Granular Permission Control And Agent Action Authorization

via “sender allowlisting and privilege separation for access control”

A lightweight alternative to OpenClaw that runs in containers for security. Connects to WhatsApp, Telegram, Slack, Discord, Gmail and other messaging apps,, has memory, scheduled jobs, and runs directly on Anthropic's Agents SDK

Unique: Enforces sender allowlists at the host level (before container invocation) rather than within agent code, ensuring that unauthorized messages never reach the agent and reducing the attack surface for privilege escalation

vs others: Simpler than OAuth/OIDC-based authentication because it relies on platform-provided sender identities; more flexible than role-based access control (RBAC) because allowlists can be customized per agent without a centralized policy engine