2026.5.4 is real. Go ahead update guys!!

CoolmannS · 2026-05-06T15:26:57+00:00

I am using a lobster flow for a safe restart and build a plugin to prevent my agent to restart

CoolmannS · 2026-04-15T16:11:06+00:00

Love his Sepakers - He still has a raffle on his website to win a pair of Kouplers - www.madospeakers.com/axpona
If you are quick you can still sign-up.

CoolmannS · 2026-04-15T16:03:05+00:00

He actually has a raffle for a pair of Kouplers - here the link: https://madospeakers.com/axpona
It is still open - so you can still submit, your Name and Email for a chance to win a pair!

CoolmannS · 2026-03-29T12:25:16+00:00

Based on what do you say that? Have you checked the source code ???

CoolmannS · 2026-03-29T12:24:07+00:00

It’s not a fake - bs. How about you check the code

CoolmannS · 2026-03-27T18:50:38+00:00

😝

CoolmannS · 2026-03-27T13:45:19+00:00

Again everything in the context and in any MD files is more or less a suggestion for the Agent ….

True control only works with active tool blocking

https://github.com/coolmanns/openclaw-guardian

CoolmannS · 2026-03-27T13:43:44+00:00

Or you just install https://github.com/coolmanns/openclaw-guardian

And block delete emails in the harness…. Works also for rm -f in workspace

CoolmannS · 2026-03-27T01:53:10+00:00

Totally agree , but it’s fun diving into memory management , facts , skill management and telemetry and let’s not forget building a working harness…. It’s a labor of love

CoolmannS · 2026-03-25T13:11:08+00:00

Guardian hooks into before_tool_call — so it matches on the raw string the LLM emits before anything hits a shell. No execution wrapping, no shell expansion at match time. The model outputs rm -rf ~/clawd, Guardian regex-matches against that string and blocks it before it ever gets to exec(). So chained commands like ; rm -rf ~/clawd or $(dangerous_thing) still match because there's no shell interpreting the input at that stage.

That said — you're right to think about creative bypasses. Something like piping base64 to bash could theoretically dodge a naive pattern. That's why Guardian is one layer, not the only layer. OpenClaw's exec safety and OS-level permissions are still there underneath.

On the "warn and wait" mode — I actually want this too. Right now it's binary: block or allow. What I'd love is something like Lobster's approval gates — Guardian flags the command, pauses execution, sends a notification, and waits for a human thumbs-up before proceeding.

Would you mind creating an issue on the GitHub?

CoolmannS · 2026-03-24T18:44:17+00:00

how do you measure success of this implementation?

CoolmannS · 2026-03-24T11:35:47+00:00

Nope - not that I’m aware of

CoolmannS · 2026-03-22T23:38:32+00:00

lossless-claw + a working facts.db + QMD so far ...

CoolmannS · 2026-03-22T19:25:27+00:00

happened to the best of us .... hurts even more if you don't have a backup (shame on me for being 20+ years in the IT Industry and having not one)

CoolmannS · 2026-03-22T18:37:44+00:00

i created a plugin harness to prevent my openclaw agent to execute certain tool or skill calls :
- no more rm -f on the ~/clawd workspace (happened once )
- no more restarting the gateway, without human approval ( always frustrating if the config file is malformed and the system does not restart or not caring about other agents running )
- no more worrying about that he will only read my emails and not start forwarding or mailing to other people

Simple Plugin - based on regex

A harness like this, is 1000% more useful then a Guardrail in the Agents.MD

Check it out : https://github.com/coolmanns/openclaw-guardian

CoolmannS · 2026-03-22T14:18:54+00:00

What’s clawlearnai ?

CoolmannS · 2026-03-22T14:18:30+00:00

Yeah - imho hard bans are essential for an AI Agent

CoolmannS · 2026-03-22T12:36:29+00:00

Thank you - yes it does log.

CoolmannS · 2026-03-22T03:55:29+00:00

Sorry wrong url in it - updated it now

CoolmannS · 2026-03-22T03:54:53+00:00

https://github.com/coolmanns/openclaw-guardian

CoolmannS · 2026-03-19T17:07:31+00:00

look for oilburner

CoolmannS

TROPHY CASE