openclaw-contained. TaskForge runs AI agents in sandboxed Docker containers with capability-based security. Agents start with minimal permissions and must request new capabilities (packages, network access, tools) through a human-in-the-loop approval process. Every approval triggers a container image rebuild, and every LLM interaction is logged for audit.

github.com/romanklis/openclaw-contained

Problem

Audience

Updates

No founder updates yet. Check back soon.