Open Vassal
DocsLog in
Docs/Security
Security

Open Vassal Security Overview

A high-level security guide covering cloud isolation, hosted runtimes, and operational boundaries in Open Vassal.

Last updated April 9, 2026

Isolation first

The core security idea behind Open Vassal is that the agent should run in its own cloud environment rather than inside the same machine a person uses for everyday work.

That separation reduces accidental overlap between personal activity and long-running automation.

Control over the operating surface

Security is stronger when the runtime, file management, dashboard access, and account permissions are all visible and managed in one place.

Open Vassal is designed so that operational control is part of the product, not something hidden in ad hoc scripts and infrastructure tabs.

What this means for teams

For teams, the security story is also an ownership story. One shared hosted setup is easier to reason about than multiple personal machines running different versions of the same thing.

That makes access changes, billing boundaries, and operational responsibility much clearer over time.

Related guides
Security and Cloud Isolation

Why Open Vassal keeps OpenClaw agent workloads in isolated cloud environments instead of on local laptops.

What Open Vassal Is

A plain-language introduction to Open Vassal, the hosted platform for running OpenClaw agents in the cloud.

Create Your First Hosted Agent

The first steps for creating an agent, choosing a plan, and getting the runtime ready.