OpenClaw Setup Guide: 10 Configurations for Every Use Case (2026)

The Definitive Insider's Guide to Building Your Perfect OpenClaw Setup

200,000 GitHub stars. 72 hours. That's how fast OpenClaw became the fastest-growing open-source project in GitHub history when it launched in late 2025 - Wikipedia. By February 2026, the project's creator Peter Steinberger announced he was joining OpenAI, and the technology had fundamentally changed how people think about personal AI assistants.

But here's what most guides won't tell you: your OpenClaw setup is only as good as the decisions you make configuring it. The same framework that runs a $50 Raspberry Pi as a silent home automation hub can power a $150/month enterprise-grade multi-agent system on AWS. The difference isn't just hardware—it's how you configure the variables.

This guide walks you through every decision point in building an OpenClaw setup. We'll start by mapping the core variables—hardware, model selection, skills, personalization, channel integration, automation, and security—then show you exactly how to combine them for 10 specific real-world scenarios, each tailored to a different persona and use case.

Whether you're a developer wanting a 24/7 coding assistant, a solopreneur automating a business, a researcher managing knowledge, or a privacy-focused individual who refuses to let data leave their home network, there's an optimal OpenClaw configuration for you. This is the insider knowledge.

---

Contents

1. What is OpenClaw and Why the Setup Matters
2. The Seven Core Variables of Any OpenClaw Setup
3. Variable 1: Hardware Infrastructure
4. Variable 2: Model Selection and Routing
5. Variable 3: Skills and Extensions
6. Variable 4: Personalization and Memory
7. Variable 5: Channel Integration
8. Variable 6: Automation and Scheduling
9. Variable 7: Security and Sandboxing
10. Setup Scenario 1: The Developer's Always-On Coding Assistant
11. Setup Scenario 2: The Solopreneur Business Automation Stack
12. Setup Scenario 3: The Privacy-First Home Server
13. Setup Scenario 4: The Content Creator's Social Media Engine
14. Setup Scenario 5: The Enterprise Team Deployment
15. Setup Scenario 6: The Researcher's Knowledge Management System
16. Setup Scenario 7: The Budget-Conscious Student Setup
17. Setup Scenario 8: The High-Performance Cloud Deployment
18. Setup Scenario 9: The Multi-Agent Orchestration System
19. Setup Scenario 10: The Minimalist Single-Purpose Agent
20. Cost Analysis Across All Scenarios
21. Common Mistakes and How to Avoid Them
22. Future-Proofing Your Setup

---

1. What is OpenClaw and Why the Setup Matters

OpenClaw is a free and open-source autonomous AI agent that transforms large language models into proactive assistants capable of executing real tasks - DigitalOcean. Unlike chatbots that merely answer questions, OpenClaw controls your desktop, manages files, sends messages, browses the web, and runs scheduled automations—all while communicating through the messaging apps you already use.

The platform connects to over 50 integrations including WhatsApp, Telegram, Discord, Slack, iMessage, Signal, and more. It bridges these communication channels to powerful AI models from Anthropic, OpenAI, Google, or local alternatives through Ollama. Your agent meets you wherever you are, on whatever device you're using.

But the critical insight is this: OpenClaw is infrastructure, not a finished product. The framework provides capabilities; your configuration decisions determine outcomes. Two people running the same OpenClaw version can have radically different experiences based on their setup choices.

Consider the contrast:

A developer might configure OpenClaw with Claude Opus 4.6 as the primary model, GitHub integration skills, SSH access to servers, aggressive sandboxing in Docker containers, and zero channel integrations beyond the terminal. Their agent is a sophisticated coding partner that reviews PRs, manages deployments, and monitors infrastructure—but never touches a messaging app.

A small business owner might use a mix of cheap and premium models through OpenRouter, install CRM and email skills, configure WhatsApp as the primary channel, enable cron jobs for daily reports, and run everything on a $5/month VPS. Their agent handles customer inquiries, schedules appointments, and sends invoices—but has no idea what a Git repository is.

Same framework. Completely different tools. This guide helps you make the right choices for your situation.

---

2. The Seven Core Variables of Any OpenClaw Setup

Every OpenClaw configuration can be understood as a combination of seven fundamental variables. Understanding these variables—and how they interact—is the foundation for building an optimal setup.

Variable Overview

Hardware Infrastructure determines where your agent runs physically. Options range from your personal laptop to Raspberry Pi, Mac Mini, VPS providers like Hetzner or DigitalOcean, or enterprise cloud platforms like AWS.

Model Selection and Routing controls which AI models power your agent's intelligence. You can use a single premium model, a mix of models through OpenRouter, or local models through Ollama. Model choice affects cost, capability, and privacy.

Skills and Extensions define what your agent can actually do. OpenClaw's skill marketplace offers 5,700+ community skills for everything from GitHub integration to social media management - GitHub. Skills turn your agent from a conversationalist into an executor.

Personalization and Memory shapes your agent's personality and context. The SOUL.md file defines behavior; memory configuration determines how much context persists across conversations. Heavy personalization creates a "digital twin"; minimal personalization creates a generic assistant.

Channel Integration determines how you communicate with your agent. Each channel (WhatsApp, Telegram, Discord, etc.) has different capabilities and tradeoffs. Some users configure a single channel; others run multi-channel setups with unified context.

Automation and Scheduling enables proactive behavior through cron jobs, webhooks, and scheduled tasks. Without automation, your agent only responds when prompted. With automation, it works around the clock without your input.

Security and Sandboxing controls the blast radius when things go wrong. OpenClaw has shell access, browser control, and email capabilities—enormous power with corresponding risk. Proper sandboxing contains damage from model hallucinations or malicious inputs.

These seven variables interact in complex ways. A high-security setup might require dedicated hardware (Variable 1), restrict model access to local-only (Variable 2), limit skills to read-only operations (Variable 3), and run everything in hardened Docker containers (Variable 7). Each variable constrains or enables others.

---

3. Variable 1: Hardware Infrastructure

The first decision is where your agent lives. This choice affects everything from cost to latency to privacy to reliability.

Option A: Local Machine (Your Laptop/Desktop)

Running OpenClaw on your existing computer is the simplest starting point. Install with a single command: curl -fsSL https://openclaw.ai/install.sh | bash - AlphaTechFinance.

Advantages: Zero additional cost. Maximum privacy—data never leaves your machine. Immediate access to local files and applications. Full control over the environment.

Disadvantages: Only works when your computer is running. Sleep mode kills the agent. Laptop travel means inconsistent availability. Resource contention with your other applications.

Best for: Testing, development, and users who want AI assistance only during working hours.

Option B: Mac Mini (Always-On Home Server)

The Mac Mini M4 has become the gold standard for home OpenClaw servers - SitePoint. At $599 for the base model (16GB RAM), it provides:

Apple Silicon efficiency: 5-7 watts at idle, 8-15 watts under typical load - AI.cc. That translates to roughly $1-2/month in electricity.

The M4 chip delivers faster single-threaded Node.js performance than previous generations, plus Apple's 16-core Neural Engine provides 38 TOPS for local model acceleration - Marc0.dev.

RAM considerations: 16GB is sufficient for cloud providers (Anthropic, OpenAI). For local models through Ollama, consider 24GB or 32GB to run 13B-34B parameter models. The M4 Pro with 48GB handles 70B+ parameter models - GetClawdbot.

Best for: Enthusiasts wanting reliable 24/7 operation with low operating costs, especially those interested in running local models.

Option C: Raspberry Pi (Ultra-Low-Cost Server)

For the truly budget-conscious, a Raspberry Pi offers a $50 entry point - OpenClawAI. The official Raspberry Pi blog even published a guide for running OpenClaw - Raspberry Pi.

Hardware requirements: Raspberry Pi 5 with 8GB RAM recommended. 64GB SD card minimum, though an NVMe SSD via PCIe is recommended for reliable 24/7 operation - GetClawdbot.

Power consumption: About 5 watts, translating to ~$1/month in electricity - Adafruit.

Limitations: The Pi can't run local models (no GPU acceleration). All LLM calls must go to cloud APIs. Memory constraints limit concurrent operations.

Best for: Privacy-conscious users who want local control but are comfortable with cloud API usage. MCP gateway setups. Home automation hubs.

Option D: Budget VPS (Hetzner, Contabo, DigitalOcean)

European providers like Hetzner offer remarkable value. A CPX31 instance (4 vCPU, 8GB RAM, NVMe SSD) costs approximately $11/month and handles most production workloads - CyberNews.

For absolute minimums, the Hetzner CX22 at ~$4/month or Contabo VPS S at $4.99/month work for light usage - ClawTrust.

The guide "How to Set Up a Secure $2.50 VPS and Run OpenClaw Safely" demonstrates the absolute floor - Medium.

Terraform modules exist for automated Hetzner deployments, including firewall configuration and cloud-init automation - GitHub.

Best for: Users wanting European data residency, 24/7 uptime, and minimal monthly costs.

Option E: AWS/GCP/Azure (Enterprise Cloud)

For organizations requiring enterprise guarantees, AWS EC2 deployments are well-documented. A complete infrastructure guide covers security, scaling, and integration with AWS services like Bedrock - Medium.

AWS samples demonstrate one-click deployment with Graviton ARM processors for cost efficiency - GitHub.

Typical costs: A security-aware baseline runs approximately $17/month in eu-central-1 - Cloudvisor.

Best for: Enterprises requiring compliance certifications, SLAs, and integration with existing cloud infrastructure.

Hardware Decision Matrix

---

4. Variable 2: Model Selection and Routing

Which AI model powers your agent is perhaps the most impactful decision after hardware. Models differ dramatically in capability, cost, and personality.

Direct Provider Access (Anthropic, OpenAI)

The most straightforward approach is connecting directly to a single provider. Anthropic's Claude models are the default recommendation.

Authentication: Run openclaw onboard --anthropic-api-key "$ANTHROPIC_API_KEY" or configure manually in openclaw.json - OpenClaw Docs.

Available Claude models (as of February 2026):

• Claude Opus 4.6: 1-million-token context, 128K output, best reasoning
• Claude Sonnet 4.5: Balanced capability and cost
• Claude Haiku 4.5: Fast, cheap, good for simple tasks

The key trade-off is capability versus cost. Opus 4.6 excels at complex reasoning but costs significantly more per token than Haiku.

OpenRouter (Multi-Model Routing)

OpenRouter provides a unified API that routes requests to many models behind a single endpoint - OpenRouter Docs. This enables sophisticated model-mixing strategies.

Configuration format: Use openrouter/<author>/<slug> for model references - OpenClaw Docs.

Auto-routing: The openrouter/openrouter/auto model automatically selects cost-effective models based on your prompt - VelvetShark. Simple tasks route to cheap models; complex tasks get premium models.

Manual routing strategies: Configure separate agents for different complexity tiers:

• Quick queries (heartbeats, status checks): Cheap models (Gemini Flash, Claude Haiku)
• Standard interactions: Mid-tier models (Claude Sonnet, GPT-4o)
• Complex tasks: Premium models (Claude Opus, GPT-o3)

An 80/15/5 split across these tiers typically reduces costs 40-60% compared to using a premium model for everything - DeepWiki.

Fallback support: Configure fallbacks so if the primary model is unavailable, OpenClaw tries alternatives in order - GitHub.

Local Models (Ollama)

Running models locally through Ollama provides maximum privacy—no data leaves your machine - Ollama Docs.

Requirements: At least 64K token context window is recommended for local models. GPU acceleration dramatically improves speed (5-10x faster than CPU) - CodersEra.

Recommended models (February 2026): The community recommends qwen3 series > deepseek-r1 > llama3.3 with at least 14B+ parameters. 8B models may hallucinate tool calls or forget context - Ollama Blog.

Configuration pattern: Use a "primary + fallback" approach where an instruct model handles most tasks while a specialized coder model handles code-heavy operations - DataCamp.

Cost Optimization Strategies

OpenClaw's system prompt typically runs 5,000-10,000 tokens and is resent with every API call - Apiyi. This compounds costs for active users.

Cost reduction techniques:

• Route simple tasks to cheap models (saves 50-70%)
• Use aggressive context pruning (reduces input tokens)
• Enable caching where available
• Batch heartbeat operations

Most users spend between $1 and $150/month on tokens depending on model selection and workflow intensity - EESEL. The median for active users is $5-30/month - TheCaio.

---

5. Variable 3: Skills and Extensions

Skills transform OpenClaw from a conversationalist into an executor. Without skills, your agent can only talk. With skills, it can act.

The ClawHub Marketplace

ClawHub is OpenClaw's community marketplace hosting 5,705+ skills as of early 2026 - GitHub. Skills range from simple utilities to complex workflow automations.

Access: Skills are available directly from OpenClaw or through the web at clawhub.com - LearnOpenClaw.

Skills vs. Plugins

OpenClaw distinguishes between two extension formats:

Skills are the native extension format following the AgentSkills specification. They're designed specifically for OpenClaw and integrate deeply with the agent's capabilities.

Plugins use the Model Context Protocol (MCP) and can connect OpenClaw to any MCP-compatible server, including tools built for other MCP clients like Claude Code - OpenClaw Docs.

Install plugins via: openclaw plugins install <npm-spec>. They extract to ~/.openclaw/extensions/ - OpenClaw Docs.

Essential Skill Categories

Development and DevOps:

• GitHub integration for PR review, issue management
• SSH access for server management
• Docker control for container operations
• CI/CD monitoring and triggers

Productivity:

• Notion, Obsidian, Apple Notes integration
• Calendar management (Google Calendar, Apple Calendar)
• Task management (Things 3, Todoist, Trello)
• Email operations (read, compose, send)

Browser Automation:

• Web scraping and data extraction
• Form filling and submission
• Site navigation and interaction
• Screenshot capture - LumaDock

Social Media:

• Genviral skill for TikTok, Instagram, YouTube, Facebook, Pinterest, LinkedIn automation - Yahoo Finance
• Content scheduling and analytics
• Engagement automation

Business Operations:

• CRM integration
• Invoice generation
• Client onboarding automation
• Report generation

Security Considerations for Skills

Skills can have significant capabilities. The SecureClaw project adds security auditing and rule-based controls to OpenClaw environments - HelpNetSecurity.

Best practice: Start with read-only skills. Only enable write or execute permissions after careful vetting. Third-party skills should be reviewed before installation.

---

6. Variable 4: Personalization and Memory

How much your agent knows about you—and how persistently it remembers—fundamentally shapes the interaction experience.

The System Prompt Architecture

Every OpenClaw agent builds its system prompt by concatenating 5 markdown files in order - OpenClaw Docs:

1. SOUL.md: Core personality, values, and persistent instructions
2. IDENTITY.md: Agent name, capabilities, and self-concept
3. USER.md: Information about the user
4. CLAUDE.md: Model-specific instructions
5. TOOLS.md: Available tools and how to use them

SOUL.md: Your Agent's Personality

The SOUL.md file is where personalization lives. It defines your agent's persona and tone - OpenClawConsult.

OpenClaw looks for SOUL.md in your workspace root and injects: "If SOUL.md is present, embody its persona and tone. Avoid stiff, generic replies; follow its guidance unless higher-priority instructions override it."

Personalization spectrum:

Minimal personalization (generic assistant):

You are a helpful assistant. Be concise and professional.

Heavy personalization (digital twin):

You are Alex's digital extension. You know:
- He prefers morning meetings, never schedule after 4pm
- His writing style is direct and uses technical terms
- He values brevity over comprehensiveness
- When in doubt, choose speed over perfection
Respond as if you ARE Alex, not as if you're helping him.

Memory Configuration

OpenClaw's memory system allows persistent context across conversations - OpenClaw Docs.

Key configuration options:

• memorySearch.query.hybrid: Configure vector weight (0.7), text weight (0.3)
• Temporal decay: Older memories matter less
• MMR (Maximum Marginal Relevance): Reduce redundant results - MoltFounders

Memory file structure:

• MEMORY.md: Durable facts, decisions, preferences
• memory/YYYY-MM-DD.md: Daily notes and running context

autoExtract: This feature automatically identifies key facts (name, role, preferences, priorities) and saves them to semantic memory - VPN07.

Shared memory: Multiple OpenClaw agents can share a common memory store, so telling your personal agent about an event automatically updates your work agent - VPN07.

Context Compaction

When sessions approach the context limit, OpenClaw triggers automatic memory flush before compaction - Medium.

Configure compaction thresholds (default: 40k tokens) to balance context preservation with API costs - MoltFounders.

---

7. Variable 5: Channel Integration

OpenClaw supports over 20 messaging channels, allowing your agent to meet you wherever you are - DigitalOcean.

Channel Options

WhatsApp: Uses the Baileys library for WhatsApp Web protocol. During setup, scan a QR code to link your account - MarkTechPost.

Telegram: Uses the grammY framework. Create a bot through @BotFather, get a token, paste into CLI setup. Telegram is "easy mode"—formal Bot API, stable tooling, quick onboarding - ZenVanRiel.

Discord: Requires a bot application created on Discord Developer Portal. Invite bot to your server.

Slack, Teams, Signal, Matrix, IRC, iMessage, and more are all supported with channel-specific setup processes.

Single-Channel vs. Multi-Channel

Single-channel is simpler to configure and understand. Your agent lives in one app; you always know where to find it.

Multi-channel provides flexibility but requires understanding unified context. One long-running Gateway process receives messages from different platforms and routes them into the same session store - LumaDock.

If you start a conversation on WhatsApp and continue on Telegram, OpenClaw maintains the thread because context is shared.

Channel Comparison

---

8. Variable 6: Automation and Scheduling

Without automation, your agent only acts when prompted. With automation, it becomes truly proactive.

Cron Jobs

OpenClaw's cron system supports three schedule types - OpenClaw Docs:

• at: One-time execution at a specific datetime
• every: Interval-based (e.g., every 30 minutes)
• cron: Standard cron expressions (e.g., 0 3 * * * for 3am daily)

Cron runs inside the Gateway, not inside the model. Jobs persist under ~/.openclaw/cron/ so restarts don't lose schedules - Stack Junkie.

Practical examples:

• Morning briefing: 0 7 * * * — Summarize overnight emails and calendar
• End-of-day report: 0 18 * * 1-5 — Daily status update on weekdays
• Weekly review: 0 10 * * 1 — Monday morning project summary

Production Automation Examples

Context Studios runs 13 cron jobs, 78 custom MCP tools, and multiple skills in production - Context Studios. Their agent:

• Publishes blog posts in four languages
• Engages on social media
• Monitors inbox
• Generates branded images
• Manages content pipelines

All autonomously. Every single day.

Known Issues

As of February 2026, daily cron schedules sometimes skip days (48-hour jumps instead of 24-hour) - GitHub. Monitor your cron jobs if precise scheduling is critical.

---

9. Variable 7: Security and Sandboxing

OpenClaw has shell access, browser control, and email capabilities. This is an agent with enormous power and corresponding risk - Microsoft Security.

Security Mindset

Security teams recommend treating OpenClaw as untrusted code execution with persistent credentials - Microsoft Security. It should not run on standard personal or enterprise workstations; deploy only in fully isolated environments.

Docker Sandboxing

OpenClaw can run tools inside Docker containers to reduce blast radius - OpenClaw Docs. The Gateway stays on the host; tool execution runs in an isolated sandbox when enabled.

Important caveat: This is not a perfect security boundary. A default Docker container is too permissive; even a hardened container shares the host kernel - Docker Blog.

Hardening Best Practices

Don't run as root: Use specific flags to drop Linux capabilities and enforce immutability - Composio.

Mount protection: OpenClaw blocks dangerous bind sources (docker.sock, /etc, /proc, /sys, /dev). Keep sensitive mounts read-only - AIMLApi.

Network restrictions: By default, sandbox containers run with no network. Use internal: true Docker network flag to prevent direct internet routing - AdvenBoost.

Advanced isolation: For stronger boundaries, consider gVisor (kernel interception) or Firecracker MicroVMs via Kata Containers - AdvenBoost.

---

10. Setup Scenario 1: The Developer's Always-On Coding Assistant

Persona: Senior developer managing multiple repositories, wanting 24/7 code review and deployment assistance.

This scenario represents one of the most powerful and sophisticated OpenClaw deployments. A developer's coding assistant needs to understand complex codebases, maintain context across long sessions, execute shell commands safely, and integrate deeply with development infrastructure. The tradeoffs favor capability and reliability over cost savings.

The Developer's Challenge

Modern software development involves juggling multiple repositories, reviewing pull requests from team members, monitoring CI/CD pipelines, responding to production incidents, and maintaining technical documentation. The cognitive load is enormous, and context switching destroys productivity.

A well-configured OpenClaw agent becomes an extension of the developer's brain. It maintains awareness of all active projects, catches issues before they reach production, handles routine code reviews while the developer sleeps, and provides instant access to historical context about why specific architectural decisions were made.

But achieving this requires careful configuration. The agent needs access to sensitive infrastructure—Git credentials, SSH keys, deployment pipelines—which means security cannot be an afterthought. It needs enough computational resources to maintain large context windows without latency. It needs the right model to reason about code effectively.

Hardware Configuration

Mac Mini M4 Pro (48GB) running macOS Sequoia. The high RAM serves multiple purposes: it enables local model fallbacks through Ollama when network connectivity is poor, it allows maintaining larger context windows without memory pressure, and it supports running multiple agent sessions simultaneously for different projects.

The M4 Pro's neural engine provides 38 TOPS of local AI acceleration, enabling fast inference on 14B-34B parameter models. This matters during internet outages or when privacy concerns prevent cloud API usage for certain codebases.

Apple Silicon's unified memory architecture means the GPU and CPU share the same RAM pool—a significant advantage when running local models. A 32B parameter model at 4-bit quantization requires approximately 16GB of memory; the 48GB configuration provides headroom for the operating system, OpenClaw's Gateway, and comfortable local inference.

Networking considerations: Hardwired Ethernet provides lower latency and more reliability than WiFi for an always-on server. A static IP or dynamic DNS service enables remote access during travel.

Storage: 512GB SSD minimum for OS, OpenClaw, and local models. Consider external NVMe for project clones if working with very large repositories.

24/7 uptime with minimal power draw (~$1.50/month electricity). The Mac Mini handles wake-on-network correctly, but it's better to disable sleep entirely for a dedicated server role.

Model Configuration

Primary: anthropic/claude-opus-4-6 for complex code reasoning. Opus 4.6's 1-million-token context window handles entire codebases without truncation. Its reasoning capabilities catch subtle bugs and architectural issues that faster models miss.

Fallback: anthropic/claude-sonnet-4-5 for routine tasks. When Opus experiences API latency or rate limiting, Sonnet provides capable fallback. For simple queries like "what's the status of PR #234?", Sonnet is more than sufficient and responds faster.

Local fallback: qwen3:14b via Ollama for offline operation. When internet connectivity fails or for codebases that cannot leave local infrastructure, the local model provides degraded but functional operation.

Model routing logic: Configure OpenClaw to use Opus for:

• Pull request reviews
• Architecture discussions
• Bug analysis
• Code generation for new features

Use Sonnet for:

• Status checks
• Simple command execution
• Documentation queries
• Routine notifications

This tiered approach reduces costs by 40-50% while maintaining Opus quality for tasks that benefit from it.

Skills Stack

The development-focused skill stack requires careful selection. Each skill adds capabilities but also increases attack surface and cognitive load on the model.

GH-Issues: GitHub integration for PR review, issue triage, and repository management. This skill enables the agent to:

• List open PRs with their status and review requirements
• Fetch diff contents for automated review
• Post review comments directly on PRs
• Create and manage issues
• Monitor CI/CD status

SSH-Control: Server access for deployment checks and infrastructure management. Configure with strict key-based authentication and limited command allowlists. The agent should be able to check server status and view logs but not make arbitrary changes.

Docker-Ops: Container management for development environments. Enables listing containers, viewing logs, and basic lifecycle operations.

playwright-cli-2: Browser automation for testing - Playbooks. Runs in sandboxed environment. Useful for:

• End-to-end testing execution
• Visual regression capture
• Automated form filling for testing

Alerting: Slack/Discord notifications for critical issues. When the agent detects something requiring human attention, it can escalate appropriately.

Code-Search: Semantic code search across repositories. Enables questions like "where do we handle authentication failures?" that would otherwise require manual grep/ripgrep operations.

Memory Configuration

Heavy personalization focused on codebases. The developer agent's memory is its most valuable asset—it accumulates institutional knowledge over time.

SOUL.md content example:

You are Alex's senior engineering partner. You've worked together for months and understand:

Code Philosophy:
- Prefer explicit over implicit
- Tests are documentation; documentation is tests
- Performance matters only after correctness
- Every abstraction needs justification

Team Context:
- Maria reviews frontend PRs; defer complex React questions to her reviews
- The payments team has a 24-hour SLA on security-related PRs
- Friday deployments require explicit approval

Historical Decisions:
- We chose PostgreSQL over MongoDB in Q3 2025 for ACID guarantees
- The authentication system is intentionally simple; complexity lives in authorization
- The API rate limiter uses token buckets, not sliding windows

MEMORY.md structure: Repository structures with key files and patterns per project. Code conventions and linting configurations. Team member expertise areas and communication preferences. Past incident responses with what worked and what didn't.

Daily memory files: Track ongoing work, blocking issues, and decisions made during the day. These provide context continuity when returning to problems after breaks.

Channel Integration

Terminal only. No messaging apps—this is a developer tool accessed via CLI. The terminal provides:

• Full ANSI color support for code display
• Copy/paste integration with system clipboard
• Session multiplexing through tmux/screen
• Integration with shell history and aliases

For developers who want mobile notifications without full messaging integration, configure the Alerting skill to send push notifications to a dedicated channel while keeping interaction terminal-based.

Automation

Development automation focuses on reducing toil and catching issues early.

Every 30 minutes: Check for new PRs requiring review. For each new PR:

• Fetch the diff
• Analyze for common issues (unused imports, missing tests, security concerns)
• Post preliminary automated review
• Notify if human review is needed

Daily 6am: Security vulnerability scan across dependencies. Run npm audit, pip-audit, or equivalent for each project. Summarize findings by severity. Create issues for anything critical.

On git push webhook: Trigger deployment checks. When code lands on main branches:

• Verify CI pipeline status
• Check deployment health after rollout
• Monitor error rates for 15 minutes post-deploy
• Alert if anomalies detected

Weekly Monday 9am: Technical debt summary. Analyze recently closed issues for patterns. Identify recurring problem areas. Suggest refactoring priorities.

Security

Development environments require careful security consideration. The agent has access to credentials, source code, and production infrastructure.

Run in hardened Docker sandbox with read-only filesystem. The sandbox prevents:

• Accidental file system modifications outside designated areas
• Malicious command execution from model hallucinations
• Persistence of compromised state

Network access limited to:

• GitHub API (for PR operations)
• Internal servers (SSH, monitoring APIs)
• Model APIs (Anthropic, OpenRouter)
• Specific domains for package registries

No access to credentials outside mounted volumes. SSH keys stored in separate volume with 400 permissions. API tokens passed via environment variables, not configuration files.

Egress monitoring: Log all outbound connections. Review periodically for unexpected destinations.

Implementation Steps

1. Hardware setup: Unbox Mac Mini, connect to Ethernet, configure static IP, disable sleep
2. Base installation: Install Homebrew, Docker Desktop, Ollama
3. OpenClaw installation: Run the installer, complete onboarding with Anthropic API key
4. Ollama models: Pull qwen3:14b for local fallback
5. Skills installation: Install each skill, configure API credentials
6. Memory initialization: Create SOUL.md with developer context
7. Automation setup: Configure cron jobs and webhooks
8. Security hardening: Enable Docker sandboxing, configure network rules
9. Testing: Run through common workflows to verify configuration
10. Documentation: Record setup decisions for future reference

Cost Estimate

• Hardware: $1,800 one-time (Mac Mini M4 Pro 48GB)
• API: ~$50-80/month (heavy Opus usage with Sonnet fallback)
• Electricity: ~$1.50/month
• Monthly ongoing: $51-82

The hardware investment pays for itself within 6-12 months compared to cloud deployment at equivalent capability levels. For developers billing $150+/hour, even modest productivity gains from reduced context switching quickly justify the investment.

---

11. Setup Scenario 2: The Solopreneur Business Automation Stack

Persona: Solo business owner running a consulting practice, wanting to automate admin while focusing on billable work.

This scenario represents the highest leverage use of OpenClaw for small business owners. When you're the only employee, every minute spent on administration is a minute not spent on revenue-generating work. The goal is building an automated operations layer that handles routine tasks while escalating appropriately when human judgment is needed.

The Solopreneur's Challenge

Running a consulting business solo means wearing every hat: salesperson, project manager, accountant, administrator, and service provider. The administrative overhead eats into productive hours. Responding to inquiry emails, scheduling meetings, sending invoices, following up on payments, updating CRM records, preparing proposals—these tasks are necessary but repetitive.

The traditional solutions—hiring a virtual assistant or administrative employee—introduce coordination overhead, training requirements, and recurring costs. A well-configured OpenClaw agent provides many of the same benefits at a fraction of the cost and without the management complexity.

But business automation requires careful thought. Clients expect human attention; sending obviously automated responses damages relationships. Financial operations require accuracy; sending wrong invoices creates accounting nightmares. The agent must feel like a natural extension of the business owner, not a clunky robot.

Hardware Configuration

Hetzner CPX31 VPS ($11/month). European data residency matters for GDPR compliance when serving EU clients. The 4 vCPU, 8GB RAM, NVMe SSD configuration handles all business workflows comfortably.

Hetzner provides excellent value for European hosting. The CPX31 offers dedicated vCPUs (not shared), ensuring consistent performance even during peak usage. NVMe storage provides fast database operations for CRM and memory queries.

Backup configuration: Enable automated snapshots through Hetzner's backup service. A business-critical system needs recoverability. Daily snapshots cost minimal additional expense but provide peace of mind.

Monitoring: Configure uptime monitoring through a service like UptimeRobot or Better Uptime. When the agent goes down, you need to know immediately—client inquiries shouldn't go unanswered.

Model Configuration

OpenRouter with intelligent routing:

• Quick queries → openrouter/google/gemini-2.0-flash-exp
• Standard tasks → openrouter/anthropic/claude-3.5-sonnet
• Complex reasoning → openrouter/anthropic/claude-3.5-opus

This tiered approach is essential for cost management in a business context. The agent makes dozens of decisions daily; running everything through Opus would cost hundreds per month unnecessarily.

Routing logic examples:

• "What meetings do I have tomorrow?" → Flash (simple calendar lookup)
• "Draft a follow-up email to Sarah about the project timeline" → Sonnet (requires context and appropriate tone)
• "Help me structure a proposal for a complex enterprise project" → Opus (requires strategic thinking)

The 80/15/5 split across these tiers typically reduces costs by approximately 50% compared to using a premium model for everything. For a business running at thin margins, this matters.

Fallback configuration: Configure automatic fallback when primary models are unavailable. Business communications cannot wait for API outages. If Sonnet is down, fall back to GPT-4o or Gemini Pro.

Skills Stack

Business operations require a focused set of well-integrated skills. Each skill should solve a real workflow problem.

Email-Suite: Gmail integration for reading, drafting, and sending. This is the highest-leverage skill for most businesses. The agent can:

• Read incoming emails and classify by urgency
• Draft responses using appropriate tone based on sender relationship
• Send routine responses (scheduling confirmations, invoice acknowledgments)
• Flag emails requiring personal attention

Calendar-Pro: Google Calendar management. Handles:

• Checking availability for meeting requests
• Proposing meeting times based on preferences (no early mornings, focus time blocks)
• Rescheduling and cancellations
• Travel time buffers between appointments

Invoice-CLI: Generate and send invoices. Connects to Stripe or PayPal for invoice generation. Automates:

• Creating invoices based on project completion
• Sending payment reminders at appropriate intervals
• Tracking outstanding payments and alerting on aging invoices

CRM-Connect: Client database operations. Whether using Notion, Airtable, or a dedicated CRM:

• Log client interactions automatically
• Update deal stages based on email content
• Retrieve client history for context in communications

NotionDB: Knowledge base and project tracking. Maintains:

• Project status updates
• Deliverable tracking
• Meeting notes and action items
• Process documentation

7 core skills handle approximately 85% of routine operations, with human oversight reserved for edge cases and high-stakes decisions - ClawOneClick.

Memory Configuration

Client-focused personalization makes business communications feel natural rather than automated.

SOUL.md for business context:

You are the administrative extension of a solo consulting practice.

Communication Style:
- Professional but warm—we build relationships, not transactions
- Never overpromise on timelines
- When uncertain, say "let me check and get back to you"
- Match the formality level of whoever you're communicating with

Business Rules:
- Standard rate is $X/hour; enterprise projects negotiate custom
- Invoice Net-30 for established clients, 50% upfront for new
- No meetings before 9am or after 5pm without explicit approval
- Discovery calls are 30 minutes maximum

Client Relationships:
- Big Corp is our largest client; prioritize their requests
- StartupCo prefers Slack over email
- Agency LLC has a history of late payments; require upfront for new work

Client preference tracking: Store communication preferences, project history, and relationship notes per client. The agent should remember that Client A prefers brief bullet points while Client B wants detailed explanations.

Project timelines: Active projects with milestones, deliverables, and deadlines. The agent uses this context when responding to status inquiries.

Pricing and proposals: Common proposal structures and pricing templates. Enables quick proposal generation for standard engagements.

Channel Integration

WhatsApp as primary (mobile-first business). Most solopreneurs live on their phones. WhatsApp provides:

• Instant notifications for urgent matters
• Voice message support for quick responses
• Rich media for sharing documents and images
• Familiar interface that doesn't require learning new tools

Telegram as backup for more technical communications and testing. Some clients prefer Telegram, and having both configured with unified context enables seamless transitions.

The key is unified context across channels. Starting a conversation on WhatsApp while commuting and continuing on desktop when you arrive at your office should work seamlessly. OpenClaw's Gateway routes messages from different platforms into the same session store.

Automation

Automation transforms the agent from reactive to proactive, handling routine tasks without prompting.

8am daily: Morning briefing with today's meetings, pending invoices, urgent emails, and task priorities. Delivered via WhatsApp as the first message of the day.

Example briefing format:

Good morning! Here's your day:

📅 MEETINGS
- 10:00 Discovery call with ProspectCo (30 min)
- 14:00 Project review with ClientA (1 hr)

💰 FINANCIALS
- 2 invoices outstanding: $4,200 (7 days overdue from Agency LLC)
- 1 payment received: $3,500 from BigCorp

📧 NEEDS ATTENTION
- ClientB asking about timeline changes
- New inquiry from referral (warm lead)

Tasks from yesterday's wrap-up:
- [ ] Send proposal to ProspectCo post-call
- [ ] Review ClientA deliverables before meeting

6pm daily: End-of-day summary with completed tasks and tomorrow's priorities. Helps close the mental loops from the day and prepare for tomorrow.

Weekly Monday 9am: Financial summary and pipeline review. Invoice aging, projected revenue, sales pipeline status, and cash flow forecast.

On new email from VIP clients: Immediate notification via WhatsApp. VIP list configured in agent memory. Ensures critical client communications never sit unread.

Invoice follow-ups: Automated reminders at 7, 14, and 21 days for unpaid invoices. Escalation to personal attention at 30 days.

Security

Standard VPS hardening is sufficient for business operations. Unlike development scenarios, business automation doesn't require shell access to untrusted environments.

Security measures:

• SSH key-only authentication (no passwords)
• Fail2ban for brute-force protection
• Firewall rules limiting inbound to necessary ports
• Encrypted secret files for API credentials
• Regular security updates via unattended-upgrades

Data considerations: Client information flows through the agent. Ensure compliance with relevant regulations:

• GDPR for EU clients (Hetzner's EU location helps)
• Industry-specific requirements (healthcare, finance) may require additional controls
• Client contracts should acknowledge AI assistance if required

Implementation Steps

1. VPS provisioning: Create Hetzner account, provision CPX31, configure initial security
2. OpenClaw installation: Standard installation with OpenRouter configuration
3. Channel setup: WhatsApp QR code linking, Telegram bot creation
4. Skills installation: Email, calendar, invoice, CRM integrations
5. Memory initialization: Create SOUL.md with business context
6. Client import: Load existing client data into memory/CRM
7. Automation configuration: Set up cron jobs for briefings and reminders
8. Testing period: Run for one week with close monitoring before trusting automation
9. Gradual expansion: Add new automations as confidence grows
10. Documentation: Record processes for future reference and refinement

Cost Estimate

• Hosting: $11/month
• API: ~$20-40/month (mixed model routing)
• Backup and monitoring: ~$5/month
• Monthly total: $36-56

For a consulting business billing $100+/hour, saving even 5 hours per month of administrative time pays for the entire setup. Most users report saving significantly more once the system is fully configured.

---

12. Setup Scenario 3: The Privacy-First Home Server

Persona: Privacy advocate who refuses to let personal data leave their home network but wants AI assistance.

This scenario represents the extreme end of the privacy spectrum. For users who are deeply concerned about data sovereignty—whether for philosophical, professional, or practical reasons—running entirely local AI is now feasible. The tradeoff is accepting somewhat reduced capability compared to frontier cloud models in exchange for complete control over data flow.

The Privacy Advocate's Challenge

Every interaction with cloud AI services sends your prompts, context, and often personal information to external servers. For most users, provider privacy policies and enterprise agreements provide adequate protection. But for some, this is unacceptable.

Consider the user profiles where local-only makes sense:

• Security researchers who cannot risk sensitive vulnerability data reaching external systems
• Healthcare professionals dealing with patient information under strict regulatory requirements
• Journalists protecting sources and investigations
• Privacy advocates who object to data collection on principle
• Government contractors with classified information handling requirements
• High-net-worth individuals concerned about financial information exposure

The challenge is that local AI has historically meant inferior AI. But the open-source model ecosystem has matured dramatically. Models like Qwen3, DeepSeek, and Llama 3.3 now provide genuinely capable reasoning—not as good as Claude Opus, but good enough for most practical tasks.

Hardware Configuration

This setup uses a two-device architecture that separates concerns while staying entirely local.

Raspberry Pi 5 (8GB) with NVMe SSD serves as the OpenClaw gateway. The Pi handles:

• Running the OpenClaw Gateway process
• Managing messaging channels (Matrix)
• Routing requests to the inference server
• Storing configuration and memory files

Using a Pi for the gateway provides several advantages:

• Low power consumption (~5W) for 24/7 operation
• Isolated from the inference server (defense in depth)
• Easy to replace if compromised
• Physically small and quiet

NVMe SSD requirement: For reliable 24/7 operation, microSD cards are insufficient. The Pi 5's PCIe interface supports NVMe drives that provide dramatically better reliability and performance.

Mac Mini M4 (24GB) runs Ollama for local inference. The additional RAM compared to the base 16GB model matters significantly:

• 24GB comfortably runs 32B parameter models at 4-bit quantization
• Leaves headroom for the OS and concurrent processes
• Enables experimentation with multiple models loaded

Both devices connect to the home network behind a properly configured firewall. The Mac Mini ideally has no direct internet access—all model downloads happen during initial setup, then the network can be further restricted.

Network architecture:

[Internet] → [Firewall/Router] → [Home Network]
                                      ↓
                        [Pi 5 Gateway] ←→ [Matrix Server]
                              ↓
                       [Mac Mini Ollama]

Model Configuration

100% local inference. All model processing runs on the Mac Mini via Ollama. Zero data leaves the home network.

Primary model: qwen3:32b for general tasks. The Qwen 3 series represents the current state-of-the-art for open-weight models. The 32B variant provides strong reasoning capabilities while fitting comfortably in 24GB unified memory.

Coder model: deepseek-coder:33b for technical work. DeepSeek's coding models excel at code generation, explanation, and debugging. The 33B variant provides near-commercial-grade coding assistance.

Instruct fallback: mistral-nemo:12b for simple tasks. When full reasoning isn't needed, the smaller Mistral model responds faster and frees resources.

Configuration pattern: Use a primary/fallback approach where complex queries route to Qwen/DeepSeek while simple queries use Mistral. OpenClaw's routing configuration can automate this based on estimated complexity.

Model management: Ollama handles model lifecycle—downloading, loading, and serving. During initial setup, download all needed models over internet. After setup, the Mac Mini can operate air-gapped.

Skills Stack

Privacy-first deployment requires careful skill selection. Every skill that reaches external services undermines the privacy goal.

Local-Files: File system operations (read-only by default). Enables the agent to access documents, read configuration files, and reference local data without any network activity.

Obsidian-Local: Knowledge base management through local Obsidian vault. All notes, links, and search stay entirely local. The agent can:

• Query notes by content or tags
• Create new notes from conversations
• Link related concepts automatically
• Generate daily summaries from note activity

Home-Assistant: Smart home control for users running Home Assistant locally. No cloud required—Home Assistant can run entirely on local network. The agent can:

• Control lights, thermostats, locks
• Check sensor readings (temperature, humidity, motion)
• Execute automations based on conversation
• Query device status

local-browser: Playwright automation running in sandboxed Docker container. For web interactions that cannot be avoided:

• Read-only web browsing for information gathering
• Form filling with explicit approval
• Screenshot capture for reference
• All traffic logged and reviewable

local-calendar: CalDAV integration with a self-hosted calendar (Nextcloud, Radicale). No Google Calendar dependency.

Memory Configuration

All memory stored locally on the Pi's NVMe drive. No sync to external services. This enables heavy personalization since everything stays private.

What to store when privacy is guaranteed:

• Health data and routines (sleep patterns, exercise logs, medication schedules)
• Financial information (budgets, account structures, spending patterns)
• Personal relationships and communication styles (birthdays, preferences, relationship notes)
• Passwords via local vault integration (Bitwarden self-hosted, KeePassXC)
• Location history and travel patterns
• Personal projects and long-term goals

The privacy guarantee changes what's comfortable to share with an AI. Users report being more candid with local-only systems, which improves agent usefulness.

Backup strategy: Memory files represent significant personal data. Configure encrypted backups to:

• External drive (manual weekly rotation)
• Separate local NAS (automated nightly)
• Never cloud services

Channel Integration

Matrix on self-hosted server. Matrix provides a modern messaging experience without commercial platform dependencies.

Why Matrix:

• Fully open-source server and clients
• End-to-end encryption available
• Self-hosted means data stays local
• Good mobile client options (Element)
• Federation optional—can run isolated

Self-hosting Matrix: Run Synapse or Dendrite on the Pi or a separate device. Configuration requires some technical setup but provides complete control.

Alternative channels: For users who find Matrix too complex, terminal access works for desktop interaction. Some configure local-only IRC servers as a simpler alternative.

What's explicitly avoided: WhatsApp (Meta), Telegram (cloud messages), Discord (gaming-focused cloud service), Slack (enterprise cloud), iMessage (Apple ecosystem). All these send data to external servers.

Automation

Local automation focuses on personal life management within the home environment.

Morning routine: Weather (via local weather station or cached API), calendar (local CalDAV), and curated news summary from RSS feeds fetched overnight.

Smart home responses: When motion is detected in certain areas, when temperature thresholds are crossed, when security events occur—the agent can take appropriate actions or alert.

Health tracking: Daily prompts for mood, exercise, sleep quality. Weekly synthesis of patterns. Monthly health summaries.

Backup triggers: Nightly memory and config backups to external storage. Weekly verification that backups are restorable.

Knowledge management: Daily processing of saved articles and notes into Obsidian. Weekly synthesis of recent learning into summary notes.

Security

The privacy-first setup takes security seriously. The threat model includes both external attackers and the AI system itself.

Network isolation: The Pi runs only the Gateway with minimal permissions. The Mac Mini running Ollama ideally has no internet access after initial model download—only local network access to the Pi.

Browser sandboxing: Local browser automation runs in an isolated Docker container with:

• No external network access (all requests proxied)
• Read-only root filesystem
• Dropped capabilities
• Resource limits

Defense in depth: Even though everything is local, assume components may be compromised:

• Pi compromise shouldn't expose Mac Mini
• Model hallucinations can't execute without explicit skill permissions
• Memory encryption at rest
• Regular security updates on all devices

Implementation Steps

1. Hardware acquisition: Purchase Pi 5 (8GB), NVMe HAT, NVMe SSD, Mac Mini M4 (24GB)
2. Network planning: Design network architecture, configure firewall rules
3. Mac Mini setup: Install macOS, Ollama, download all needed models while online
4. Pi setup: Install Raspberry Pi OS, OpenClaw Gateway, Matrix server
5. Model testing: Verify each model works correctly via Ollama
6. Channel configuration: Set up Matrix, configure client apps
7. Skills installation: Install local-only skills, configure file paths
8. Memory initialization: Create SOUL.md and initial memory structure
9. Automation setup: Configure cron jobs for daily/weekly automations
10. Network hardening: Restrict Mac Mini internet access, finalize firewall rules
11. Testing period: Use for one week while monitoring for issues
12. Ongoing maintenance: Regular security updates, model updates, backup verification

Cost Estimate

• Hardware: $650 one-time ($50 Pi with accessories + $600 Mac Mini)
• API: $0/month (all local)
• Electricity: ~$3/month (Pi ~$0.50, Mac Mini ~$2.50)
• Monthly ongoing: $3

The hardware investment is the primary cost. Ongoing costs are nearly zero—just electricity. For users who value privacy, this represents exceptional value compared to subscriptions to commercial AI services.

---

13. Setup Scenario 4: The Content Creator's Social Media Engine

Persona: Full-time content creator managing presence across TikTok, Instagram, YouTube, and LinkedIn.

Content creation in 2026 demands consistent output across multiple platforms, each with different formats, algorithms, and audience expectations. The successful creator publishes daily—sometimes multiple times daily—while maintaining brand consistency and responding to audience engagement. This is humanly impossible without automation.

The Content Creator's Challenge

Social media platforms reward consistency. TikTok wants daily videos. Instagram wants Stories, Reels, and feed posts. YouTube wants regular uploads plus community engagement. LinkedIn wants professional thought leadership. Managing all of this manually means either burning out or letting platforms die through inconsistent posting.

The traditional solution is building a team—video editors, social media managers, copywriters. But for independent creators, this introduces costs that eat into profits and management overhead that consumes creative energy.

OpenClaw offers a middle path: an AI assistant that handles the operational side of content creation while the human focuses on the creative spark. The agent can transform a single piece of content into platform-specific formats, maintain posting schedules, monitor performance, and identify trends to capitalize on.

The goal isn't replacing the creator's voice—it's amplifying it across more channels than one person could manage alone.

Hardware Configuration

DigitalOcean Premium Droplet ($48/month). Content creation automation requires more resources than typical business automation because of the browser automation requirements. Social media platforms are designed for humans with full browsers, not APIs. Automating them requires running actual browser instances, which consumes significant memory and CPU.

Specifications: 4 dedicated vCPU, 8GB RAM, 160GB SSD. The dedicated CPUs (not shared) ensure consistent performance even during parallel browser operations. 8GB RAM allows running multiple browser contexts simultaneously—essential when posting to multiple platforms.

Why DigitalOcean: The Premium tier provides dedicated vCPUs crucial for browser automation. DigitalOcean also offers excellent bandwidth and global CDN integration, useful when uploading video content.

Alternative for high-volume creators: AWS EC2 with spot instances for batch processing. Run content generation during off-peak hours at 70% cost reduction.

Model Configuration

Claude Sonnet 4.5 as primary for content creation. Sonnet hits the sweet spot for creative writing—capable enough to match brand voice, fast enough for high volume, and cost-effective for dozens of daily content pieces.

Why not Opus: Content creation is creative but not complex. Opus's reasoning advantages don't justify the cost premium for writing social media captions. Sonnet's creative writing capabilities are comparable to Opus for this use case.

Model routing for content tasks:

• Ideation and brainstorming → Sonnet
• Caption writing → Sonnet
• Hashtag research → Flash (simple lookup)
• Analytics interpretation → Flash
• Trend analysis and strategy → Sonnet
• Long-form YouTube scripts → Sonnet

Vision models: For image analysis and visual content feedback, configure Gemini 2.0 Flash (free tier) or Claude Sonnet's vision capabilities.

Skills Stack

The content creator needs specialized skills for social media automation.

Genviral: Social media automation across TikTok, Instagram, YouTube, Facebook, Pinterest, and LinkedIn - AI Journal. This skill provides:

• 42 API commands for content lifecycle management
• Autonomous content creation, scheduling, and analysis
• Support for both hosted accounts and directly connected profiles
• Short-form video content automation

The first OpenClaw-generated slideshow posted to TikTok reached 25,000 views, demonstrating real-world output capability - Yahoo Finance.

Image-Gen: DALL-E 3 or Midjourney integration for visual content creation. Essential for:

• Generating thumbnails and cover images
• Creating visual quotes and infographics
• Producing branded graphics at scale
• A/B testing visual variants

Video-Process: Basic video editing automation. For creators producing short-form video:

• Trimming and cutting
• Adding captions/subtitles
• Applying brand-consistent filters
• Generating preview clips

Analytics-Pro: Cross-platform performance metrics aggregation. Pulls data from:

• Platform-native analytics (Instagram Insights, TikTok Analytics)
• Third-party tools (Sprout Social, Later, Buffer)
• Web analytics for linked content

Scheduler-Suite: Content calendar management. Maintains the master calendar across platforms, handles timezone conversions, and ensures consistent posting cadence.

Trend-Monitor: Tracks trending sounds, hashtags, and formats across platforms. Essential for staying relevant in fast-moving social media environments.

Memory Configuration

Brand-focused memory maintains consistency across all content.

SOUL.md for content creators:

You are the content operations assistant for [Creator Name], a [niche] creator.

Brand Voice:
- [Specific voice descriptors: warm, sarcastic, educational, etc.]
- Emoji usage: [none, minimal, heavy]
- Formality: [casual, semi-formal, professional]
- Signature phrases: [list of commonly used expressions]

Content Pillars:
1. [Primary topic] - 40% of content
2. [Secondary topic] - 30% of content
3. [Personal/lifestyle] - 20% of content
4. [Community engagement] - 10% of content

Platform Strategies:
- TikTok: Trending sounds, quick hooks, educational content
- Instagram: Polished visuals, carousel tutorials, Stories engagement
- YouTube: In-depth tutorials, vlogs, community posts
- LinkedIn: Professional insights, industry commentary

Don't Do:
- Never discuss politics or controversial topics
- Never use [competitor brand] names
- Never make claims without citing sources
- Never post without scheduling approval

Content performance memory: Historical tracking of what works:

• Best-performing posts with engagement metrics
• Optimal posting times per platform
• Hashtag performance tracking
• Content format success rates

Audience insights: Demographics, active hours, engagement patterns, frequently asked questions.

Competitor tracking: Monitor competitor accounts for content strategies, posting cadence, and successful formats.

Channel Integration

Telegram primary for quick commands and mobile workflow. Creators are often shooting content on phones; Telegram provides instant access to the agent from any device.

Discord for community management. Many creators maintain Discord servers for superfans. The agent can:

• Monitor community conversations for content ideas
• Respond to common questions
• Alert to engagement opportunities
• Manage moderation queues

Unified context across channels means discussing a content idea in Telegram and then asking for an update in Discord works seamlessly—the agent knows the full conversation history.

Automation

Content creation automation is where OpenClaw provides maximum leverage.

Daily morning brief (7am):

• Yesterday's performance across all platforms
• Today's scheduled content requiring approval
• Trending topics/sounds worth capitalizing on
• Engagement tasks (comments to respond to, DMs to check)

Scheduled content pipeline:

• Content ideas generated from trending topics and content pillars
• First drafts prepared for human review
• Approved content scheduled across platforms
• Platform-specific adaptations created automatically

Engagement windows: Alerts during optimal posting times. When the algorithm favors engagement within the first hour, the agent ensures the creator can respond to early comments.

Weekly performance review (Sunday 6pm):

• Week-over-week metrics comparison
• Top performing content analysis
• Underperforming content review
• Content calendar for upcoming week

Trend detection: Real-time monitoring of trending sounds, hashtags, and formats with push notifications when relevant opportunities emerge.

Cross-posting automation: When content is approved for one platform, automatically create adapted versions for other platforms:

• TikTok vertical video → Instagram Reel
• YouTube video → LinkedIn native video + article
• Instagram carousel → Twitter/X thread

Security

Social media automation involves significant security considerations. Platform credentials grant access to accounts worth potentially significant revenue.

Browser automation sandboxing: All browser instances run in isolated Docker containers with:

• No access to host filesystem beyond designated content folders
• No network access except to specific platform domains
• Session tokens stored encrypted with automatic rotation
• Activity logging for security review

Credential management: Platform OAuth tokens stored in encrypted vault with:

• Limited session duration (re-authenticate weekly)
• IP allowlisting where supported
• Two-factor authentication required on all accounts
• Notification on new login attempts

Content approval gates: The agent can draft content but requires human approval before posting to primary accounts. Testing accounts can be configured for fully autonomous operation.

Implementation Steps

1. Infrastructure setup: Provision DigitalOcean droplet, configure basic security
2. OpenClaw installation: Standard installation with OpenRouter for model routing
3. Channel configuration: Telegram bot setup, Discord integration
4. Skills installation: Genviral, image generation, analytics integration
5. Platform connections: OAuth integration with all social platforms
6. Memory initialization: Create brand voice documentation, content pillars
7. Content library setup: Import existing content for style reference
8. Automation configuration: Morning briefings, engagement alerts, posting schedules
9. Testing phase: Run on test accounts for one week
10. Gradual rollout: Enable on primary accounts with approval gates
11. Optimization: Refine based on first month of performance data

Cost Estimate

• Hosting: $48/month
• API: ~$30-60/month (Claude Sonnet + image generation)
• Platform APIs: ~$20-50/month (varies by volume)
• Monthly total: $98-158

For creators earning $5,000+/month from their platforms, this infrastructure investment typically returns 5-10x through increased posting consistency and audience growth.

---

14. Setup Scenario 5: The Enterprise Team Deployment

Persona: Engineering team of 15 wanting shared AI assistance with proper access controls.

Enterprise deployment introduces complexity far beyond individual setups. Multiple users mean access control requirements. Sensitive data means compliance obligations. Team coordination means shared context management. And organizational politics mean careful change management.

The Enterprise Challenge

An engineering team considering OpenClaw faces questions that don't apply to individual users:

Access control: Who can do what? Junior engineers probably shouldn't have production deployment access. Contractors might need limited tool access. Different projects might require different permission sets.

Compliance: Does this meet security review requirements? What data flows where? Can we audit agent actions? How do we handle incidents?

Cost management: Who pays for API usage? How do we prevent runaway costs? How do we allocate spending across teams/projects?

Integration: How does this fit with existing tools? Can it connect to our private GitHub? Does it work with our SSO?

Change management: How do we train the team? How do we handle skeptics? How do we measure success?

Enterprise deployment requires planning that goes beyond technical configuration.

Hardware Configuration

AWS EKS cluster provides the Kubernetes infrastructure for multi-user deployment. Advantages:

• Autoscaling handles variable usage
• IAM integration provides authentication
• CloudWatch provides observability
• Enterprise support available

Graviton ARM instances (c7g series) provide excellent price-performance for OpenClaw's Node.js-based workload. ARM processors offer approximately 40% better price-performance than x86 for this use case.

Infrastructure sizing for a 15-person team:

• 2-3 OpenClaw Gateway pods (for redundancy)
• Shared memory store (Redis or similar)
• PostgreSQL for persistent state
• S3 for document storage
• NAT Gateway for controlled egress

Model Configuration

Amazon Bedrock integration provides enterprise-appropriate access to Claude - GitHub.

Why Bedrock:

• Enterprise billing through existing AWS accounts
• AWS security compliance (SOC 2, HIPAA, etc.)
• Audit logging of all API calls
• No separate API keys to manage
• IAM-based access control

Model tiering through Bedrock:

• Junior engineers: Claude Haiku (cost control)
• Senior engineers: Claude Sonnet
• Architecture decisions: Claude Opus
• Model access controlled through IAM policies

Skills Stack

Enterprise deployment requires approved skills only. Every skill must pass security review before deployment.

JiraBot: Issue tracking integration for:

• Creating and updating tickets
• Querying project status
• Sprint planning assistance
• Automated issue triage

Confluence-Search: Documentation access for:

• Searching technical documentation
• Finding process guides
• Retrieving historical decisions
• Linking related documents

AWS-Ops: CloudWatch, EC2, S3 operations for:

• Querying infrastructure metrics
• Reading log files
• Checking service health
• (Read-only in production; write access in dev)

PagerDuty: Incident management for:

• Acknowledging alerts
• Querying incident history
• Escalation procedures
• Post-incident documentation

Code-Review: Automated PR analysis for:

• Initial review before human review
• Style and convention checking
• Security vulnerability detection
• Test coverage analysis

Memory Configuration

Enterprise memory requires careful compartmentalization.

Separate memory spaces per team member: Each user has private memory for their work patterns, preferences, and ongoing tasks.

Shared project memory: Common context for project-specific knowledge:

• Architecture decisions and rationale
• Code conventions and patterns
• Team member expertise areas
• Historical bugs and solutions

No cross-user memory access: User A cannot access User B's private memory. Project memory is shared but personal context stays private.

Retention policies: Comply with data retention requirements. Memory older than configured retention period automatically purges.

Channel Integration

Slack workspace integration provides team-friendly interaction:

• Each user can DM the agent for private assistance
• Team channels can include the agent for collaborative work
• Thread-based conversations maintain context
• Reactions and emoji supported for quick feedback

Enterprise SSO: Slack authentication through corporate identity provider. No separate OpenClaw credentials.

Automation

Enterprise automation focuses on team productivity.

On-call routing: After-hours incident triage:

• Initial diagnosis of alerts
• Severity classification
• Routing to appropriate on-call person
• Context gathering for faster resolution

Daily standup prep: Before daily standups:

• Pull yesterday's commits per person
• Summarize ticket activity
• Identify blockers
• Prepare status update drafts

Sprint automation:

• Issue assignment suggestions based on expertise
• Backlog grooming recommendations
• Velocity tracking and forecasting
• Sprint retrospective summaries

PR automation:

• Automated initial review when PR opened
• Security and style checking
• Suggested reviewers based on changed files
• Reminder escalations for aged PRs

Security

Enterprise deployment requires comprehensive security controls.

Kubernetes security:

• Pods run with security context (non-root, read-only FS)
• Network policies restrict pod-to-pod communication
• Secrets managed through AWS Secrets Manager
• Regular security scanning of container images

IAM integration:

• Role-based access control through IAM
• Service accounts with minimal privileges
• Audit logging of all IAM activity
• Regular access reviews

Data protection:

• All data encrypted at rest (S3, EBS, RDS)
• All data encrypted in transit (TLS everywhere)
• VPC isolation from public internet
• Private endpoints for AWS services

Observability and audit:

• All agent actions logged to CloudWatch
• All model calls tracked through Bedrock logs
• Security events trigger SNS alerts
• Regular security review of logs

SwarmClaw dashboard provides management interface for orchestrating multiple agents - SwarmClaw. Administrators can:

• Monitor all agent activity
• Manage user permissions
• Review cost allocation
• Audit security events

Implementation Steps

1. Planning phase: Security review, architecture design, stakeholder alignment
2. AWS infrastructure: Terraform/CDK deployment of EKS, networking, databases
3. OpenClaw deployment: Helm charts for Gateway pods, configuration management
4. Bedrock integration: IAM roles, model access, cost allocation tags
5. SSO configuration: SAML/OIDC integration with corporate identity
6. Skills approval: Security review and deployment of approved skills
7. Memory architecture: User segmentation, project spaces, retention policies
8. Slack integration: Bot installation, channel configuration
9. Pilot group: Deploy to small group (3-5 engineers) for feedback
10. Training: Documentation, workshops, office hours
11. Gradual rollout: Expand to additional team members weekly
12. Success metrics: Track productivity impact, satisfaction, cost

Cost Estimate

• AWS infrastructure: ~$200-400/month (scales with usage)
• Bedrock API: ~$100-300/month (15 users, mixed model tiers)
• Operations/maintenance: ~$0-100/month (staff time, monitoring tools)
• Monthly total: $300-800

For a 15-person engineering team with average salaries of $150K+, improving productivity by even 5% easily justifies this investment. The challenge is measuring and demonstrating that improvement.

---

14. Setup Scenario 5: The Enterprise Team Deployment

Persona: Engineering team of 15 wanting shared AI assistance with proper access controls.

Hardware Configuration

AWS EKS cluster with autoscaling. Graviton ARM instances for cost efficiency. IAM integration for access control.

Model Configuration

Amazon Bedrock integration for Claude access - GitHub. Enterprise billing, compliance, and audit logging.

Skills Stack

Enterprise-approved skills only:

• JiraBot: Issue tracking integration
• Confluence-Search: Documentation access
• AWS-Ops: CloudWatch, EC2, S3 operations
• PagerDuty: Incident management
• Code-Review: Automated PR analysis

Memory Configuration

Separate memory spaces per team member. Shared project memory for common context. No cross-user memory access.

Channel Integration

Slack workspace integration. Each user has a DM channel with the agent. Team channels for shared tasks.

Automation

• On-call routing: After-hours incident triage
• Daily standup prep: Pull yesterday's tickets and commits per person
• Sprint automation: Issue assignment and backlog grooming

Security

Full enterprise hardening:

• Running in Kubernetes pods with security context
• Network policies restricting egress
• IAM roles for AWS resource access
• Audit logging of all agent actions
• SSO integration

SwarmClaw dashboard for orchestration of multiple agents - SwarmClaw.

Cost Estimate

• AWS infrastructure: ~$200-400/month (scales with usage)
• Bedrock API: ~$100-300/month
• Monthly total: $300-700

---

15. Setup Scenario 6: The Researcher's Knowledge Management System

Persona: Academic researcher managing papers, notes, and writing projects across years of work.

Academic research has a knowledge management problem that grows worse each year. A typical PhD student reads 200-500 papers during their program. A mid-career professor might have thousands of papers in their reference library, years of field notes, grant applications, student correspondence, and half-finished manuscripts. This knowledge accumulates in disconnected silos—PDFs in folders, notes in apps, ideas in notebooks, references in Zotero.

The challenge isn't finding new information; it's connecting what you already know. When writing a paper, you need to recall that obscure 2019 study that's suddenly relevant, remember which colleague mentioned a similar approach at a conference, and synthesize your own scattered notes into coherent arguments. This requires a system that understands the relationships between ideas, not just keyword search.

OpenClaw configured for research becomes an AI research assistant that has read everything you've read—or at least, has access to structured representations of it. It can surface connections across your knowledge base, help structure arguments, critique drafts, and manage the operational logistics of academic work.

The Researcher's Unique Challenge

Research knowledge is inherently connected. A concept in one paper relates to methodology in another, contradicts findings in a third, and was mentioned by a collaborator in an email. Traditional tools treat these as separate files. An AI-powered knowledge system can treat them as a graph.

Additionally, research data often comes with sensitivity requirements. Unpublished findings, grant applications, student records, and proprietary data may have confidentiality obligations that prohibit sending to cloud AI services. This makes local-first architecture not just a preference but a requirement.

Hardware Configuration

Mac Mini M4 (24GB) running both OpenClaw Gateway and Ollama for local inference. The 24GB unified memory provides comfortable headroom for running 32B parameter models while keeping the operating system and other tools responsive.

Why Mac Mini over VPS: Research data sensitivity often prohibits cloud hosting. The Mac Mini provides enough compute for serious local AI work while sitting quietly in a home office. Apple Silicon's power efficiency means 24/7 operation costs approximately $2.50/month in electricity.

Storage considerations: Academic knowledge bases grow large. A 1TB internal SSD is minimum; 2TB recommended for researchers with extensive PDF libraries. External NVMe drives provide expansion for historical archives.

Network architecture: The Mac Mini can operate entirely offline for sensitive work. When cloud fallback is enabled, configure application-level controls (not just network-level) to ensure sensitive documents never route to external APIs.

Model Configuration

Local Ollama primary for privacy and cost:

• qwen3:32b for literature analysis, argument construction, and complex reasoning
• mistral-nemo:12b for quick tasks, drafting, and summarization
• deepseek-coder:33b for computational research involving code (data analysis, simulations)

Model selection reasoning: The Qwen 3 series excels at analytical reasoning—crucial for research tasks like comparing methodologies, synthesizing findings, and constructing arguments. The 32B variant provides strong capability while fitting in 24GB memory.

Cloud fallback (optional): anthropic/claude-opus-4-6 for particularly complex analysis. Some researchers enable cloud for specific tasks where the capability difference justifies the privacy tradeoff. Configure explicit routing rules so only designated content routes to cloud.

Routing configuration:

{
  "routing": {
    "default": "ollama/qwen3:32b",
    "patterns": {
      "quick_*": "ollama/mistral-nemo:12b",
      "code_*": "ollama/deepseek-coder:33b",
      "deep_analysis_*": "anthropic/claude-opus-4-6"
    }
  }
}

Skills Stack

Zotero-Bridge: Reference management integration with the researcher's Zotero library. Capabilities:

• Search references by author, title, keyword, or citation key
• Retrieve full metadata and abstracts
• Access attached PDFs and notes
• Add new references from discovered papers
• Generate formatted citations in multiple styles

Obsidian-Academic: Deep integration with Obsidian vault for note-taking and knowledge synthesis. This skill understands Obsidian's linking syntax and can:

• Query notes by content, tags, or linked concepts
• Create new notes with proper metadata
• Discover connections between seemingly unrelated notes
• Generate literature review outlines from tagged sources
• Maintain research project hierarchies

PDF-Reader: Academic PDF processing optimized for scholarly documents:

• Extract text while preserving structure (sections, figures, tables)
• Identify methodology, findings, and limitations sections
• Generate structured summaries
• Extract bibliographic information
• OCR for scanned documents

LaTeX-Helper: Document formatting for academic writing:

• Convert markdown drafts to LaTeX
• Manage bibliography files
• Format equations and figures
• Generate table structures from data
• Check citation formatting

Research-Cluster: For researchers with computational needs - OpenClaws:

• Submit jobs to HPC clusters
• Monitor job status and queue position
• Retrieve results when complete
• Manage experiment configurations

Memory Configuration

Knowledge graph structure represents the core of the research assistant's value. Every entity—person, institution, project, concept, paper, dataset—has its own node with properties and relationships - MadeByNathan.

SOUL.md for researchers:

You are a research assistant for Dr. [Name], a [field] researcher at [Institution].

Research Focus:
- Primary: [main research area]
- Secondary: [related areas]
- Methods: [quantitative/qualitative/mixed, specific techniques]

Current Projects:
1. [Project Name] - [brief description, status, key collaborators]
2. [Project Name] - [brief description, status, key collaborators]

Knowledge Base:
- Zotero library contains [X] references, organized by [structure]
- Obsidian vault contains [Y] notes across [topics]
- Primary working language: [language]
- Citation style default: [APA/Chicago/IEEE/etc.]

Writing Style:
- Prefer [active/passive] voice for academic writing
- Target audience: [peers/general academic/public]
- Formatting preferences: [specific conventions]

Collaboration:
- Key collaborators: [names, institutions, areas]
- Current PhD students: [names, topics]
- Grant agencies: [funding sources, requirements]

Constraints:
- Never send unpublished findings to cloud services
- Flag potential self-plagiarism concerns
- Maintain proper attribution for all sources
- Respect embargoed data timelines

Research paper workflow: Managing the full lifecycle including outline generation, sequential section drafting with context from prior sections, multi-LLM critique cycles, revision decisions, and coherence checking - MadeByNathan.

Channel Integration

Terminal primary for focused desktop work. Researchers typically work in extended sessions at a computer; terminal integration means the AI assistant is always accessible without context switching.

Telegram for mobile interactions:

• Quick note capture when away from desk
• Literature alerts for new papers matching research interests
• Reminders for deadlines and meetings
• Quick question answering on the go

Email integration (optional): For researchers who want AI assistance with correspondence, peer review responses, and grant communication. Configure read-only initially to build trust.

Automation

Daily literature scan: Check RSS feeds, arXiv, and configured journal alerts for new papers matching research interests. The agent summarizes new publications and flags particularly relevant ones.

Example morning alert:

📚 Literature Update - February 24, 2026

3 new papers in your interest areas:

1. "Novel Approach to [Topic]" - [Authors] - [Journal]
   Relevance: HIGH - directly addresses methodology gap in your current project
   [One-sentence summary]

2. "Comparative Analysis of [Topic]" - [Authors] - arXiv
   Relevance: MEDIUM - useful for literature review section
   [One-sentence summary]

Added to Zotero "To Read" folder. Full summaries available on request.

Weekly synthesis: Connect new notes to existing knowledge graph. The agent identifies:

• Concepts mentioned in multiple recent notes that should be linked
• Gaps in the knowledge base that recent reading suggests
• Updates needed to project documents based on new information

Writing sessions: Scheduled focused writing with context preloaded. Before a scheduled writing block, the agent:

• Loads relevant notes, sources, and prior drafts into context
• Summarizes where writing left off
• Suggests next steps based on outline
• Prepares citation information likely to be needed

Deadline tracking: Conference deadlines, grant submissions, and review commitments with appropriate lead time alerts.

Security

All research data local. No cloud sync for sensitive materials. The knowledge base represents years of intellectual investment and often contains unpublished findings with significant career implications.

Backup strategy:

• Time Machine to local NAS (continuous)
• Weekly encrypted backup to external drive (stored off-site)
• Monthly archive to secondary location
• Version control (Git) for text-based knowledge base components

Access control: If the Mac Mini is shared or accessible to others:

• FileVault full-disk encryption
• Strong login credentials
• Automatic screen lock
• Separate user accounts if needed

Implementation Steps

1. Hardware setup: Configure Mac Mini, install macOS, set up Time Machine
2. Ollama installation: Install Ollama, download primary models (qwen3:32b, mistral-nemo:12b)
3. Knowledge base organization: Structure Zotero library, organize Obsidian vault
4. OpenClaw installation: Standard installation with local model configuration
5. Skills installation: Zotero-Bridge, Obsidian-Academic, PDF-Reader, LaTeX-Helper
6. Memory initialization: Create SOUL.md with research context, project details
7. Import existing knowledge: Process existing PDF library, link Zotero
8. Channel configuration: Terminal alias, Telegram bot setup
9. Automation setup: RSS feeds, literature alert cron jobs
10. Testing phase: Two-week period of active use with manual verification
11. Workflow refinement: Adjust prompts and automation based on experience
12. Documentation: Record workflows for future reference and publication

Cost Estimate

• Hardware: $800 one-time (Mac Mini M4 24GB)
• API: $0-30/month (mostly local, occasional cloud for complex tasks)
• Electricity: ~$2/month
• Backup storage: ~$0-10/month (depending on setup)
• Monthly ongoing: $2-42

For an academic whose time is valued at research output, the ability to find connections across years of reading, structure arguments more effectively, and manage the logistics of research work easily justifies this investment. Graduate students may find the hardware investment significant but the zero ongoing cost for local-only operation makes it sustainable on a student budget.

---

16. Setup Scenario 7: The Budget-Conscious Student Setup

Persona: University student wanting AI assistance without breaking the bank.

Student life operates under constraints that most productivity advice ignores. You're managing a course load that shifts every semester, juggling deadlines across multiple classes, trying to learn material you've never encountered, and doing all this with limited money and often-erratic schedules. The productivity tools marketed to professionals—$20/month subscriptions, dedicated hardware, premium AI services—are simply inaccessible.

The good news: OpenClaw can run entirely free. The combination of free-tier model access through OpenRouter, existing hardware, and minimal skills creates a genuinely zero-cost AI assistant. The tradeoff is capability—free models are less sophisticated than Claude Opus—but for most student tasks, they're more than sufficient.

This scenario optimizes ruthlessly for cost while still providing meaningful AI assistance. It's the setup that answers: "I have no budget. What can I actually get?"

The Student's Reality

Students face specific challenges that commercial AI tools don't address well:

Shifting contexts: You're not working on one project for months. You're juggling 4-6 courses with completely different vocabularies, methodologies, and requirements. Your AI assistant needs to context-switch as fast as you do.

Learning mode: Unlike professionals who ask AI to do things they could do, students often ask AI to explain things they don't understand. The assistant should teach, not just complete tasks.

Time pressure: Assignments cluster around midterms and finals. The assistant needs to help prioritize and manage cognitive load during crunch periods.

Mobile-first: Students are mobile more often than professionals. Walking between classes, studying in libraries, working part-time jobs—the assistant needs to work primarily through phone.

Hardware Configuration

Existing laptop running OpenClaw during study sessions. No dedicated hardware investment required. The OpenClaw Gateway runs comfortably on any laptop made in the last 5 years. Memory usage is minimal when using cloud models—the heavy computation happens on API provider servers.

Why not a dedicated device: Every dollar matters. A $600 Mac Mini could buy textbooks for an entire semester, or a month of rent in many college towns. The existing laptop approach accepts slightly less convenience (can't run 24/7) in exchange for zero additional cost.

Practical considerations:

• Run OpenClaw manually when studying rather than as a background service
• Close it when on battery power to preserve laptop life
• Consider a Raspberry Pi ($35) only if 24/7 access becomes genuinely necessary

Model Configuration

Free tier models through OpenRouter eliminate API costs entirely:

• Primary: openrouter/google/gemini-2.0-flash-exp (free tier)
• Fallback: openrouter/meta-llama/llama-3.1-70b-instruct:free

Zero cost for basic usage - LumaDock.

How free tiers work: OpenRouter provides limited free access to various models. Usage limits reset daily or monthly. For typical student usage (a few dozen messages per day), these limits are sufficient.

Model selection reasoning: Gemini 2.0 Flash provides strong general capability with fast responses—good for explanations, summarization, and writing assistance. The Llama fallback ensures availability if Gemini hits rate limits.

Configuration:

{
  "provider": "openrouter",
  "models": {
    "primary": "google/gemini-2.0-flash-exp",
    "fallback": "meta-llama/llama-3.1-70b-instruct:free"
  },
  "routing": {
    "prefer_free": true,
    "max_cost_per_request": 0
  }
}

When you might pay: If you find yourself hitting free tier limits regularly, OpenRouter's paid models are still cheap—often $0.0001 per message. Even $5/month covers extensive usage.

Skills Stack

Minimal installation—only what you'll actually use:

Calendar: Basic scheduling integration. Syncs with Google Calendar or similar to keep track of classes, office hours, and deadlines. The agent can:

• Query upcoming events and deadlines
• Add study sessions and reminders
• Calculate time until deadlines

Notes: Integration with your note-taking app (Notion, Obsidian, Apple Notes). Enables:

• Quick note capture from mobile
• Searching across notes by concept
• Summarizing lecture notes

Web-Search: Research assistance for assignments. When you're writing a paper and need sources:

• Find relevant academic sources
• Summarize articles quickly
• Fact-check claims

PDF-Basic: Reading course materials. Essential for:

• Summarizing assigned readings
• Extracting key concepts from textbooks
• Preparing for exams from lecture slides

What to skip: Resist the temptation to install everything. Each skill adds cognitive overhead and potential distraction. Start with these four; add others only when you genuinely need them.

Memory Configuration

Light personalization keeps the context focused:

SOUL.md for students:

You are a study assistant for a university student.

Academic Context:
- Current semester courses: [list with brief descriptions]
- Major/program: [field of study]
- Academic goals: [GPA target, grad school plans, etc.]

Learning Style:
- I prefer [explanations/examples/both]
- I learn best through [visual/verbal/hands-on]
- I need [more/less] detail in explanations

Current Priorities:
1. [Most urgent assignment/exam]
2. [Second priority]
3. [Third priority]

Constraints:
- Keep responses concise—I'm usually studying on mobile
- Explain concepts I don't understand rather than assuming knowledge
- Help me understand, not just complete assignments
- Flag when I should ask a professor instead

Course-specific memory: Create separate memory files for each course that include:

• Key concepts and definitions
• Professor preferences and grading criteria
• Links to course resources
• Notes on exam format and expectations

Why light memory: Heavy personalization requires time to maintain. Students' contexts change dramatically each semester. A lightweight, easy-to-update approach is more sustainable.

Channel Integration

Telegram only. The simplest, most reliable mobile experience.

Why Telegram over alternatives:

• Works on all mobile platforms
• Doesn't require constant laptop access
• Free with no message limits
• Reliable notifications
• Supports voice messages for quick dictation

Usage patterns:

• Quick questions between classes
• Dictated notes while walking
• Assignment deadline checks
• Study session scheduling
• Exam prep quizzes

What to avoid: Don't set up multiple channels. Splitting attention between Discord, Slack, and Telegram creates overhead. One channel, mastered, is better than three channels partially used.

Automation

Assignment reminders: Daily evening check of upcoming deadlines. At 8pm each day, the agent reviews your calendar and sends a summary:

📚 Deadline Check - Tonight

Due Tomorrow:
- CS201 Problem Set 4 (11:59pm)

Due This Week:
- English 102 Essay Draft (Thursday)
- Bio Lab Report (Friday)

Coming Up:
- History Midterm (next Monday)

Need help with anything tonight?

Study session prompts: Scheduled suggestions based on your calendar. Before known free blocks, a gentle prompt:

Hey! You have 2 hours free before your 3pm class.

Suggested focus: CS201 Problem Set (due tomorrow)

Want me to pull up the relevant lecture notes?

Weekly review: Sunday evening summary of the upcoming week, helping you plan study time around known commitments.

Security

Default sandboxing. OpenClaw runs in Docker sandbox mode by default, preventing accidental damage. For a student setup with no shell access configured, the attack surface is minimal.

No sensitive credentials stored: Don't connect bank accounts, store passwords, or link financial services. The free-tier setup should remain low-stakes—nothing catastrophic happens if compromised.

Privacy considerations: Free API providers may use your data for training. Don't send sensitive personal information, unpublished creative work you want to protect, or anything you wouldn't want public.

Implementation Steps

1. Laptop check: Ensure your laptop can run Docker (most can; Chromebooks require Linux mode)
2. Docker installation: Install Docker Desktop (free for personal use)
3. OpenClaw installation: Follow standard quickstart
4. OpenRouter setup: Create free account, configure API key
5. Model selection: Configure free-tier Gemini as primary
6. Telegram bot: Create bot through BotFather, connect to OpenClaw
7. Calendar integration: Connect Google Calendar or similar
8. SOUL.md creation: Write initial context about courses and goals
9. Test interaction: Verify Telegram connection, try basic queries
10. Automation setup: Configure daily reminder cron jobs
11. First week trial: Use actively for one week, note what works
12. Refinement: Adjust based on actual usage patterns

Cost Estimate

• Hardware: $0 (existing laptop)
• API: $0 (free tier models)
• Hosting: $0 (runs on laptop)
• Telegram: $0
• Monthly total: $0

Upgrade path: If the setup proves valuable and budget allows, the logical next step is either:

• $5/month for OpenRouter paid tier (removes rate limits)
• $35 one-time for Raspberry Pi (enables 24/7 operation)

Neither is necessary to start. Begin with zero cost, prove value, then invest if warranted.

---

17. Setup Scenario 8: The High-Performance Cloud Deployment

Persona: Power user running intensive automation at scale—AI-powered trading, real-time monitoring, or high-volume processing.

Some OpenClaw use cases demand performance that home hardware can't deliver. Algorithmic trading systems need millisecond response times. Monitoring applications must process continuous data streams without interruption. High-volume processing tasks require parallel execution across dozens of concurrent operations.

This scenario targets users for whom cost is secondary to capability. The setup prioritizes reliability, speed, and processing power over affordability. It's the "no compromises" approach—using the best available models, enterprise-grade infrastructure, and sophisticated isolation.

The typical user profile: quantitative traders, operations teams at tech companies, researchers running computationally intensive AI workflows, or anyone processing thousands of requests per day where each request matters.

The High-Performance Challenge

High-performance applications have requirements that conflict with typical OpenClaw setups:

Latency sensitivity: When seconds cost money or opportunity, model response time matters. The fastest models with the lowest API latency become worth their premium cost.

Reliability requirements: 99.9% uptime isn't sufficient when you're monitoring critical systems. The infrastructure must handle failures gracefully and recover automatically.

Burst capacity: Some applications spike dramatically—processing a day's worth of data in an hour, or handling sudden market volatility. The infrastructure must scale to meet peaks.

Audit requirements: Financial applications especially require comprehensive logging. Every decision, every input, every action must be traceable.

Hardware Configuration

AWS EC2 c7g.2xlarge (Graviton3, 8 vCPU, 16GB RAM) serves as the primary Gateway instance. Graviton3 ARM processors offer excellent price-performance for server workloads, and AWS's ARM ecosystem is mature and well-supported.

Why c7g specifically: The "c" instance family is compute-optimized—exactly what the OpenClaw Gateway needs. The Gateway itself isn't memory-hungry; it's primarily routing and orchestrating. 8 vCPUs provide substantial headroom for concurrent operations.

Dedicated GPU instance (g5.xlarge) for local model acceleration when cloud API latency is unacceptable. The g5 series uses NVIDIA A10G GPUs capable of running medium-sized models with inference times measured in tens of milliseconds rather than hundreds.

When to use GPU: Not for all operations—only for latency-critical paths where the ~100ms difference between local and API inference matters. Route critical-path requests to local inference while batch processing uses cloud APIs.

Architecture:

┌─────────────────────────────────────────────────────┐
│                      VPC                             │
│  ┌─────────────┐   ┌─────────────┐   ┌───────────┐ │
│  │ Gateway     │   │ GPU Instance │   │ RDS       │ │
│  │ (c7g.2xl)   │ → │ (g5.xlarge) │   │ (memory)  │ │
│  └─────────────┘   └─────────────┘   └───────────┘ │
│         │                                           │
│         ├─── API calls → Claude/GPT APIs           │
│         │                                           │
│         └─── Webhooks → External systems           │
└─────────────────────────────────────────────────────┘

Auto-scaling: For applications with variable load, configure ASG (Auto Scaling Group) to add Gateway instances during peaks. The Gateway is stateless; horizontal scaling is straightforward.

Model Configuration

Claude Opus 4.6 for all operations where reasoning quality matters. When your application makes decisions that affect money, systems, or people, model capability isn't the place to economize.

Why Opus over Sonnet: The cost premium (roughly 15x) is justified when:

• Decisions have financial consequences
• Edge cases must be handled correctly
• Reasoning chains are complex
• False positives/negatives have costs

Caching strategy: Enable prompt caching aggressively. For applications with repeated patterns (same context, different queries), caching reduces both cost and latency.

Cache configuration:

{
  "model": "anthropic/claude-opus-4-6",
  "caching": {
    "enabled": true,
    "breakpoints": ["system_prompt", "static_context"],
    "ttl_seconds": 300
  }
}

Fallback strategy: Configure automatic failover to Claude Sonnet if Opus hits rate limits or experiences errors. Degraded capability is preferable to complete failure.

Skills Stack

Market-Data: Real-time financial data feeds. Integrates with:

• Bloomberg Terminal data (where licensed)
• Alpha Vantage, Polygon.io, or similar APIs
• Exchange WebSocket feeds for real-time prices
• News feeds for sentiment analysis

Alert-System: Complex condition monitoring beyond simple thresholds:

• Multi-factor conditions (price AND volume AND time)
• Pattern detection across multiple data streams
• Correlation alerts (when A and B move together unusually)
• Historical comparison (current behavior vs. baseline)

Execution: Automated actions with safety checks:

• API calls to trading systems, infrastructure, or services
• Multi-step workflows with rollback capability
• Rate limiting to prevent runaway execution
• Confirmation requirements for high-stakes actions

Analytics: Performance dashboards and reporting:

• Real-time metrics aggregation
• Historical trend analysis
• Anomaly detection with alerting
• Custom KPI calculation and tracking

Backup-Recovery: Disaster recovery automation:

• Automated snapshot management
• Cross-region replication verification
• Recovery procedure testing
• Failover orchestration

Memory Configuration

Supermemory integration provides enhanced long-term memory beyond OpenClaw's native capabilities - GitHub. Benefits:

• Persistent memory across sessions and instances
• Semantic search over historical interactions
• Context reconstruction from long-term storage
• Memory sharing across multiple agents

Mem0 for persistent memory adds additional capabilities - Mem0:

• Automatic memory extraction from conversations
• Cross-session context continuity
• Intelligent memory pruning
• API for programmatic memory management

Memory architecture for high-performance:

Operational Memory (Redis):
  ├── Current session context
  ├── Real-time state (positions, alerts, status)
  └── Hot cache of recent decisions

Long-term Memory (Supermemory/Mem0):
  ├── Historical patterns and precedents
  ├── Learned behaviors and preferences
  └── Institutional knowledge

Audit Log (S3/CloudWatch):
  ├── All decisions with reasoning
  ├── All inputs and outputs
  └── Compliance-ready trace

Channel Integration

API-only. This is not a conversational assistant—it's a programmatic system. All interaction happens through:

REST API: For synchronous requests where response is needed immediately.

Webhooks: For event-driven triggers (market events, system alerts, scheduled tasks).

Message queues: For high-volume async processing (SQS, Kafka, RabbitMQ).

Why no messaging channels: Telegram and Discord are designed for human interaction. A high-performance system interacts with other systems, not humans in chat. When human oversight is needed, it's through dashboards and alerting systems, not message threads.

Automation

Continuous monitoring loops with sub-minute intervals:

automations:
  - name: market_scan
    cron: "*/30 * * * * *"  # Every 30 seconds
    task: scan_market_conditions

  - name: position_monitor
    cron: "*/10 * * * * *"  # Every 10 seconds
    task: check_position_health

  - name: system_health
    cron: "* * * * *"  # Every minute
    task: verify_system_status

Webhook triggers for real-time responses:

• Exchange webhooks for order fills
• Monitoring webhooks for system alerts
• Integration webhooks from connected services

High concurrency configuration: The Gateway can process many requests simultaneously. Configure:

• Connection pool sizes for API providers
• Concurrent task limits to prevent resource exhaustion
• Queue depth limits with backpressure
• Timeout configurations for all external calls

Security

Firecracker MicroVMs provide maximum isolation - each task runs in its own lightweight VM:

• Dedicated kernel per execution
• Memory isolation between tasks
• Sub-second VM startup
• Minimal attack surface

Why Firecracker: Containers share the host kernel. MicroVMs don't. For applications where a compromised task could affect other tasks or leak information, VM-level isolation is appropriate.

Network architecture:

• VPC isolation from public internet
• NAT Gateway for outbound-only internet access
• Security groups limiting ingress to necessary ports
• VPC endpoints for AWS services (no internet transit)

Network egress through allowlist proxy:

[OpenClaw] → [Proxy] → [Allowed APIs only]
                 ↓
           [Block others]

The proxy explicitly permits connections to:

• Claude/OpenAI APIs
• Configured data providers
• Approved webhook destinations
• Nothing else

Secrets management: AWS Secrets Manager for API keys and credentials. Never hardcoded, rotated automatically.

Audit logging: Every API call, every decision, every action logged to CloudWatch with correlation IDs. Retention policy aligned with compliance requirements.

Implementation Steps

1. Architecture design: Document system architecture, data flows, security requirements
2. AWS account setup: Configure VPC, subnets, security groups, IAM roles
3. Infrastructure deployment: Terraform/CDK for reproducible infrastructure
4. Gateway deployment: EC2 instance with OpenClaw, configured for production
5. GPU instance setup: Configure g5.xlarge with local model capability
6. Secrets configuration: Migrate all credentials to Secrets Manager
7. Memory infrastructure: Deploy Redis for operational memory, configure Supermemory
8. Skills installation: Market data, alerting, execution skills
9. Firecracker setup: Configure MicroVM isolation for task execution
10. Monitoring deployment: CloudWatch dashboards, alerting, logging
11. Network hardening: Proxy deployment, security group audit, VPC endpoint configuration
12. Load testing: Verify performance under expected peak load
13. Failover testing: Simulate failures, verify recovery
14. Documentation: Runbooks for operations, incident response procedures

Cost Estimate

• AWS compute (Gateway): ~$80-100/month (c7g.2xlarge on-demand)
• AWS compute (GPU): ~$100-200/month (g5.xlarge, partial usage)
• RDS/ElastiCache: ~$50-100/month
• Data transfer: ~$20-50/month
• API costs: ~$100-200/month (Claude Opus at high volume)
• Monitoring/logging: ~$20-50/month
• Monthly total: $370-700

Cost optimization opportunities:

• Reserved Instances (1-year commit) reduce EC2 costs 30-40%
• Spot Instances for GPU workloads during non-critical periods
• Prompt caching to reduce API costs
• Aggressive use of smaller models for non-critical operations

The investment is justified when the system generates value exceeding its cost. For trading systems, even small improvements in decision quality or speed can return multiples of the infrastructure cost.

---

18. Setup Scenario 9: The Multi-Agent Orchestration System

Persona: Tech lead building a team of specialized AI agents that coordinate on complex workflows.

Single agents hit limits. When tasks require multiple specialized capabilities—research, writing, coding, design—a single agent with one model must context-switch constantly. Each switch loses context and introduces errors. The alternative: multiple specialized agents that collaborate, each maintaining deep focus in its domain.

Multi-agent architectures transform OpenClaw from a personal assistant into a team of AI collaborators. The coordinator agent understands the overall task and delegates to specialists. The writer agent maintains consistent voice across documents. The coder agent knows the codebase deeply. The researcher agent excels at finding and synthesizing information. Together, they accomplish work no single agent could.

This is emerging territory. Multi-agent coordination was experimental in late 2025; by February 2026, patterns and tools have matured enough for production use. But it remains more complex than single-agent setups and requires architectural thinking about agent roles, communication patterns, and failure modes.

The Multi-Agent Promise and Challenge

Promise: Specialization enables depth. A coding agent that only handles code can maintain detailed context about the codebase. A writing agent focused on content quality produces better prose than a generalist. An orchestrator agent that focuses on planning and delegation coordinates effectively without getting lost in details.

Challenge: Coordination is hard. Agents must:

• Understand what other agents can do
• Pass context without losing critical information
• Handle partial failures gracefully
• Avoid infinite loops of delegation
• Maintain consistency across parallel work
• Resolve conflicts when agents disagree

The setup described here uses patterns and tools that have proven reliable in production deployments.

Hardware Configuration

DigitalOcean App Platform provides elastic scaling with minimal operational overhead. Each agent runs as a separate container, scaling independently based on demand.

Why DigitalOcean over AWS/GCP: App Platform abstracts Kubernetes complexity while providing similar capability. For teams that want container orchestration without dedicated DevOps, it's the right tradeoff. The managed platform handles:

• Container scheduling and scaling
• Health checks and restarts
• Load balancing
• SSL termination
• Log aggregation

Architecture:

┌─────────────────────────────────────────────────────────────┐
│                  DigitalOcean App Platform                   │
│  ┌──────────┐  ┌──────────┐  ┌──────────┐  ┌──────────┐    │
│  │Coordinator│  │  Writer  │  │  Coder   │  │ Research │    │
│  │  Agent   │  │  Agent   │  │  Agent   │  │  Agent   │    │
│  └────┬─────┘  └────┬─────┘  └────┬─────┘  └────┬─────┘    │
│       └──────────────┼──────────────┼──────────────┘         │
│                      │              │                        │
│              ┌───────▼──────────────▼───────┐               │
│              │      Shared Message Bus       │               │
│              │         (Redis/Kafka)         │               │
│              └──────────────────────────────┘               │
└─────────────────────────────────────────────────────────────┘

Resource allocation:

• Coordinator: 1 vCPU, 2GB RAM (lightweight, mainly routing)
• Writer: 2 vCPU, 4GB RAM (handles longer documents)
• Coder: 2 vCPU, 4GB RAM (needs memory for context)
• Research: 1 vCPU, 2GB RAM (mostly API calls)
• Shared Redis: Managed Redis for message passing
• Shared Postgres: For persistent storage

Model Configuration

Different models for different agent roles, optimizing capability and cost:

Coordinator agent: claude-opus-4-6

• Complex reasoning required for task decomposition
• Must understand capabilities of other agents
• Needs to synthesize partial results into coherent wholes
• Worth the cost premium for orchestration quality

Writer agent: claude-sonnet-4-5

• Creative work benefits from Sonnet's balance
• Maintains consistent voice across documents
• Fast enough for interactive writing sessions
• Cost-effective for high-volume content production

Coder agent: deepseek-coder-v2

• Specialized for code generation and review
• Strong on technical accuracy
• More cost-effective than Anthropic for pure coding
• Excellent at following coding standards

Research agent: gemini-2.0-flash-thinking

• Optimized for information gathering
• Fast responses for exploration
• Built-in reasoning traces for transparency
• Cost-effective for high-volume queries

Agent configuration example (coordinator):

agent:
  name: coordinator
  model: anthropic/claude-opus-4-6
  role: |
    You are the Coordinator agent. Your job is to:
    1. Understand incoming requests
    2. Decompose complex tasks into subtasks
    3. Delegate to specialist agents (Writer, Coder, Research)
    4. Synthesize results into coherent responses
    5. Handle failures and retries gracefully

    Available agents:
    - Writer: Long-form content, documentation, creative writing
    - Coder: Code generation, review, debugging, technical implementation
    - Research: Information gathering, fact-checking, summarization

Skills Stack

Network-AI provides the coordination infrastructure - GitHub. This framework enables:

Agent-to-Agent handoffs via sessions_send: Agents can delegate tasks to each other with context preservation:

await sessions_send(
    target="coder_agent",
    task="Implement the authentication middleware",
    context={"requirements": requirements_doc, "codebase": relevant_files},
    callback="coordinator_agent"
)

Permission walls (AuthGuardian): Control which agents can access which resources:

• Coder agent can access code repositories
• Writer agent can access content management systems
• Research agent can access web search
• Coordinator cannot directly access any—only delegates

Shared blackboards: Persistent state that all agents can read:

• Current project status
• Shared context and decisions
• Coordination metadata

Parallel execution patterns:

• Merge: Run multiple agents in parallel, combine all results
• Vote: Run multiple agents on same task, take majority/best answer
• Chain: Sequential execution with output passing
• First-success: Run parallel, return first successful result

Compatible with 12 agent frameworks: OpenClaw, LangChain, AutoGen, CrewAI, MCP, LlamaIndex, and more. This interoperability means you're not locked into one ecosystem.

SwarmClaw provides the management layer - SwarmClaw:

• Visual workflow designer
• Real-time agent monitoring
• Execution traces and debugging
• Performance analytics
• Cost tracking per agent

Memory Configuration

Shared memory store enables coordination while maintaining agent separation:

Per-agent memory: Each agent maintains its own context relevant to its specialty:

• Coder agent: codebase understanding, coding standards, prior implementations
• Writer agent: style guides, content history, brand voice
• Research agent: source credibility ratings, prior research
• Coordinator: task history, delegation patterns, team capabilities

Shared memory: Information all agents need:

• Current project context
• Active task status
• Decisions made and rationale
• Cross-agent references

Memory architecture:

Agent Private Memory:
  └── [Agent-specific knowledge and context]

Shared Coordination Memory:
  ├── active_tasks: Current work in progress
  ├── completed_tasks: Recent completions for reference
  ├── shared_context: Project-wide context
  └── decisions: Logged decisions with rationale

Persistent Storage:
  └── Historical data, training examples, analytics

Agents logically separate as parallel specialists with an orchestrator agent combining results - OpenClaw Docs. The orchestrator maintains the "big picture" while specialists focus on their domains.

SOUL.md for multi-agent systems (coordinator example):

You are the Coordinator in a multi-agent system.

Your Team:
- Writer Agent: Expert at content creation, documentation, communication
- Coder Agent: Expert at implementation, debugging, code review
- Research Agent: Expert at finding information, fact-checking, analysis

Coordination Principles:
1. Decompose complex tasks into specialist-appropriate subtasks
2. Provide sufficient context when delegating—agents can't read your mind
3. Verify outputs from specialists before combining
4. Handle partial failures gracefully—if one agent fails, adapt
5. Maintain coherence across outputs from different agents

Your Responsibilities:
- Initial task analysis and planning
- Delegation to appropriate specialists
- Progress monitoring and course correction
- Final synthesis and quality assurance
- Escalation when tasks exceed team capabilities

You Do NOT:
- Execute code (delegate to Coder)
- Write long-form content (delegate to Writer)
- Conduct research (delegate to Research)
- Make decisions requiring specialist knowledge

Channel Integration

SwarmClaw dashboard as control plane - SwarmClaw. The dashboard provides:

• Visual workflow execution monitoring
• Real-time agent status and health
• Execution history and replay
• Cost tracking and budgeting
• Alert configuration

Human oversight through dedicated channel: Despite automation, humans need visibility:

• Slack channel for notifications and approvals
• Critical decisions require human confirmation
• Daily summary of agent activity
• Escalation path for unusual situations

API access for programmatic integration:

• Trigger workflows from external systems
• Query agent status and results
• Integrate with CI/CD pipelines
• Connect to business systems

Automation

LangGraph-powered workflows provide structured execution patterns - SwarmClaw. LangGraph enables:

Workflow definition:

workflow = Graph()

# Define nodes (agent calls)
workflow.add_node("analyze", coordinator_analyze)
workflow.add_node("research", research_agent)
workflow.add_node("write", writer_agent)
workflow.add_node("code", coder_agent)
workflow.add_node("synthesize", coordinator_synthesize)

# Define edges (flow)
workflow.add_edge("analyze", ["research", "write", "code"])  # Parallel
workflow.add_edge( ["research", "write", "code"], "synthesize")  # Merge

Execution patterns:

• Fan-out: Single input triggers multiple parallel agent executions
• Fan-in: Multiple agent results merge into single output
• Conditional routing: Based on task analysis, route to different agents
• Loops: Iteration until quality threshold met

Example workflow (content production):

1. Coordinator receives "Write blog post about X"
2. Research agent gathers information on X
3. Writer agent creates draft from research
4. Coder agent creates code examples if needed
5. Coordinator reviews and requests revisions
6. Writer agent revises
7. Coordinator approves final output

Security

Multi-agent systems introduce coordination-specific security concerns:

File-system mutexes: Prevent race conditions when multiple agents access shared resources. Only one agent writes to a file at a time.

Atomic commits: Changes are all-or-nothing. If a multi-step operation fails partway, the system rolls back to consistent state.

Token budget ceilings: Prevent runaway cost if agents enter infinite loops - GitHub. Each agent has:

• Per-request token limit
• Per-session token budget
• Daily cost ceiling

Agent isolation: Agents run in separate containers with:

• No shared filesystem access (except through defined APIs)
• Network policies limiting agent-to-agent communication
• Separate credentials per agent
• Audit logging of all inter-agent communication

Human approval gates: Configure certain operations to require human approval:

• Actions above cost threshold
• External system modifications
• Data deletions
• New agent deployments

Implementation Steps

1. Architecture design: Define agent roles, communication patterns, failure modes
2. DigitalOcean setup: Create App Platform project, configure Redis, Postgres
3. Coordinator deployment: First agent—test basic operations
4. Network-AI integration: Install coordination framework, configure blackboard
5. Specialist agent deployment: Writer, Coder, Research agents
6. SwarmClaw setup: Install dashboard, connect to agents
7. Workflow definition: Create LangGraph workflows for common tasks
8. Testing: Run workflows with synthetic tasks, verify coordination
9. Permission configuration: AuthGuardian rules, budget limits
10. Monitoring setup: Alerts, dashboards, cost tracking
11. Human oversight: Slack integration, approval workflows
12. Pilot period: Run with real tasks under close monitoring
13. Iteration: Refine agent prompts, workflows, and coordination based on experience

Cost Estimate

• Hosting: ~$80-150/month (4 containers + managed services)
• API costs: ~$100-200/month (multi-model across agents)
• SwarmClaw: ~$0-50/month (depending on tier)
• Redis/Postgres managed: ~$20-40/month
• Monthly total: $200-440

The cost scales with usage. Multi-agent setups process more tokens per task than single agents (coordination overhead), but accomplish complex tasks that single agents cannot. The ROI depends on task complexity—simple tasks should stay with single agents.

---

19. Setup Scenario 10: The Minimalist Single-Purpose Agent

Persona: Someone who wants one specific automation—email triage—and nothing else.

There's elegance in constraint. While most OpenClaw guides focus on expanding capabilities—more skills, more channels, more automation—this scenario goes the opposite direction. One task. One skill. Minimal infrastructure. Maximum focus.

The use case is simple: you receive too many emails. Most aren't urgent. Some are. You want to know about the urgent ones immediately while everything else waits for a morning digest. That's it. No calendar integration, no task management, no creative writing assistance—just email triage, done well.

This minimalist approach offers several advantages over feature-rich setups:

• Lower cost: Under $6/month total
• Lower complexity: Fewer failure points
• Lower attack surface: Minimal permissions, minimal risk
• Lower maintenance: Set it up once, forget it exists

The philosophy extends beyond email. The same pattern works for any single-purpose automation: expense tracking, news monitoring, price alerts, social media mentions. Pick one valuable task and execute it reliably.

The Minimalist Philosophy

Most productivity tool adoption fails not from insufficient features but from overwhelming complexity. A tool that does 100 things and requires constant attention provides less value than one that does 1 thing automatically.

The email triage problem: The average professional receives 120+ emails per day. Most can wait. A few need immediate attention. Without filtering, you either check constantly (interruption cost) or miss urgent items (response cost). Human-based triage is exhausting; automated triage based on simple rules (sender, keywords) catches 60% of cases but misses context.

AI-powered triage: An LLM understands context. It can read "Need response by 3pm today" and flag urgency. It can recognize that an email from your largest client deserves immediate attention regardless of language. It can understand that "Quick question" from your boss is different from "Quick question" from a sales email.

Hardware Configuration

$2.50/month VPS from a budget provider delivers everything this setup needs - Medium. The OpenClaw Gateway is lightweight. Email checking is sporadic. Processing load is minimal.

Provider options:

• RackNerd: $2.50/month for 1 vCPU, 1GB RAM, 15GB SSD
• Contabo: €2.99/month for similar specs
• HostHatch: $2/month during sales

Why VPS over free tier: Free tier options (Oracle Cloud, Google Cloud free tier) are genuinely free but require more setup complexity and have quota limits that can cause failures at inconvenient times. $2.50/month removes friction.

Why not a Raspberry Pi: A Pi works but requires home internet reliability and power. VPS hosting means 24/7 operation without depending on your home infrastructure. If your power goes out, you still get email alerts.

Specifications needed:

• 1 vCPU (sufficient for sporadic processing)
• 512MB-1GB RAM (OpenClaw Gateway is lightweight)
• 10GB storage (minimal data retention)
• Linux (Ubuntu or Debian)

Model Configuration

Single cheap model: openrouter/google/gemini-2.0-flash-exp handles email classification effectively.

Why Gemini Flash: Email triage is pattern recognition, not complex reasoning. Flash provides:

• Sufficient capability for classification tasks
• Fast response times (email check should complete quickly)
• Low cost (often free tier, pennies otherwise)
• Reliable availability

Why not local models: Local inference requires more hardware. The cost savings don't justify the complexity for a single-purpose agent processing maybe 100 emails per day.

Configuration:

{
  "provider": "openrouter",
  "model": "google/gemini-2.0-flash-exp",
  "max_tokens": 200,
  "temperature": 0.3
}

Low temperature (0.3) ensures consistent classification. Low max_tokens (200) keeps responses brief—we only need priority classification and a one-line summary.

Skills Stack

One skill only: Email-Triage. Installing additional skills adds complexity without value.

The Email-Triage skill provides focused functionality:

Read incoming emails: Connect via IMAP to your email provider. Read-only access—no ability to send, delete, or modify.

Classify priority: Three levels sufficient for most use cases:

• Urgent: Needs attention within hours (important sender, explicit deadline, critical keywords)
• Normal: Should read today but not immediately
• Low: Can wait or potentially never read (newsletters, notifications, FYI)

Generate one-line summaries: Each email gets a summary capturing the essence:

• "Client ABC requesting meeting this week to discuss renewal"
• "Your flight tomorrow confirmed - no action needed"
• "Newsletter from TechCompany - latest AI developments"

Flag action items: Identify emails requiring response or action:

• Explicit requests ("Can you...?", "Please...")
• Questions directed at you
• Calendar invitations needing response
• Deadlines mentioned

What the skill explicitly does NOT do:

• Reply to emails
• Move or archive emails
• Create calendar events
• Store email content long-term

Memory Configuration

Minimal memory keeps the agent focused:

VIP sender list: Emails from these addresses always get flagged as important:

vip_senders:
  - boss@company.com
  - important_client@client.com
  - spouse@gmail.com

Low-priority sender list: Emails from these addresses always go to low priority:

low_priority_senders:
  - *@marketing.linkedin.com
  - *@notifications.github.com
  - newsletter@*

Classification preferences: User-specific rules that improve accuracy:

preferences:
  - "Emails about Project Atlas are always urgent"
  - "Anything from the legal team is urgent"
  - "Weekly reports can wait until Monday"

SOUL.md for email triage (minimal):

You are an email triage assistant. Your only job is classifying emails.

Rules:
1. VIP senders are always URGENT
2. Explicit deadlines within 24 hours are URGENT
3. Newsletters and automated notifications are LOW
4. When uncertain, classify as NORMAL

Output Format:
[PRIORITY] One-line summary
Example: [URGENT] Client needs contract review by end of day
Example: [LOW] GitHub notification - new issue in repo

No personality. No conversation. Just classification.

Channel Integration

Telegram DM only. The agent sends messages to you; you rarely need to message back.

Why Telegram:

• Reliable push notifications
• Works on all mobile platforms
• Doesn't require app installation (web client available)
• Bot creation is straightforward

Message formats:

Immediate VIP notification:

🔴 URGENT EMAIL

From: boss@company.com
Subject: Need your input on proposal
Summary: Requesting feedback on client proposal before 3pm meeting

[View in email client]

Morning digest:

📬 Daily Email Digest - Feb 24

URGENT (2):
• Client ABC - contract questions for today
• IT - password expiring in 24 hours

NORMAL (12):
• Weekly team update from Manager
• Meeting notes from yesterday
• 3 responses to your project update
• ... [7 more]

LOW (34):
• 15 newsletters
• 19 notifications

Total: 48 new emails since yesterday

What you can send back:

• "detail [number]" - Get more detail on a specific email
• "vip [address]" - Add sender to VIP list
• "ignore [address]" - Add sender to low-priority list

Automation

Three simple automations handle all triage needs:

Every 30 minutes during business hours: Check for new emails

- name: periodic_check
  cron: "*/30 8-18 * * 1-5"  # Every 30 min, 8am-6pm, Mon-Fri
  task: check_new_emails

Morning 7am: Daily digest of overnight emails

- name: morning_digest
  cron: "0 7 * * *"  # 7am daily
  task: generate_digest

On VIP email detection: Immediate notification (within the 30-minute check)

- name: vip_alert
  trigger: vip_email_detected
  task: send_urgent_notification

Why not continuous monitoring: Checking every 30 seconds is possible but unnecessary. True urgency is rare; 30-minute granularity catches most situations. The reduced API calls and processing save cost and complexity.

Weekend handling: By default, weekend emails accumulate for Monday morning digest. If you need weekend monitoring, adjust the cron expression.

Security

Minimal attack surface is the primary security feature. The less the agent can do, the less damage if compromised.

Read-only email access: The agent uses IMAP to read emails. It cannot:

• Send emails as you
• Delete emails
• Move emails between folders
• Access contacts or calendar
• Modify account settings

Configure OAuth with minimal scopes or use an app-specific password with read-only permissions.

No send capability: Even if the agent were compromised, it cannot send emails from your account. The worst case is information disclosure of email subjects/summaries—not account takeover.

VPS hardening basics:

• SSH key authentication only (disable password auth)
• Fail2ban for brute force protection
• Unattended-upgrades for security patches
• Firewall allowing only SSH and necessary outbound

Credential storage: Store email credentials in environment variables or encrypted secrets file. Don't commit to version control.

Implementation Steps

1. VPS provisioning: Sign up with budget provider, create minimal VPS
2. Basic security: SSH keys, firewall, updates
3. Docker installation: Install Docker for sandboxed OpenClaw operation
4. OpenClaw installation: Standard quickstart with minimal configuration
5. OpenRouter setup: Create account, configure API key
6. Email connection: IMAP credentials, test read access
7. Telegram bot: Create via BotFather, configure webhook
8. SOUL.md creation: Minimal classification instructions
9. VIP list: Initial list of important senders
10. Cron configuration: 30-minute check, morning digest
11. Testing: Manually trigger checks, verify notifications
12. Monitoring: Set up alert if agent stops functioning

Cost Estimate

• Hosting: $2.50/month
• API: ~$1-3/month (100 emails/day × 30 days × negligible cost per email)
• Telegram: $0
• Monthly total: $3.50-5.50

Cost per email: At 3,000 emails per month and $5.50 total cost, each email costs approximately $0.002 to triage. Compare this to the cognitive cost of checking email constantly.

ROI calculation: If the agent saves you 15 minutes per day of email checking (a conservative estimate), that's 7.5 hours per month. At any reasonable hourly value, $5.50 is negligible.

Scaling the Pattern

The minimalist single-purpose approach extends to other automations:

News monitoring: One topic, daily summary, urgent alerts for major developments.

Price tracking: One product or stock, alert when target price reached.

Social mentions: One brand or name, notification on new mentions.

Appointment reminders: One calendar, morning summary, pre-meeting alerts.

Each runs on the same $2.50 VPS. Multiple single-purpose agents can coexist, each focused and reliable. This is sometimes preferable to one complex multi-purpose agent—failures are isolated, capabilities are clear, and each automation can be evaluated independently.

---

20. Cost Analysis Across All Scenarios

Understanding the cost spectrum helps you choose the right setup for your budget and needs.

Key insight: The range from free to $700/month reflects fundamentally different use cases, not just "better" and "worse" options. A student's free tier setup may be perfect for their needs; an enterprise's $700/month deployment may be undersized for theirs.

---

21. Common Mistakes and How to Avoid Them

Mistake 1: Running Without Sandboxing

OpenClaw has shell access. A hallucinating model can execute destructive commands. Always enable Docker sandboxing for non-trivial deployments.

Mistake 2: Using Premium Models for Everything

Claude Opus is powerful but expensive. Most routine tasks work fine with Sonnet or Flash. Use tiered routing to reduce costs 40-60%.

Mistake 3: Ignoring Memory Configuration

Default memory settings create bloated context. Configure pruning and compaction to manage costs and maintain focus.

Mistake 4: Skipping System Prompt Customization

Generic SOUL.md produces generic results. Invest time in personalization to get an agent that truly understands your workflow.

Mistake 5: Connecting All Channels Immediately

Multi-channel is powerful but complex. Start with one channel, master it, then expand.

Mistake 6: Installing Too Many Skills

Every skill is potential attack surface and cognitive overhead. Install only what you need; you can add more later.

Mistake 7: Not Monitoring Costs

API costs accumulate invisibly. Set up usage alerts to avoid month-end surprises.

Mistake 8: Trusting Third-Party Skills Blindly

Community skills vary in quality and safety. Review code before installation, especially for skills with write/execute permissions.

---

22. Future-Proofing Your Setup

The OpenClaw ecosystem evolves rapidly. February 2026 brought the creator's move to OpenAI and project transition to an open-source foundation - Wikipedia.

Recommendations for Long-Term Setups

Use abstraction layers: Configure through openclaw.json rather than hardcoding. When configurations change, you update settings not code.

Document your setup: Your SOUL.md, memory files, and skill configurations represent significant investment. Back them up separately from the OpenClaw installation.

Stay current but cautious: New versions bring features and fixes but also potential breaking changes. Test updates in a separate environment before production.

Build modularly: Keep skills loosely coupled. If one becomes obsolete, you can replace it without rebuilding everything.

For organizations evaluating infrastructure broadly, platforms like o-mega.ai provide abstracted AI workforce capabilities that hide infrastructure complexity entirely - O-mega. Instead of managing OpenClaw configurations directly, you deploy agents through a managed platform and let the provider handle infrastructure evolution.

---

Glossary

Agent: An AI system that can take actions, not just generate text.

ClawHub: OpenClaw's community marketplace for skills and extensions.

Cron: Scheduled task execution based on time intervals or expressions.

Gateway: OpenClaw's core process that routes messages and manages sessions.

MCP (Model Context Protocol): Standard for connecting AI agents to external tools.

OpenRouter: Unified API that provides access to multiple AI models through one endpoint.

Ollama: Local model runtime for running LLMs on your own hardware.

Sandboxing: Isolating agent execution to limit damage from errors or attacks.

Skills: Native OpenClaw extensions that add specific capabilities.

SOUL.md: File defining agent personality, values, and persistent instructions.

---

Written by Yuma Heymans (@yumahey), founder of o-mega.ai. Yuma researches AI agent architectures and helps organizations navigate the rapidly evolving landscape of autonomous AI systems.

---

This guide reflects the OpenClaw ecosystem as of February 2026. The framework, skills, and best practices evolve continuously—verify current details before implementing production setups.