaffold an initiative called "MVP Launch" with workstreams for engineering, marketing, and operations.

OrgX creates the structure, and every agent in your setup can query and contribute to it. When your engineering agent finishes a task, your marketing agent can operate against the same shared context.

Need help setting this up for your specific workflow?

OrgX Amplify is our guided setup service for founders and teams running serious agent operations. We configure OrgX for your exact stack, migrate your existing context, and get you operational in a week.

-> Book an Amplify call

Security and transparency

OrgX is designed for developers who want to know what a plugin changes before they install it.

Local files the plugin may write

The plugin stores its own auth and local state under:

  • ~/.config/useorgx/openclaw-plugin/auth.json
  • ~/.config/useorgx/openclaw-plugin/installation.json
  • ~/.config/useorgx/openclaw-plugin/snapshot.json
  • ~/.openclaw/orgx-outbox/

If you explicitly enable MCP client auto-configuration, the plugin may update supported client config files and create timestamped backups before writing:

  • ~/.claude/mcp.json
  • ~/.codex/config.toml
  • ~/.cursor/mcp.json

If you choose to apply the managed OrgX agent suite, the plugin may also create or update managed OpenClaw workspace files. Conflict detection is used to avoid silently overwriting out-of-band edits.

Credentials

Browser pairing and manual API-key setup both store credentials locally on your machine. Auth files are written with restricted filesystem permissions. The current credential store is file-based rather than OS-keychain-backed. The README and plugin UI intentionally avoid printing full key values.

Network calls

The plugin talks to OrgX services for pairing, sync, MCP, and dashboard-backed workflows:

  • https://www.useorgx.com
  • https://mcp.useorgx.com/mcp

Telemetry

Product telemetry is off by default. PostHog events are only sent if you explicitly enable telemetry with environment variables such as ORGX_TELEMETRY_ENABLED. Telemetry can also be disabled via ORGX_TELEMETRY_DISABLED, OPENCLAW_TELEMETRY_DISABLED, or POSTHOG_DISABLED.

Background processes and local execution

The plugin runs a background sync service as part of normal operation. It can also start a local gateway watchdog process to keep the OpenClaw gateway reachable; if you do not want that behavior, set ORGX_DISABLE_GATEWAY_WATCHDOG=1.

Agent turns, terminal opens, and other openclaw CLI child-process actions are only triggered by explicit runtime or dashboard actions. They are not part of the passive install path.

What the plugin does not do by default

  • It does not auto-install the managed OrgX agent suite unless you enable that behavior.
  • It does not patch Claude, Cursor, or Codex MCP config files unless you enable that behavior.
  • It does not send product telemetry unless you explicitly enable it.

Links

Built by Hope - solo founder, bioengineering background, self-taught engineer. Building the coordination layer for the agent era since a 2016 ML thesis on directed network evolution.

Technical reference

What's New (0.7.x)

  • Mission Control lifecycle UX now cleanly separates Next Up queue intent from In Progress runtime state, with stronger task/workstream hierarchy rendering and queue controls (Play, Pin, Reorder, Move, Bulk, Clear).
  • Autopilot and manual Play now share the same lifecycle contract and spawn-guard behavior, including deterministic blocked/needs-decision handling surfaced in triage and activity.
  • Workspace-scoped reads/writes were hardened across Mission Control graph, Next Up, slices, and snapshot surfaces to avoid cross-workspace leakage.
  • Activity and session detail surfaces were upgraded with clearer run outcome metadata, safer error messaging, and improved context labels.
  • Dashboard build output was stabilized by fixing chunk-splitting behavior and eliminating circular-chunk warnings in production builds.

Architecture Overview

                         ┌──────────────────────────────┐
                         │       OrgX Cloud API         │
                         │   (useorgx.com)              │
                         │                              │
                         │  Snapshots, Decisions,       │
                         │  Activity, Entity CRUD,      │
                         │  Quality Gates, Model Routing │
                         └──────────────┬───────────────┘
                                        │
                              Authenticated OrgX session
                                        │
┌───────────────────────────────────────┼───────────────────────────────────────┐
│  OpenClaw Gateway (localhost:18789)   │                                       │
│  ┌────────────────────────────────────┴──────────────────────────────────┐    │
│  │                     OrgX Plugin (this repo)                          │    │
│  │                                                                      │    │
│  │  ┌──────────────┐   ┌──────────────┐   ┌─────────────────────────┐  │    │
│  │  │  OrgXClient   │   │   Outbox      │   │   State Stores          │  │    │
│  │  │              │   │              │   │                         │  │    │
│  │  │  API calls   │   │  Offline     │   │  auth-store    (creds) │  │    │
│  │  │  to cloud    │◄──│  event queue │   │  snapshot-store (cache) │  │    │
│  │  │              │   │  + replay    │   │  activity-store (feed)  │  │    │
│  │  └──────┬───────┘   └──────────────┘   │  agent-run-store       │  │    │
│  │         │                               │  next-up-queue-store   │  │    │
│  │         │                               └─────────────────────────┘  │    │
│  │         │                                                            │    │
│  │  ┌──────┴──────────────────────────────────────────────────────────┐ │    │
│  │  │                    HTTP Handler                                 │ │    │
│  │  │                                                                 │ │    │
│  │  │  /orgx/live          → Dashboard SPA (Vite-built React app)    │ │    │
│  │  │  /orgx/api/*         → Modular REST routes                    │ │    │
│  │  │  /orgx/mcp           → MCP bridge (tools/list, tools/call)     │ │    │
│  │  │  /orgx/api/live/*    → Polling + SSE for real-time data        │ │    │
│  │  └────────────────────────────────┬────────────────────────────────┘ │    │
│  │                                   │                                  │    │
│  │  ┌────────────────────────────────┼─────────────────────────────┐   │    │
│  │  │  Background Services           │                             │   │    │
│  │  │                                │                             │   │    │
│  │  │  Sync service (every 5min)     │  Gateway watchdog           │   │    │
│  │  │  Agent suite provisioning      │  MCP client auto-config     │   │    │
│  │  │  Auto-continue pipeline        │  Worker supervisor          │   │    │
│  │  └────────────────────────────────┘─────────────────────────────┘   │    │
│  └──────────────────────────────────────────────────────────────────────┘    │
│                                      │                                       │
│  ┌───────────────────────────────────┴──────────────────────────────────┐    │
│  │  MCP Tools (exposed to agents)                                       │    │
│  │                                                                      │    │
│  │  orgx_status         orgx_spawn_check      orgx_create_entity       │    │
│  │  orgx_sync           orgx_quality_score     orgx_update_entity       │    │
│  │  orgx_emit_activity  orgx_request_decision  orgx_list_entities       │    │
│  └──────────────────────────────────────────────────────────────────────┘    │
└──────────────────────────────────────────────────────────────────────────────┘
                                        │
                            SSE primary + polling fallback
                                        │
                         ┌──────────────┴───────────────┐
                         │     React Dashboard          │
                         │     /orgx/live                │
                         │                              │
                         │  Mission Control (hierarchy) │
                         │  Activity Timeline           │
                         │  Decision Queue (approve/    │
                         │    reject with notes)        │
                         │  Session Inspector           │
                         │  Agent Provisioning          │
                         └──────────────────────────────┘

Data Flow

Agent calls MCP tool (e.g. orgx_emit_activity)
  → Plugin validates + forwards to OrgX Cloud
  → Cloud persists, returns updated state
  → Plugin caches snapshot locally
  → Dashboard subscribes to /orgx/api/live/stream (SSE)
  → Falls back to /orgx/api/live/snapshot-v2 polling when needed
  → useLiveData hook merges + renders

If cloud is unreachable:
  → Plugin queues event in Outbox (~/.orgx/plugin/outbox/)
  → Dashboard reads from cached snapshot + outbox replay
  → On reconnect, outbox auto-replays with backoff

Installation

openclaw plugins install @useorgx/openclaw-plugin

Local MCP Bridge (Claude/Codex/Cursor)

This plugin exposes the same orgx_* tools over a local MCP HTTP endpoint served by the OpenClaw gateway:

  • URL: http://127.0.0.1:18789/orgx/mcp (port follows your OpenClaw gateway config)
  • Why: avoids the separate cloud MCP OAuth flow and keeps your OrgX credential in the plugin's local credential store.

If you explicitly enable MCP client auto-configuration, the plugin can patch:

  • ~/.claude/mcp.json (adds mcpServers["orgx-openclaw"] pointing to the local bridge)
  • ~/.codex/config.toml (add/update [mcp_servers."orgx-openclaw"].url to the local bridge)
  • ~/.cursor/mcp.json (adds mcpServers["orgx-openclaw"] pointing to the local bridge)

Each file is backed up first (only when a change is needed) with a *.bak.<timestamp>-<rand> suffix.

You can also force-disable this path with ORGX_DISABLE_MCP_CLIENT_AUTOCONFIG=1.

Or manually add to your OpenClaw config:

{
  "plugins": {
    "load": {
      "paths": ["@useorgx/openclaw-plugin"]
    },
    "entries": {
      "orgx": {
        "enabled": true,
        "config": {
          "apiKey": "<orgx-api-key>"
        }
      }
    }
  }
}

Configuration

OptionTypeDefaultDescription
apiKeystringYour OrgX API key (optional if you use browser pairing from /orgx/live)
baseUrlstringhttps://www.useorgx.comOrgX API base URL
syncIntervalMsnumber300000Background sync interval (ms)
autoInstallAgentSuiteOnConnectbooleanfalseAutomatically apply the managed OrgX agent suite after connect/sync
autoConfigureMcpClientsOnConnectbooleanfalseAutomatically patch detected Claude, Cursor, and Codex MCP client configs after browser pairing
enabledbooleantrueEnable/disable the plugin
dashboardEnabledbooleantrueEnable the live dashboard at /orgx/live

Environment overrides:

  • ORGX_API_KEY overrides apiKey
  • ORGX_BASE_URL overrides baseUrl

Features

MCP Tools

The plugin currently registers 30 MCP tools from src/tools/core-tools.ts.

Core sync/reporting:

  • orgx_status
  • orgx_sync
  • orgx_emit_activity
  • orgx_report_progress
  • orgx_register_artifact

Delegation, checkpoints, run control:

  • orgx_delegation_preflight
  • orgx_spawn_check
  • orgx_run_action
  • orgx_checkpoints_list
  • orgx_checkpoint_restore

Quality, proof, and outcomes:

  • orgx_quality_score
  • orgx_proof_status
  • orgx_verify_completion
  • orgx_record_outcome
  • orgx_get_outcome_attribution

Entity and stream management:

  • orgx_create_entity
  • orgx_update_entity
  • orgx_list_entities
  • orgx_reassign_stream
  • orgx_reassign_streams
  • orgx_apply_changeset
  • update_stream_progress

Decision and config/policy:

  • orgx_request_decision
  • orgx_sentinel_catalog
  • list_agent_configs
  • get_agent_config
  • update_agent_config

Session continuity:

  • orgx_agent_sessions
  • orgx_resume_agent_session
  • orgx_clear_agent_session

The local MCP bridge endpoints are:

  • /orgx/mcp (full tool surface)
  • /orgx/mcp/{domain} (domain-scoped subset)

Live Dashboard

Access the OrgX command center at http://127.0.0.1:18789/orgx/live (or your gateway URL). The Vite dev server (http://localhost:5173) is only for local preview; the installed plugin runs on the OpenClaw port (18789).

Shows:

  • Mission Control hierarchy (initiative -> workstream -> milestone -> task)
  • Next Up queue controls (play/pin/reorder/move/bulk/clear)
  • In Progress runtime lane for active slices and agents
  • Activity feed + detail modal with decision/review context
  • Triage queue for blocked and needs-decision work
  • Outbox replay visibility for buffered offline events

Auto-Continue (Scaffold to Agent Execution)

If you scaffold an initiative from chat (for example, "plan X" then create/scaffold), OrgX can automatically execute queued slices through the auto-continue pipeline.

Execution behavior:

  • Play on a Next Up card executes the same guarded lifecycle used by autopilot.
  • manual automation level blocks auto-dispatch unless explicitly triggered.
  • supervised automation level executes one slice then pauses.
  • active automation level continues dispatch until completion, block, or explicit stop.

Troubleshooting:

  • If agents do not start automatically, say: start agents to re-trigger dispatch.
  • Open Mission Control to inspect auto-continue status (ready, active, blocked) and any upgrade/approval decisions.

Model Routing

OrgX automatically routes tasks to the appropriate model tier:

Task TypeModel TierExample Models
Architecture, strategy, RFCsopusclaude-opus-4
Implementation, code, docssonnetclaude-sonnet-4
Status checks, formattinglocalqwen2.5-coder

Quality Gates

Before spawning sub-agents, check the quality gate:

Agent calls orgx_spawn_check(domain: "engineering", taskId: "...")
  -> OrgX checks: rate limit, quality score threshold, task assignment
  -> Returns: { allowed: true, modelTier: "sonnet" }
  -> Agent spawns with recommended model

BYOK (Bring Your Own Keys)

If you use BYOK models (OpenAI, Anthropic, OpenRouter), store your provider keys in OpenClaw. The OrgX plugin reads OpenClaw settings and injects keys when it invokes OpenClaw CLI commands, so you do not need to put provider keys in the OrgX plugin config.

Diagnostics

  • openclaw orgx doctor runs local checks and can optionally probe the OrgX API.
  • openclaw gateway status --json shows the OpenClaw gateway port and runtime state.

Gateway Watchdog

The plugin starts a lightweight watchdog daemon that periodically probes the local OpenClaw gateway and restarts it if needed.

  • Disable: ORGX_DISABLE_GATEWAY_WATCHDOG=1
  • Tune: ORGX_GATEWAY_WATCHDOG_INTERVAL_MS, ORGX_GATEWAY_WATCHDOG_FAILURES, ORGX_GATEWAY_WATCHDOG_TIMEOUT_MS

Feature Matrix

CapabilityStatusNotes
Browser pairing onboardingDonePOST /orgx/api/onboarding/start + polling flow
Manual API key fallbackDoneIn onboarding gate and manual-key endpoint
Live sessions + activity + handoffsDoneSSE-first transport with snapshot fallback
Mission Control hierarchy viewDoneInitiative -> workstream -> milestone -> task
Next Up -> In Progress lifecycle lanesDoneQueue intent separated from active runtime state
Play + Autopilot unified contractDoneShared spawn-guard + decision semantics
Workspace-scoped mission control readsDoneScope-safe graph/queue/slice retrieval
Run control shortcutsDonePause/resume/cancel/checkpoint/rollback in Session Detail
Outbox buffering + replayDoneLocal queue + auto replay on sync
Outbox observability in dashboardDonePending/replay indicators in header/notifications
Triage queue actionsDoneGET/POST /orgx/api/live/triage* for blocked/review items
Plugin diagnostics (doctor)DoneCLI + GET /orgx/api/health
Full-auto codex dispatchDonenpm run job:dispatch with retries + rollups

CLI Commands

# Show org status
openclaw orgx status

# Manual sync
openclaw orgx sync --memory "..." --daily-log "..."

# Diagnostics (local + remote probe)
openclaw orgx doctor

# Diagnostics JSON without remote probe
openclaw orgx doctor --json --no-remote

Full-Auto Codex Dispatch Job

Reusable orchestration job to dispatch/monitor parallel codex --full-auto workers against OrgX tasks and report progress back through the reporting control plane (/api/client/live/activity + /api/client/live/changesets/apply).

export ORGX_API_KEY="<orgx-api-key>"

npm run job:dispatch -- \
  --initiative_id=aa6d16dc-d450-417f-8a17-fd89bd597195 \
  --plan_file=docs/orgx-openclaw-launch-workstreams-plan-2026-02-14.md \
  --codex_args="--full-auto" \
  --concurrency=6

Key behavior:

  • Pulls tasks from OrgX for selected workstreams
  • Runs orgx_spawn_check preflight per task before dispatch
  • Injects required OrgX skill context (for example orgx-engineering-agent) into worker prompts
  • Applies the same spawn-guard + skill-policy enforcement to manual launch, restart, and Next Up fallback dispatch paths
  • Spawns parallel Codex workers per task
  • Retries failures with backoff up to --max_attempts
  • Emits activity and task status transitions into OrgX DB
  • Auto-creates a blocking decision when a task exhausts retries (disable with --decision_on_block=false)
  • Persists resumable state to .orgx-codex-jobs/<job-id>/job-state.json

Resume patterns:

  • Resume an existing job run (reuse --job_id): add --resume=true
  • Retry tasks previously blocked in the state file: add --retry_blocked=true (requires --resume=true)
  • Local safety guardrails: --resource_guard=true and --worker_timeout_sec/--worker_log_stall_sec prevent runaway local dispatch

Notes:

  • ORGX_USER_ID is legacy and only needed with legacy service-key flows.
  • User-scoped API keys should not send X-Orgx-User-Id.

Manual dispatch:

  • Use docs/marketing/manual-agent-dispatch-golden-prompt.md when manually launching a marketing agent for a specific task (non-batched dispatch).

Version Harness E2E (Real Queue + Play + Auto)

Use this when you need a real end-to-end validation of queue execution in a live plugin session:

  • seeds an isolated initiative with workstreams/milestones/tasks across domains
  • moves the harness workstream to top of Next Up
  • executes one manual Play
  • executes auto-continue for the remaining slices (default target is 5, auto-raised if needed to cover all seeded domains)
  • validates completed slices, run isolation (unique run IDs), skill/domain coverage, progress evidence, task/artifact updates, and exact output file contents
  • tears down seeded entities and restores queue order
  • writes a JSON report to artifacts/harness-runs/

Safety gate (required):

export ORGX_E2E_ALLOW_WRITE=1

Run:

npm run verify:version-harness

Useful options:

  • ORGX_HARNESS_BASE_URL (default http://127.0.0.1:18789)
  • ORGX_HARNESS_TARGET_COMPLETED_SLICES (default 5)
  • ORGX_HARNESS_REQUEST_TIMEOUT_MS (default 30000; per-request API timeout)
  • ORGX_HARNESS_DOMAINS (default engineering,product,design,marketing,operations,sales)
  • ORGX_HARNESS_REQUIRE_REAL_WORKER=1 (default true; fails if worker is mock)
  • ORGX_HARNESS_KEEP=1 (skip teardown)
  • ORGX_HARNESS_SEED_ONLY=1 (seed + queue-top only)

SEO Automation (Keywords Everywhere + DataForSEO)

This repo also includes a repo-local SEO pipeline runner (scripts only; not shipped in the plugin package) under scripts/seo/.

  • Apply an OrgX initiative plan for SEO automation: npm run seo:plan
  • Run the pipeline:
    • Dry run (no API calls): npm run seo:run -- --config=docs/seo/seo.config.example.json --mode=all --dry-run=true
    • Live run: npm run seo:run -- --config=docs/seo/seo.config.example.json --mode=all

Details: scripts/seo/README.md

API Endpoints

When the plugin is loaded, these HTTP endpoints are available:

EndpointDescription
GET /orgx/liveLive dashboard SPA
GET /orgx/api/statusHealth/status probe summary
GET /orgx/api/healthPlugin diagnostics + outbox/sync health
GET /orgx/api/onboardingLegacy onboarding state
POST /orgx/api/onboarding/startStart browser pairing flow
GET /orgx/api/onboarding/statusPoll pairing status / auto-connect
POST /orgx/api/onboarding/manual-keyManual key validation and persist
POST /orgx/api/onboarding/disconnectClear local plugin credential
GET /orgx/api/live/snapshot-v2Canonical live snapshot for dashboard state
GET /orgx/api/live/streamLive SSE stream
GET /orgx/api/live/triageBlocked/review queue items
POST /orgx/api/live/triage/actionResolve triage items (approve/reject/stop)
POST /orgx/api/live/decisions/approveApprove/reject decisions
GET /orgx/api/mission-control/graphMission Control hierarchy graph
GET /orgx/api/mission-control/next-upNext Up queue
GET /orgx/api/mission-control/slicesSlice list for mission control
GET /orgx/api/mission-control/auto-continue/statusAuto-continue runtime status
POST /orgx/mcpLocal MCP bridge (tools/list, tools/call)

Legacy compatibility endpoints such as /orgx/api/agents, /orgx/api/activity, and /orgx/api/initiatives return 410 with replacement routes.

Contributing

Prerequisites

  • Node.js 18+
  • npm 9+
  • An OrgX account (free tier works for development)

Dev Setup

git clone https://github.com/useorgx/openclaw-plugin.git
cd openclaw-plugin

# Install root dependencies (plugin core)
npm install

# Install dashboard dependencies
cd dashboard && npm install && cd ..

# Build everything
npm run build

# Run tests
npm run test:hooks

Development Workflow

# Type-check (must pass before any commit)
npm run typecheck

# Run tests (must pass before any commit)
npm run test:hooks

# Build core only (TypeScript -> dist/)
npm run build:core

# Build dashboard only (Vite)
npm run build:dashboard

# Dashboard dev server (hot reload at localhost:5173)
cd dashboard && npm run dev

# Full build (core + dashboard)
npm run build

# Dev mode from main: always fetch/update origin/main, build it, and copy dist outputs here
npm run dev:main

Repository Structure

src/                              # Plugin core (TypeScript, ES modules)
  index.ts                        # Plugin bootstrap + tool registration
  http/
    index.ts                      # HTTP surface composition under /orgx/api/*
    router.ts                     # Lightweight dependency-free router
    routes/                       # Route modules (mission control, snapshot, onboarding, etc.)
    helpers/                      # Shared mission-control/autopilot/runtime helpers
  tools/core-tools.ts             # MCP tool registrations (30 tools)
  mcp-http-handler.ts             # Local MCP bridge at /orgx/mcp
  mcp-client-setup.ts             # Auto-config for Claude/Codex/Cursor
  outbox.ts                       # Offline queue + replay
  snapshot-store.ts               # Cached snapshot fallback
  activity-store.ts               # Activity persistence
  next-up-queue-store.ts          # Queue ordering + pin state
  runtime-instance-store.ts       # Runtime process tracking
  skill-pack-state.ts             # Skill pack/policy state

dashboard/                        # React SPA (served at /orgx/live)
  src/
    App.tsx                       # Root shell and view routing
    components/
      mission-control/            # Queue + hierarchy + slice views
      activity/                   # Activity feed and detail
      sessions/                   # Session inspector + agent context
      decisions/                  # Decision and triage actions
      onboarding/                 # Browser pairing gate
      settings/                   # Connection, BYOK, agent suite panels
    hooks/
      useLiveData.ts              # SSE-first data transport + polling fallback
      useMissionControlGraph.ts   # Hierarchy graph state
      useNextUpQueue.ts           # Queue operations and optimistic updates
    lib/tokens.ts                 # Design tokens (shared UI language)

scripts/                          # Orchestration and QA (not shipped in package)
  run-codex-dispatch-job.mjs      # Full-auto agent dispatch
  capture-qa-evidence.mjs         # Playwright QA screenshots
  ship.mjs                        # Commit, PR, auto-merge

skills/                           # Agent skill packs (9 domains)
tests/                            # Node test suites
docs/                             # ADRs, ops guides, launch plans

Architecture Notes

  • The HTTP surface is route-modularized under src/http/routes/* with a lightweight in-repo router (src/http/router.ts).
  • Live transport is SSE-first (/orgx/api/live/stream) with resilient polling fallback (/orgx/api/live/snapshot-v2).
  • The plugin still keeps zero production dependencies and uses file-backed local state for portability in OpenClaw environments.
  • Mission Control queue/run state is split intentionally: Next Up models intent and scheduling, while runtime projections drive In Progress.
  • Local MCP bridge + client auto-configuration is now a first-class flow for Claude/Codex/Cursor (orgx-openclaw server entry).

Known Architecture Debt

Resolved in the recent 0.7.x cycle:

  • Route decomposition is complete (moved from monolithic handler flow to src/http/routes/*).
  • Live transport is now SSE-first with explicit snapshot fallback, instead of polling-only assumptions.
  • Dashboard/server contract drift around core live entities (LiveDecision, LiveActivityItem, SessionTree*) is reduced via shared imports from src/contracts/shared-types.ts.

Next highest-priority debt (in order):

  1. dashboard/src/components/activity/ActivityTimeline.tsx is still oversized (6k+ lines) and should be split into feature modules (timeline list, detail orchestration, artifact preview, triage actions).
  2. src/http/index.ts and src/index.ts remain large composition roots and should be further sliced into bootstrap modules (routing assembly, background services, tool registration, and compatibility shims).
  3. Route response shapes are still assembled manually in multiple places; add a single contract-normalization layer for live snapshot/mission-control/triage payloads.
  4. Local store behavior is standardized, but domain stores still duplicate reconciliation logic; centralize replay/merge semantics for outbox, activity, and runtime projections.
  5. Add deeper integration tests around SSE reconnect + snapshot fallback and workspace-scoped mission-control queues to prevent regressions in queue/run separation.

Design Decisions (Why Things Are This Way)

Not all of the above is accidental. Some context for why the architecture looks the way it does:

  • Zero production dependencies: The plugin ships with no npm runtime deps. This means no Express, no Fastify, no routing library. The HTTP handler is hand-rolled because adding a router would be the first external dependency. The tradeoff is clear: easy distribution vs. maintainability.

  • File-based state over SQLite: The plugin runs inside OpenClaw's process. Using SQLite would add a native dependency (build complexity, platform issues). JSON files are portable and inspectable with cat. The tradeoff: no queries, no transactions, more code for corruption recovery.

  • Monolithic bootstrap: index.ts does everything at startup because OpenClaw plugins have a single entry point. There's no lifecycle hook for "register tools in phase 1, start services in phase 2." Everything happens in register().

What Makes a Good Contribution

  • Keep route contracts explicit — update route modules and their tests together (especially mission-control and snapshot responses).
  • Improve queue/run UX clarity — preserve the Next Up vs In Progress separation and keep triage/activity states actionable.
  • Strengthen shared contracts — when changing response shapes, update both server and dashboard type usage in the same PR.
  • Dashboard polish with restraint — follow dashboard/src/lib/tokens.ts and existing interaction patterns.

Code Conventions

  • TypeScript strict mode — no any, no implicit returns, no unused variables
  • ES modules only — all imports use import, no require()
  • Zero production dependencies — if you need a library, implement the subset you need
  • Node test runner — tests use node --test, not Jest. Test files end in .test.mjs
  • Dashboard design tokens — use values from dashboard/src/lib/tokens.ts, not raw hex colors
  • Read AGENTS.md — it has guardrails for AI agents working on this repo, but the conventions apply to humans too

Requirements

  • OpenClaw 2026.1.0 or later
  • Node.js 18+
  • OrgX account (browser pairing recommended, API key fallback supported)

Maintainers: Release to NPM

This repo publishes on GitHub Release via .github/workflows/publish.yml.

  1. Update versions
    • package.json version (NPM version)
    • openclaw.plugin.json version (what openclaw plugins list displays)
    • CHANGELOG.md
  2. Verify
    • npm run typecheck
    • npm run test:hooks
    • npm run build
    • Optional: npm run verify:clean-install
  3. Publish
    • Create a GitHub release for the tag (workflow publishes with provenance)
  4. Smoke test
    • openclaw plugins install @useorgx/openclaw-plugin@<version>
    • Verify http://127.0.0.1:18789/orgx/live pairing and http://127.0.0.1:18789/orgx/mcp MCP bridge

Links

License

MIT