ClawQL 7.0 setup guide
Requirements and upgrade steps for clawql-mcp 7.0.0 — npm, Docker, Helm, and the optional operator.
Full source doc: clawql-7-setup-guide.md
What changed
| Area | 7.0.0 |
|---|---|
| Default merge | Cloudflare, GitHub, Slack, Linear, Notion, Onyx (provider: default) |
| Full bundle | CLAWQL_PROVIDER=all-providers or helm --set provider=all-providers |
| Secrets | Vault-backed by default (requireVaultBackedSecrets: true) |
| Legacy env | CLAWQL_* only — API_BASE_URL, OPENAPI_SPEC_URL, google-top50 removed |
npm / stdio
npx -p clawql-mcp clawql onboard --interactive
npx -p clawql-mcp clawql doctor --smoke
Helm
provider: default # chart default — matches npm
envFromSecret: clawql-provider-env
secretSourcing:
requireVaultBackedSecrets: true
Full IDP lab: --set provider=all-providers or values-idp-full.yaml.
Populate HashiCorp KV secret/clawql/providers and sync to clawql-provider-env before expecting Ready pods. Lab opt-out: requireVaultBackedSecrets: false (not for production).
Operator auth reconciliation
When using ClawQLInstance, the operator sets ProviderSecretsReady:
documents.enabled: false— default-stack vault keys onlydocuments.enabled: true— default stack + all IDP provider keys
clawql operator status
Upgrade checklist
- Migration guide
- Replace legacy env aliases
- Wire Vault →
clawql-provider-env helm upgradewithdefaultorall-providers- Confirm
ProviderSecretsReady=Trueif using the operator
