OpenClaw, but in containers: Meet NanoClaw
The Summer Yue inbox-deletion incident. The OpenClaw WebSocket zero-click vulnerability. A series of agent sandboxing failures that made headlines through late 2025 and into 2026. These weren’t edge cases — they were warnings. Gavriel Cohen, a software engineer based in Israel, has been paying attention. Today, he’s shipping an answer: NanoClaw, a containerized OpenClaw alternative that puts security architecture first, not as an afterthought. What Is NanoClaw? NanoClaw is an open-source agent platform inspired by OpenClaw — but built from the ground up to run agents inside Docker containers with minimal permissions. The design philosophy is simple: agents shouldn’t have access to more of your system than they actually need to do their jobs. ...