We just open-sourced an OpenClaw | Friends of the Crustacean 🦞🤝 | Page 1

lime socket Feb 5, 2026, 7:38 PM

#

Link to forked repo
https://github.com/sondera-ai/openclaw/tree/sondera-pr

PR is here: https://github.com/openclaw/openclaw/pull/8448

wooden bone Feb 6, 2026, 12:08 AM

#

what if it doesnt use your blacklisted commands to rm ? and instead makes a ps1 script and runs in from a windows instance through a tunnel on powershell instead of bash ?

#

what if it writes a ruby-on-rails script and runs it to rm ?

#

what if it writes a pearl script and runs it ?

#

what if it uses one of the 600 other commands that are not rm and do the same thing ?

lime socket Feb 6, 2026, 3:55 PM

#

Correct @wooden bone ! This is meant to be an initial list of rules and isn't exhaustive. I definitely saw OpenClaw try to get creative to go around rm commands with mv to trash or find delete.

We are working on creating more sophisticated rules as well that can detect unexpected tool calls.

What's cool is that with Cedar you can start with deny-all and just do allows. So you could deny all and only allow "ls", and if the agent tried to run "perl" it wouldn't be able to.

wooden bone Feb 6, 2026, 7:50 PM

#

good luck with that because what i just release a package then ?

#We just open-sourced an OpenClaw