# OpenClaw ◇ Security disclaimer ──────────────────────────────────────────────────────────────────────╮ │ │ │ OpenClaw is a hobby project and still in beta. Expect sharp edges. │ │ By default, OpenClaw is a personal agent: one trusted operator boundary. │ │ This bot can read files and run actions if tools are enabled. │ │ A bad prompt can trick it into doing unsafe things. │ │ │ │ OpenClaw is not a hostile multi-tenant boundary by default. │ │ If multiple users can message one tool-enabled agent, they share that delegated tool │ │ authority. │ │ │ │ If you’re not comfortable with security hardening and access control, don’t run │ │ OpenClaw. │ │ Ask someone experienced to help before enabling tools or exposing it to the internet. │ │ │ │ Recommended baseline │ │ - Pairing/allowlists + mention gating. │ │ - Multi-user/shared inbox: split trust boundaries (separate gateway/credentials, ideally │ │ separate OS users/hosts). │ │ - Sandbox + least-privilege tools. │ │ - Shared inboxes: isolate DM sessions (session.dmScope: per-channel-peer) and keep tool │ │ access minimal. │ │ - Keep secrets out of the agent’s reachable filesystem. │ │ - Use the strongest available model for any bot with tools or untrusted inboxes. │ │ │ │ Run regularly │ │ openclaw security audit --deep │ │ openclaw security audit --fix │ │ │ │ Learn more │ │ - https://docs.openclaw.ai/gateway/security │ │ │ ├────────────────────────────────────────────────────────────────────────────────────────────╯ ◇ QuickStart ─────────────────────────╮ │ │ │ Gateway port: 18789 │ │ Gateway bind: Loopback (127.0.0.1) │ │ Gateway auth: Token (default) │ │ Tailscale exposure: Off │ │ Direct to chat channels. │ │ │ ├──────────────────────────────────────╯ ◆ Model/auth provider │ │ Search: │ ○ Alibaba Model Studio │ ○ Anthropic │ ○ Arcee AI │ ● BytePlus (API key) │ ○ Chutes │ ○ Cloudflare AI Gateway │ ○ Copilot │ ○ Custom Provider │ ○ DeepSeek │ ○ Fireworks │ ○ Google │ ○ Hugging Face │ ○ Kilo Gateway │ ○ LiteLLM │ ○ LM Studio │ ○ Microsoft Foundry │ ○ MiniMax │ ○ Mistral AI │ ○ Moonshot AI (Kimi K2.6) │ ○ NVIDIA │ ○ Ollama │ ○ OpenAI │ ○ OpenAI Codex │ ○ OpenCode │ ○ OpenRouter │ ○ Qianfan │ ○ Qwen Cloud │ ○ Runway │ ○ SGLang │ ○ StepFun │ ○ Synthetic │ ○ Tencent Cloud │ ○ Together AI │ ○ Venice AI │ ○ Vercel AI Gateway │ ○ vLLM │ ○ Volcano Engine │ ○ xAI (Grok) │ ○ Xiaomi │ ○ Z.AI │ ○ Skip for now │ ↑/↓ to select • Enter: confirm • Type: to search