DigiNews

Summary

ClawShell provides a security layer for OpenClaw by mapping virtual API keys to real keys, enabling DLP scanning of request/response bodies and email isolation. It operates as a lightweight Rust-based sidecar, storing real credentials in a privileged /etc/clawshell and handling onboarding/config in clawshell.toml. The setup emphasizes minimal dependencies and a clear security boundary between OpenClaw and providers like OpenAI and Anthropic.