[8cvor6j844qw_d6]

I went with an isolated Raspberry Pi and a separate chat account and network.

The only remaining risk is the API keys, but easily isolated.

Although I think having direct access on your primary PC may make it more useful, the potential risk is too much for my appetite.

[oxag3n]

The only remaining risk? Considering wide range of bad actors and their intent, stealing your API keys is the last thing I'd worry about. People ended up in prison for things done on their computers, usually by them.

[8cvor6j844qw_d6]

Unless you're proposing never touching OpenClaw, how will you set it up to your satisfaction in terms of security?

> stealing your API keys is the last thing I'd worry about

I don't know, I very much prefer the API credits not being burned needlessly.

Now that I think of it, is there ever a case where an Anthrophic account is banned due to the related API keys being misused?

[iugtmkbdfil834]

This is genuinely the only way to do it now in a way that will not virtually guarantee some new and exciting ways to subvert your system. I briefly toyed with an idea of giving agent a vm playground, but I scrapped it after a while. I gave mine an old ( by today's standards ) pentium box and small local model to draw from, but, in truth, the only thing it really does is limit the amount of damage it can cause. The underlying issue remains in place.