Security & approvals
Designed for production SOCs: minimize exposed surfaces, encrypt internal traffic, and keep execution human-gated.
Network isolation
| Component | Binding | Access |
|---|---|---|
| OpenClaw Gateway | 127.0.0.1:18789 | Localhost only |
| MCP Server | Tailscale IP | VPN only |
| Runtime Service | 127.0.0.1:9090 | Localhost only |
Goal: no services need to be exposed to the public internet.
Access control
- Pairing mode: devices must be explicitly approved
- Encrypted traffic: VPN layer for inter-component traffic
- Credential storage: isolated with strict permissions
- Mandatory human approval for response actions
See the pipeline Deploy
Two-tier approvals
Autopilot can propose fast, but humans decide what happens. Use Slack approvals or your own workflow to approve/execute.
autopilot_plans_created_total autopilot_plans_approved_total autopilot_plans_rejected_total autopilot_plans_executed_total