https://v3n0.top/tags/docker-compose/Recent content in Docker Compose on Veno's BlogHugo -- gohugo.iozh-CNThu, 28 May 2026 17:21:56 +0800https://v3n0.top/post/2026/astrbot-git-managed-config/Thu, 28 May 2026 17:21:56 +0800https://v3n0.top/post/2026/astrbot-git-managed-config/<p>最近想把 AstrBot 当成一个长期可维护的团队机器人入口：后续它要接飞书、Gitea、沙箱、<code>lark-cli</code>、<code>tea</code>、自定义插件和 Skills。如果这些东西都只堆在某台机器的 <code>data/</code> 目录里，迟早会变成不可复现的手工状态。</p> <p>所以第一步不是立刻做复杂自动化，而是先从 0 开始做一个可以被 Git 管理的 AstrBot 配置项目。本文先记录最小版本：创建独立仓库，用 Docker Compose 跑通 AstrBot WebUI，并明确哪些文件应该进 Git，哪些运行态文件应该忽略。</p> <h2 id="目标">目标 </h2><p>我希望最终得到这样的结构：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">astrbot-config/ </span></span><span class="line"><span class="cl"> compose.yml </span></span><span class="line"><span class="cl"> .env.example </span></span><span class="line"><span class="cl"> .gitignore </span></span><span class="line"><span class="cl"> README.md </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> data/ </span></span><span class="line"><span class="cl"> cmd_config.json </span></span><span class="line"><span class="cl"> mcp_server.json </span></span><span class="line"><span class="cl"> config/ </span></span><span class="line"><span class="cl"> plugins/ </span></span><span class="line"><span class="cl"> skills/ </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> ops/ </span></span></code></pre></td></tr></table> </div> </div><p>这里的重点是：<code>data/</code> 不是整体入库，而是只把可复现、可审查的配置放进 Git。</p> <p>应该进入 Git 的内容包括：</p> <ul> <li><code>data/cmd_config.json</code></li> <li><code>data/config/</code></li> <li><code>data/plugins/</code></li> <li><code>data/skills/</code></li> <li><code>data/mcp_server.json</code></li> <li>自己维护的插件、Skills、配置模板</li> </ul> <p>不应该进入 Git 的内容包括：</p> <ul> <li><code>.env</code></li> <li><code>data/dist/</code></li> <li><code>data/dashboard.zip</code></li> <li><code>data/*.db</code></li> <li><code>data/knowledge_base/</code></li> <li><code>data/temp/</code></li> <li><code>data/workspaces/</code></li> <li><code>data/attachments/</code></li> <li><code>data/site-packages/</code></li> </ul> <h2 id="初始化项目">初始化项目 </h2><p>新项目放在：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">/home/veno/Projects/astrbot-config </span></span></code></pre></td></tr></table> </div> </div><p>先创建目录和 Git 仓库：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl"><span class="nb">cd</span> ~/Projects </span></span><span class="line"><span class="cl">mkdir astrbot-config </span></span><span class="line"><span class="cl"><span class="nb">cd</span> astrbot-config </span></span><span class="line"><span class="cl">git init </span></span><span class="line"><span class="cl">git branch -m main </span></span></code></pre></td></tr></table> </div> </div><p>目录骨架：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span><span class="lnt">6 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">mkdir -p data/config data/plugins data/skills ops </span></span><span class="line"><span class="cl">touch data/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/config/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/plugins/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/skills/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> ops/.gitkeep </span></span></code></pre></td></tr></table> </div> </div><h2 id="docker-compose">Docker Compose </h2><p><code>compose.yml</code> 使用官方镜像：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span><span class="lnt">15 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">services</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">astrbot</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">image</span><span class="p">:</span><span class="w"> </span><span class="l">${ASTRBOT_IMAGE:-soulter/astrbot:latest}</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">container_name</span><span class="p">:</span><span class="w"> </span><span class="l">${ASTRBOT_CONTAINER_NAME:-astrbot-config}</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">restart</span><span class="p">:</span><span class="w"> </span><span class="l">unless-stopped</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">security_opt</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="kc">no</span>-<span class="l">new-privileges:true</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">ports</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="s2">&#34;${ASTRBOT_WEB_PORT:-6185}:6185&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="s2">&#34;${ASTRBOT_ONEBOT_PORT:-6199}:6199&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">environment</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">TZ=${TZ:-Asia/Shanghai}</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">volumes</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">./data:/AstrBot/data:z</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">/etc/localtime:/etc/localtime:ro</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p><code>.env.example</code>：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-fallback" data-lang="fallback"><span class="line"><span class="cl">ASTRBOT_IMAGE=soulter/astrbot:latest </span></span><span class="line"><span class="cl">ASTRBOT_CONTAINER_NAME=astrbot-config </span></span><span class="line"><span class="cl">ASTRBOT_WEB_PORT=6185 </span></span><span class="line"><span class="cl">ASTRBOT_ONEBOT_PORT=6199 </span></span><span class="line"><span class="cl">TZ=Asia/Shanghai </span></span></code></pre></td></tr></table> </div> </div><p>实际运行时复制一份 <code>.env</code>，但 <code>.env</code> 不进 Git：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">cp .env.example .env </span></span></code></pre></td></tr></table> </div> </div><h2 id="git-ignore">Git Ignore </h2><p><code>.gitignore</code> 的核心是排除运行态文件：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span><span class="lnt">15 </span><span class="lnt">16 </span><span class="lnt">17 </span><span class="lnt">18 </span><span class="lnt">19 </span><span class="lnt">20 </span><span class="lnt">21 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-fallback" data-lang="fallback"><span class="line"><span class="cl">.env </span></span><span class="line"><span class="cl">*.log </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">data/dist/ </span></span><span class="line"><span class="cl">data/temp/ </span></span><span class="line"><span class="cl">data/attachments/ </span></span><span class="line"><span class="cl">data/webchat/ </span></span><span class="line"><span class="cl">data/site-packages/ </span></span><span class="line"><span class="cl">data/knowledge_base/ </span></span><span class="line"><span class="cl">data/workspaces/ </span></span><span class="line"><span class="cl">data/plugin_data/ </span></span><span class="line"><span class="cl">data/dashboard.zip </span></span><span class="line"><span class="cl">data/*.db </span></span><span class="line"><span class="cl">data/*.db-* </span></span><span class="line"><span class="cl">data/t2i_templates/ </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"># Keep config-managed areas tracked. </span></span><span class="line"><span class="cl">!data/ </span></span><span class="line"><span class="cl">!data/config/ </span></span><span class="line"><span class="cl">!data/plugins/ </span></span><span class="line"><span class="cl">!data/skills/ </span></span></code></pre></td></tr></table> </div> </div><p>这样 AstrBot 首次启动时生成的一堆数据库、WebUI 静态资源、知识库文件不会污染配置仓库。</p> <h2 id="清掉旧实例">清掉旧实例 </h2><p>因为这是一个从 0 开始的新部署，所以旧 AstrBot 容器直接作废。</p> <p>先查看容器：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">docker ps -a --format <span class="s1">&#39;{{.ID}} {{.Names}} {{.Image}} {{.Ports}} {{.Status}}&#39;</span> </span></span></code></pre></td></tr></table> </div> </div><p>当时发现旧容器 <code>astrbot</code> 占用了 <code>6185</code>：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">astrbot soulter/astrbot:latest 0.0.0.0:6185-&gt;6185/tcp Up ... </span></span></code></pre></td></tr></table> </div> </div><p>移除旧 AstrBot：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">docker rm -f astrbot </span></span></code></pre></td></tr></table> </div> </div><p>我没有动 <code>napcat</code>，因为它不是 AstrBot 本体。</p> <h2 id="启动新实例">启动新实例 </h2><p>启动：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">docker compose up -d </span></span></code></pre></td></tr></table> </div> </div><p>第一次启动时踩到一个小坑：因为前一次端口冲突已经创建了容器，后续虽然配置正确，但实际端口没有发布出来。解决方式是强制重建：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">docker compose up -d --force-recreate </span></span></code></pre></td></tr></table> </div> </div><p>查看状态：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">docker ps --format <span class="s1">&#39;{{.Names}} {{.Ports}} {{.Status}}&#39;</span> </span></span></code></pre></td></tr></table> </div> </div><p>最终看到：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">astrbot-config 0.0.0.0:6185-&gt;6185/tcp, 0.0.0.0:6199-&gt;6199/tcp Up </span></span></code></pre></td></tr></table> </div> </div><p>日志里确认 WebUI ready：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">AstrBot v4.24.2 WebUI is ready </span></span><span class="line"><span class="cl">Local: http://localhost:6185 </span></span><span class="line"><span class="cl">Default username/password: astrbot / astrbot </span></span></code></pre></td></tr></table> </div> </div><p>访问地址：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">http://localhost:6185 </span></span></code></pre></td></tr></table> </div> </div><p>默认账号密码：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">astrbot / astrbot </span></span></code></pre></td></tr></table> </div> </div><h2 id="处理生成的配置">处理生成的配置 </h2><p>AstrBot 会在 <code>data/</code> 下生成主配置：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">data/cmd_config.json </span></span><span class="line"><span class="cl">data/mcp_server.json </span></span></code></pre></td></tr></table> </div> </div><p>其中 <code>data/cmd_config.json</code> 里会出现运行时生成的 <code>dashboard.jwt_secret</code>。这个值不适合进 Git，所以提交前我把它清空：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-json" data-lang="json"><span class="line"><span class="cl"><span class="s2">&#34;dashboard&#34;</span><span class="err">:</span> <span class="p">{</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;jwt_secret&#34;</span><span class="p">:</span> <span class="s2">&#34;&#34;</span> </span></span><span class="line"><span class="cl"><span class="p">}</span> </span></span></code></pre></td></tr></table> </div> </div><p>容器以 root 写入挂载目录时，本机用户可能无法直接修改文件。可以通过容器把 <code>/AstrBot/data</code> 的所有权改回来：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">docker <span class="nb">exec</span> astrbot-config chown -R 1000:1000 /AstrBot/data </span></span></code></pre></td></tr></table> </div> </div><p>然后再清理 <code>cmd_config.json</code>。</p> <h2 id="初始提交">初始提交 </h2><p>确认 Git 状态：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">git status --short --ignored </span></span></code></pre></td></tr></table> </div> </div><p>应该只看到 <code>.env</code>、数据库、WebUI 静态资源等被忽略，配置文件和骨架目录可提交。</p> <p>提交：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">git add .env.example .gitignore README.md compose.yml <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/config/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/plugins/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/skills/.gitkeep <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/cmd_config.json <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> data/mcp_server.json <span class="se">\ </span></span></span><span class="line"><span class="cl"><span class="se"></span> ops/.gitkeep </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl">git commit -m <span class="s2">&#34;chore: initialize astrbot docker config repo&#34;</span> </span></span></code></pre></td></tr></table> </div> </div><p>当前提交：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">8a4a00d chore: initialize astrbot docker config repo </span></span></code></pre></td></tr></table> </div> </div><h2 id="webui-初始配置">WebUI 初始配置 </h2><p>启动跑通之后，我在 AstrBot WebUI 里做了第一次人工配置：</p> <ul> <li>修改了初始 Dashboard 用户名和密码</li> <li>在模型提供商里创建了 DeepSeek API 来源</li> <li>启用了 <code>deepseek/deepseek-v4-pro</code> 作为模型</li> <li>新建了一个配置文件，展示名称为 <code>Feishu - Flow Project</code></li> <li>暂时还没有接入飞书机器人、沙箱、CLI、Skills 或插件</li> </ul> <p>这些操作反映到仓库里后，<code>git status</code> 看到：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl"> M data/cmd_config.json </span></span><span class="line"><span class="cl">?? data/config/abconf_99578339-b87b-41b4-97a9-5c4af491f6c2.json </span></span><span class="line"><span class="cl">?? data/skills.json </span></span></code></pre></td></tr></table> </div> </div><p><code>data/cmd_config.json</code> 的主要变化是：</p> <ul> <li><code>dashboard.username</code> 从 <code>astrbot</code> 改成了 <code>veno</code></li> <li><code>dashboard.password</code> 更新为新的密码哈希</li> <li><code>dashboard.jwt_secret</code> 被运行时重新生成</li> <li>新增 <code>provider_sources[0]</code>，来源 ID 为 <code>deepseek</code></li> <li>新增 <code>provider[0]</code>，模型 ID 为 <code>deepseek/deepseek-v4-pro</code></li> </ul> <p>其中 DeepSeek API key 目前由 AstrBot WebUI 直接写进了 <code>data/cmd_config.json</code>：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-json" data-lang="json"><span class="line"><span class="cl"><span class="p">{</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;provider_sources&#34;</span><span class="p">:</span> <span class="p">[</span> </span></span><span class="line"><span class="cl"> <span class="p">{</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;provider&#34;</span><span class="p">:</span> <span class="s2">&#34;deepseek&#34;</span><span class="p">,</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;type&#34;</span><span class="p">:</span> <span class="s2">&#34;openai_chat_completion&#34;</span><span class="p">,</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;api_base&#34;</span><span class="p">:</span> <span class="s2">&#34;https://api.deepseek.com/v1&#34;</span><span class="p">,</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;id&#34;</span><span class="p">:</span> <span class="s2">&#34;deepseek&#34;</span><span class="p">,</span> </span></span><span class="line"><span class="cl"> <span class="nt">&#34;enable&#34;</span><span class="p">:</span> <span class="kc">true</span> </span></span><span class="line"><span class="cl"> <span class="p">}</span> </span></span><span class="line"><span class="cl"> <span class="p">]</span> </span></span><span class="line"><span class="cl"><span class="p">}</span> </span></span></code></pre></td></tr></table> </div> </div><p>这里我最后选择了更朴素的方案：把这个仓库明确定位为私有配置仓库，并让 <code>data/cmd_config.json</code> 继续作为 AstrBot 运行时事实来源进入 Git。</p> <p>原因是 AstrBot WebUI 会直接写这个 JSON，当前还不能确认它是否稳定支持从 <code>.env</code> 或模板安全回填 provider key、Dashboard 密码哈希和 <code>jwt_secret</code>。如果强行做模板渲染，反而可能引入“配置看起来可复现，但实际启动时被覆盖或漏注入”的风险。</p> <p>因此现阶段的安全边界是：</p> <ul> <li>私有 Git 仓库可以包含真实运行配置</li> <li>不配置公开 remote，不把配置 diff 贴到公开聊天或博客里</li> <li>如果未来要公开仓库，先轮换 provider key 和 Dashboard 凭据，再清理 Git 历史</li> <li>真要提高 secret 安全等级时，再引入 SOPS 或 git-crypt，而不是先做脆弱的自动回填</li> </ul> <p>另外，新建的配置文件实际落在：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">data/config/abconf_99578339-b87b-41b4-97a9-5c4af491f6c2.json </span></span></code></pre></td></tr></table> </div> </div><p>这个 JSON 文件本身没有直接写入 <code>Feishu - Flow Project</code> 字符串。也就是说，AstrBot 对“配置文件展示名”和 <code>abconf_*.json</code> 文件之间的映射，可能不完全靠这个 JSON 文件表达。后续如果要做严格 GitOps，需要继续确认配置文件命名和展示名的持久化位置。</p> <h2 id="私有配置提交">私有配置提交 </h2><p>确认采用私有仓库策略后，我把 WebUI 产生的真实配置提交进 Git：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">e75b5fd chore: track astrbot webui config privately </span></span></code></pre></td></tr></table> </div> </div><p>这次提交包含：</p> <ul> <li><code>data/cmd_config.json</code>：Dashboard 用户、DeepSeek 来源和启用模型等真实运行配置</li> <li><code>data/config/abconf_99578339-b87b-41b4-97a9-5c4af491f6c2.json</code>：WebUI 新建配置文件对应的 JSON</li> <li><code>data/skills.json</code>：当前为空的 Skills 注册状态</li> <li><code>README.md</code>：补充私有仓库安全边界说明</li> </ul> <p>提交后工作区是干净的，并且当前没有配置 Git remote。</p> <h2 id="shipyard-neo-沙箱与-feishu-cli">Shipyard Neo 沙箱与 Feishu CLI </h2><p>下一步我按 AstrBot 文档接入沙箱能力。文档里的关键点是：<code>Computer Use Runtime</code> 可以设为 <code>sandbox</code>，沙箱驱动选择 <code>Shipyard Neo</code>；Bay 默认监听 <code>8114</code>，AstrBot 通过 <code>Shipyard Neo API Endpoint</code> 和 <code>Shipyard Neo Access Token</code> 连接。</p> <p>这次采用本机独立 Shipyard Neo 部署，而不是把 Bay 塞进 AstrBot 容器：</p> <ul> <li>Shipyard Neo 部署目录：<code>/home/veno/Projects/shipyard-neo-deploy</code></li> <li>Bay endpoint：<code>http://bay:8114</code>，供 AstrBot 通过 Docker 网络访问</li> <li>AstrBot <code>computer_use_runtime</code>：<code>sandbox</code></li> <li>AstrBot <code>sandbox.booter</code>：<code>shipyard_neo</code></li> <li>AstrBot <code>shipyard_neo_profile</code>：<code>python-lark</code></li> <li>Bay token：按文档写入 <code>shipyard_neo_access_token</code>，继续由私有配置仓库管理</li> </ul> <p>Fedora 上还遇到一个实际问题：Bay 需要访问 Docker socket 来创建 sandbox 容器，但 SELinux 会拦截默认 bind mount。由于 Bay 挂 Docker socket 本身就已经是高权限组件，我在 Bay service 上显式加了：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">security_opt</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">label:disable</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>这不是为了让普通业务容器放宽隔离，而是为了让 Bay 这个 Docker 控制面组件在 Fedora 上能按设计工作。</p> <p>Feishu CLI 和 Skills 按 <code>larksuite/cli</code> 官方仓库处理：</p> <ul> <li>本机先执行官方推荐的 <code>npx skills add larksuite/cli -g -y</code>，安装官方 lark skills</li> <li>AstrBot 仓库中同步了官方安装器发现的 26 个 lark skills 到 <code>data/skills/</code></li> <li>自定义 Shipyard Neo ship 镜像继承 <code>ghcr.io/astrbotdevs/shipyard-neo-ship:latest</code></li> <li>镜像内执行官方推荐的 <code>npx /cli install</code> 安装 <code>lark-cli</code></li> <li>额外加入本机已有的静态 <code>tea</code> 二进制</li> </ul> <p>最终验证：Bay 能创建 <code>python-lark</code> sandbox，并且在真实 sandbox 内执行：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">lark-cli --version <span class="o">&amp;&amp;</span> tea --version </span></span></code></pre></td></tr></table> </div> </div><p>返回 <code>lark-cli version 1.0.42</code> 和 <code>tea 0.12.0</code>。</p> <h2 id="cli-授权状态持久化">CLI 授权状态持久化 </h2><p>安装 <code>lark-cli</code> 和 <code>tea</code> 之后，还有一个更实际的问题：Agent 每次要用飞书或 Gitea 能力时，不应该重新思考“去哪登录、token 放哪、下次还在不在”。这件事不能交给 Skill 本身解决。Skill 只应该描述工具怎么用，真正的权限边界仍然应该在飞书应用权限、用户授权、Gitea token scope 和 sandbox 运行时配置上。</p> <p>一开始我以为只要把 <code>HOME</code> 和 <code>XDG_CONFIG_HOME</code> 指到 <code>/workspace</code>，就能靠 Shipyard Neo Cargo 保存 CLI 登录态。后面继续查文档和实际验证后发现，这个判断只对了一半：managed cargo 会随着 sandbox 删除而释放，不能作为长期账号凭证存储。真正适合保存 CLI 凭证的是 external cargo。</p> <p>最终部署改成了这样：</p> <ul> <li>镜像层只安装工具：<code>lark-cli</code>、<code>tea</code> 和对应 Skills</li> <li>Skill 层只提供调用说明，不写入任何 token</li> <li>Shipyard Neo 增加显式 profile：<code>python-lark</code></li> <li><code>python-lark</code> 继续使用同一份工具镜像，并设置 <code>HOME=/workspace</code>、<code>XDG_CONFIG_HOME=/workspace/.config</code></li> <li>Bay 中创建一个 external cargo，专门持久化 <code>/workspace</code></li> <li>AstrBot 创建 sandbox 时传入固定 <code>cargo_id</code></li> </ul> <p>对应的 Shipyard Neo profile 是：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl">- <span class="nt">id</span><span class="p">:</span><span class="w"> </span><span class="l">python-lark</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">description</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;Python sandbox with lark-cli and tea, using persistent CLI config&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">image</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;shipyard-neo-ship-lark:latest&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">runtime_type</span><span class="p">:</span><span class="w"> </span><span class="l">ship</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">runtime_port</span><span class="p">:</span><span class="w"> </span><span class="m">8123</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">capabilities</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">filesystem</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">shell</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">python</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">env</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">HOME</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;/workspace&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">XDG_CONFIG_HOME</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;/workspace/.config&#34;</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>这里一开始还有一个 AstrBot 侧的小补丁：当前 AstrBot 的 <code>ShipyardNeoBooter</code> 只传 <code>profile</code> 和 <code>ttl</code>，不会传 <code>cargo_id</code>。后来证明这个方向不稳，因为 WebUI 更新 AstrBot 时会覆盖运行时源码。最终方案改为 Bay 侧 <code>profile -&gt; cargo</code> 映射：AstrBot 仍然只传 <code>profile=python-lark</code>，Bay 在创建 sandbox 时自动补上对应的 external cargo。</p> <p>这个方案的边界比较清楚：</p> <ul> <li>token 不进镜像</li> <li>token 不进 Skill</li> <li>token 不出现在博客或公开日志里</li> <li>CLI 凭证落在 external cargo 的 <code>/workspace/.config</code></li> <li>AstrBot 容器不再改源码，Git 只记录 Bay 侧配置和可复现的部署代码</li> </ul> <p>持久化验证也做过一次：在 external cargo 里写入测试文件，删除 sandbox 后重新创建，文件仍然存在。这说明凭证目录不再依赖某个临时 sandbox 生命周期。</p> <p>随后完成了两个 CLI 的登录和验证：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">lark_configured=true </span></span><span class="line"><span class="cl">lark_auth_status_ok=true </span></span><span class="line"><span class="cl">lark_auth_list_ok=true </span></span><span class="line"><span class="cl">tea_authenticated=true </span></span></code></pre></td></tr></table> </div> </div><p>其中 <code>tea</code> 已能访问目标 Gitea 实例，账号验证为 <code>veno</code>。Lark 侧使用脱敏验证方式，只检查 <code>config show</code>、<code>auth status</code>、<code>auth list</code> 的退出码，不打印任何 app secret、access token 或用户授权内容。</p> <p>到这里，AstrBot 在后续调用 <code>lark-cli</code> 和 <code>tea</code> 时，不需要每次重新设计授权流程。模型只需要按 Skill 使用命令；具体能读写什么，由飞书服务端权限、用户授权范围、Gitea token scope 和 external cargo 中的当前登录态共同决定。</p> <h2 id="webui-更新与源码-patch">WebUI 更新与源码 Patch </h2><p>这里后来又踩到一个和 WebUI 更新有关的坑。</p> <p>最初为了让 AstrBot 读取 <code>ASTRBOT_SHIPYARD_NEO_CARGO_ID</code>，我把两个 patch 文件直接以只读 bind mount 的方式挂到了容器里的源码路径：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">/AstrBot/astrbot/core/computer/booters/shipyard_neo.py </span></span><span class="line"><span class="cl">/AstrBot/astrbot/core/computer/computer_client.py </span></span></code></pre></td></tr></table> </div> </div><p>这样运行时没问题，但从 WebUI 更新 AstrBot 时会失败：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">[Errno 30] Read-only file system: &#39;/AstrBot/astrbot/core/computer&#39; </span></span></code></pre></td></tr></table> </div> </div><p>原因很直接：WebUI 更新器会尝试覆盖 AstrBot 本体源码，而源码目录下有只读挂载点。即使只挂了两个文件，更新过程遇到这些路径也会被文件系统拒绝。</p> <p>第一版修复方式是不要把 patch 文件直接挂到源码路径，而是挂到独立目录，并在容器启动时复制进去：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">command</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">sh</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- -<span class="l">c</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="p">|</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> cp /AstrBot/local-patches/astrbot/core/computer/booters/shipyard_neo.py /AstrBot/astrbot/core/computer/booters/shipyard_neo.py </span></span></span><span class="line"><span class="cl"><span class="sd"> cp /AstrBot/local-patches/astrbot/core/computer/computer_client.py /AstrBot/astrbot/core/computer/computer_client.py </span></span></span><span class="line"><span class="cl"><span class="sd"> exec python main.py</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">volumes</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">./data:/AstrBot/data:z</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">./patches/astrbot:/AstrBot/local-patches/astrbot:ro,z</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>这样 patch 来源仍然是只读的、可 Git 管理的，但 <code>/AstrBot/astrbot/core/computer</code> 本身恢复为容器内可写目录。WebUI 更新 AstrBot 时不会再被 bind mount 卡住；容器重启后也会重新应用本地 patch。</p> <p>修复后验证：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">computer_dir_writable=true </span></span></code></pre></td></tr></table> </div> </div><p>但这个方案后面又暴露了第二层问题：WebUI 更新 AstrBot 之后，源码文件会被更新器重新覆盖。容器没有重建时，<code>command</code> 里的复制动作不会再次执行，于是运行中的 AstrBot 又退回了“不传 <code>cargo_id</code>”的原版逻辑。</p> <p>现象很典型：机器人调用 <code>lark-cli</code> 时又提示未配置，甚至重新发起 <code>lark-cli config init</code>。这并不是 external cargo 里的凭证丢了，而是 AstrBot 创建 sandbox 时没有再把 fixed cargo 传给 Bay，结果模型落进了新的 managed cargo。</p> <p>第二版改成了启动时最小文本 patch，并启动后台 watcher 周期性补打 patch。它能止血，但本质上还是在 AstrBot 容器里改源码：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span><span class="lnt">14 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">command</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">sh</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- -<span class="l">c</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="p">|</span><span class="sd"> </span></span></span><span class="line"><span class="cl"><span class="sd"> python /AstrBot/local-patches/apply-astrbot-cargo-patch.py </span></span></span><span class="line"><span class="cl"><span class="sd"> ( </span></span></span><span class="line"><span class="cl"><span class="sd"> while sleep 10; do </span></span></span><span class="line"><span class="cl"><span class="sd"> python /AstrBot/local-patches/apply-astrbot-cargo-patch.py || true </span></span></span><span class="line"><span class="cl"><span class="sd"> done </span></span></span><span class="line"><span class="cl"><span class="sd"> ) &amp; </span></span></span><span class="line"><span class="cl"><span class="sd"> exec python main.py</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">volumes</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">./data:/AstrBot/data:z</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">./patches:/AstrBot/local-patches:ro,z</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>这个脚本只做三件事：</p> <ul> <li>给 <code>ShipyardNeoBooter.__init__</code> 增加 <code>cargo_id</code></li> <li>调用 <code>BayClient.create_sandbox()</code> 时传入 <code>cargo_id</code></li> <li>在 <code>computer_client.py</code> 中从 <code>shipyard_neo_cargo_id</code> 或 <code>ASTRBOT_SHIPYARD_NEO_CARGO_ID</code> 读取 cargo</li> </ul> <p>它比整文件覆盖更适合 WebUI 更新场景，但仍然不适合作为长期方案。真正的问题不是 AstrBot 是否能读某个环境变量，而是“创建 sandbox 时该由谁决定 cargo”。这个决定更应该放在 Bay 这个 sandbox 控制面里。</p> <p>最终我把方案改到了 Bay 侧：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span><span class="lnt">6 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">cargo</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">root_path</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;/var/lib/bay/cargos&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">default_size_limit_mb</span><span class="p">:</span><span class="w"> </span><span class="m">1024</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">mount_path</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;/workspace&#34;</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">profile_defaults</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">python-lark</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;ws-fd07bebac9ae&#34;</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>Bay 的逻辑变成：</p> <ul> <li>如果请求显式带了 <code>cargo_id</code>，尊重请求</li> <li>如果请求没带 <code>cargo_id</code>，先按 <code>profile</code> 查 <code>cargo.profile_defaults</code></li> <li>命中默认 cargo 时，用该 external cargo 创建 sandbox</li> <li>绑定 fixed cargo 的 profile 跳过 warm pool，因为 warm sandbox 自带 managed cargo，不能重绑</li> </ul> <p>于是 AstrBot 侧可以恢复成原生容器：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span><span class="lnt">5 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nt">environment</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">TZ=${TZ:-Asia/Shanghai}</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">volumes</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">./data:/AstrBot/data:z</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span>- <span class="l">/etc/localtime:/etc/localtime:ro</span><span class="w"> </span></span></span></code></pre></td></tr></table> </div> </div><p>这次验证结论：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span><span class="lnt">4 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">bay_default_cargo_applied=true </span></span><span class="line"><span class="cl">lark_auth_status_ok=true </span></span><span class="line"><span class="cl">lark_auth_list_ok=true </span></span><span class="line"><span class="cl">tea_authenticated=true </span></span></code></pre></td></tr></table> </div> </div><p>所以问题不是凭证持久化无效，而是原来的 patch 生命周期不够强。fixed external cargo 仍然有效；现在由 Bay 根据 <code>profile</code> 稳定选择 cargo，不再依赖 AstrBot 源码 patch。</p> <h2 id="不同配置文件使用不同账号">不同配置文件使用不同账号 </h2><p>接下来还有一个更重要的设计问题：如果不同 AstrBot 配置文件要使用不同的 Gitea 账号和飞书账号，账号状态应该绑在哪里？</p> <p>当前 AstrBot 配置文件可以各自设置 <code>shipyard_neo_profile</code>，所以短期可以做多个 Shipyard Neo profile，例如 <code>python-lark</code>、<code>python-feishu-flow</code>、<code>python-gitea-work</code>。每个 profile 可以复用同一份工具镜像，但在 Bay 的 <code>cargo.profile_defaults</code> 里绑定不同 external cargo。这样每个账号组都有自己的 <code>/workspace/.config</code>，CLI 配置不会互相踩。</p> <p>更干净的长期方案是把账号组作为部署资源管理：</p> <ul> <li>在 Shipyard Neo 中为每个账号组创建 external cargo</li> <li>在 AstrBot 配置文件里用 <code>shipyard_neo_profile</code> 表达账号组</li> <li>由 Bay 根据 profile 选择对应 <code>cargo_id</code></li> <li>创建 sandbox 时传入 <code>cargo_id</code></li> <li><code>lark-cli</code> 和 <code>tea</code> 继续把配置写到 <code>/workspace/.config</code></li> </ul> <p>这样账号状态就从“某个临时 sandbox 的副产物”变成“某个 AstrBot 配置文件绑定的持久化 workspace”。例如：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span><span class="lnt">2 </span><span class="lnt">3 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">default config -&gt; cargo-default -&gt; /workspace/.config </span></span><span class="line"><span class="cl">feishu-flow config -&gt; cargo-feishu-flow -&gt; /workspace/.config </span></span><span class="line"><span class="cl">gitea-work config -&gt; cargo-gitea-work -&gt; /workspace/.config </span></span></code></pre></td></tr></table> </div> </div><p>现在已经有了 Bay 侧 <code>profile -&gt; cargo</code> 映射，所以单账号组持久化已经跑通。后续要支持多账号组，只需要继续增加 profile 和 external cargo 映射，而不是继续把所有账号都塞进同一个 cargo。</p> <p>如果不想继续改 AstrBot，最稳妥的替代方案仍然是为不同账号组拆成不同 AstrBot 实例：每个实例有自己的配置仓库、自己的 Bay profile 或 Bay 部署、自己的 CLI 登录态。这比较笨，但隔离边界清晰，出问题时也容易回滚。</p> <h2 id="当前结果">当前结果 </h2><p>现在我有了一个新的、干净的 AstrBot 配置仓库：</p> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt">1 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-text" data-lang="text"><span class="line"><span class="cl">/home/veno/Projects/astrbot-config </span></span></code></pre></td></tr></table> </div> </div><p>它已经能通过 Docker Compose 启动 AstrBot，并且接上了可持久化 CLI 凭证的 Shipyard Neo sandbox。</p> <p>下一步再继续往这个仓库里加：</p> <ul> <li>用 Git 管理的全局 Skills</li> <li>插件内置 Skills</li> <li>自研 Gitea / 飞书同步插件</li> <li>可同步的机器人记忆、规则和状态映射</li> </ul> <p>第一阶段先到这里：先让 AstrBot 以一个可复现的 GitOps 形态跑起来，并让后续工具调用不再重复处理基础授权问题。</p>