I built a plugin that makes OpenClaw ask my phone before doing anything risky

Reddit r/openclaw Tools
openclaw agent-safety plugin approval-system risk-mitigation tool-call security

Summary

OKed is a plugin for OpenClaw that intercepts risky tool calls and requires user approval before execution, preventing agents from performing destructive actions like deleting data or sending payments.

After reading one too many threads here about agents deleting things they shouldn't (the PocketOS/Railway story was the final push), I built OKed. It hooks into OpenClaw's before\_tool\_call and intercepts actions before they execute. Safe stuff passes through silently. High-stakes stuff (sending emails, destructive commands, payments) freezes the agent and sends an approval request to my phone or Telegram. One tap to approve or deny. The agent never knows the difference, it just waits. The agent runs with whatever permissions it has. The point is that permission isn't the same as intent. The Railway token that wiped PocketOS was scoped correctly for *some* operations. What was missing was someone seeing "agent wants to run volumeDelete on prod" before it fired. Would genuinely love feedback from people running OpenClaw on real workloads. What actions would you want gated? [oked.ai](http://oked.ai)
Original Article

Similar Articles

Where OpenClaw Security Is Heading

Hacker News Top

OpenClaw details its security architecture using `fs-safe` for filesystem boundaries and Proxyline for network egress control, aiming to make its AI personal assistant trustworthy and auditable.

Security for your OpenClaw agent skill before they run

Reddit r/openclaw

SecureSkill is a tool that performs 10-layer security analysis on OpenClaw agent skills before execution, detecting threats like credential harvesting, outbound calls, and shell scripts. It produces a signed audit report mapped to OWASP, MITRE, NIST, and EU AI Act standards.

Do you actually use openclaw to buy stuff

Reddit r/openclaw

A discussion about the adoption of OpenClaw, an agentic protocol for commerce, questioning whether people are using it for consumer purchases like groceries, flights, or Amazon orders.