Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

Security: Overview

An agent that can execute shell commands, open URLs, and write files is a privileged process. ZeroClaw’s security model sits on top of every tool call and every channel message, gating what the agent is actually allowed to do at runtime.

Each agent runs under a risk profile and a runtime profile it references; see Agents for how those references attach to an agent.

  • The security model: the six enforcement layers, additional gates, failure behavior, and the default posture.
  • Autonomy levels: the coarse-grained ReadOnly / Supervised / Full knob.
  • Sandboxing: OS-level isolation backends per platform.
  • Tool receipts: the signed, chained audit log of every tool call.