Running OpenClaw in an Isolated Micro-VM with Void-Box
The r/openclaw community shared an experiment running OpenClaw inside a fully isolated execution environment connected to Telegram. Instead of using containers or running directly on the host, the setup uses a dedicated micro-VM boundary.
Setup Details
The configuration runs OpenClaw as a service inside an isolated micro-VM. Telegram forwards messages to this environment, with all execution staying sandboxed within the VM. No container runtime is involved in this setup.
Execution Boundaries
The goal is to provide OpenClaw with a clean execution boundary that prevents host filesystem leakage, avoids shared runtime state, and establishes explicit capability boundaries. This approach differs from container-based isolation by using full virtualization.
Void-Box Runtime
The isolation is powered by Void-Box, a capability-bound runtime that executes workflows inside isolated KVM micro-VMs (using native virtualization framework on macOS). Void-Box treats execution boundaries as a first-class primitive, expressed as: VoidBox = Agent(Skills) + Isolation.
Demo Content
A short demo shows the declarative workflow, the service booting inside a micro-VM, and Telegram receiving responses. The combination demonstrated is void-box + openclaw + telegram.
Repository
The Void-Box project is available at https://github.com/the-void-ia/void-box.
📖 Read the full source: r/openclaw
👀 See Also
Sense: Go SDK for LLM-powered test assertions and structured text extraction
Sense is a Go SDK that uses Claude for two main functions: evaluating non-deterministic output in tests with plain English assertions, and extracting typed structs from unstructured text through reflection and forced tool_use.
ExposureGuard MCP Server Adds Domain Security Scanning to Claude Desktop
A developer built an MCP server for domain security scanning using Claude Code, exposing four tools that check SPF, DMARC, SSL, security headers, DNSSEC, open ports, MX, and HTTPS. The server is available via pip install exposureguard-mcp with a free tier of 100 API calls per day.
Dual-model architecture reduces token consumption by half for long conversations
A developer built a dual-model system where a small 'subconscious' model compresses conversation history in the background, allowing the main model to work with a curated ~35K context instead of 120K tokens of raw history. This architecture cuts token consumption roughly in half for sustained project work.
Text Adventure Game Engine Skill for Claude Desktop
A text adventure game engine runs entirely inside Claude Desktop as a skill with no servers, apps, or code to run. It includes full RPG mechanics, 3D dice rendering, 19 expansion modules, and portable save files.