Comment on Self-Host Weekly (30 January 2026)
theunknownmuncher@lemmy.world 1 day agoYeah, great, except the bot can literally just write whatever it wants to the config file ~/.openclaw/exec-approvals.json and give itself approval to execute bash commands.
nix98@lemmy.world 1 day ago
This is where tools like bubblewrap (bwrap) come in. For opencode, I heavily limit what it can see and what is has access to. No access to my ssh keys or aws credentials or anything else.
B0rax@feddit.org 1 day ago
Yes, that is what you do. But not what the majority does… heck it even asks if it can get access to 1password