top | item 47109705

(no title)

I just don't trust "the claw" so I build following system - Docker 1: * Locked up Claw docker - user level priv. Access outside to "one port" only.

- Docker 2: * Tool gateway with pre-baked commands - openclaw can only index what command to execute * Keys are here * Telegram hook to approve all "post" commands i.e. sending email or posting something somewhere.

- Docker 3: * LLM gateway keeping track of cost and routing

discuss

lwhi|7 days ago

So you need to approve all actions that actually do something, individually?