Clawcage
Run AI agents in an air-gapped VM in Apple Virtualisation
14 followers
Run AI agents in an air-gapped VM in Apple Virtualisation
14 followers
Run AI agents in air-gapped Linux VMs on your Mac. Full network inspection, credential isolation and kill-switch control. Free and open source. Clawcage is made to host any claw of your choice, including - OpenClaw, PicoClaw, NullClaw, ClaudeCode, Codex etc., Your AI is not just isolated in a docker container but is completely air-gapped on network, storage and credential level from the host machine. Cage your AI agents before they cage your privacy!
You guys might not realize why this is a big deal at first, but after going through the ClawCage repo, I think this deserves real appreciation @hackyguru . What stood out to me is that it’s not just another sandbox layered on the host like openshell style setups. It runs agents inside isolated linux VMs using Apple’s virtualization stack, forces traffic through an inspectable proxy, keeps creds out of the guest & defaults to ephemeral sessions. That is a much stronger & more carefully implemented trust boundary for local agent deployment. In contrast to Docker or openshell based systems like Nvidia’s NemoClaw, which still rely on shared kernel isolation, this basically avoids that entire class of risk by just not running inside the host in the first place. It’s a small detail but also… not really, it changes the whole security model, makes me more confident to cancel my VPS sub & switch to local Open claw setup. Great work
this immediately caught my attention because i honestly hate relying on Docker for anything security-related. it always feels like a convenience layer, not real isolation.
as someone who actually cares about protecting my machine & data, this is probably the best solution out there.
Outerbridge
convenient to isolate and run multiple agents locally!