I'm a complete AI idiot, but it seems insane to me to use openclaw on Umbrel, particularly if you're also running a bitcoin/lightning node. I see it is available as an app. Is anyone actually doing this, and what security precautions are you taking?
pull down to refresh
yes their package and OS are very stable. if all you do is use electrum and core as a data server for a desktop wallet like sparrow where keys live offline on signing devices then there is no risk.
if you have two umbrels even better where one is just for openclaw. even cooler is if you have your second umbrel dedicated to open claw sit behind its own router with a vpn and only be accessible via tailscale.
setup guide:
take a small openwrt glinet router put mullvad on it. have vpn disable local network access. plug wan into your home network. plug lan into your umbrel. then install tailscale on umbrel. now the only way to get to your umbrel is via the tailscale ip that you authenticate to.
umbrel can't see home network and to troubleshoot your umbrel you ssh to it put claude on it and work around all the docker container idiosyncrasy.
talk to your umbrel either via a browser on tailscale or via messenger app. use syncthing to drop files and sensitive info to openclaw. when openclaw complains about not being able to see synthing folders due to docker restrictions, just ask claude (on umbrelOS linux install) to map the folder across containers.
imho openclaw is so useful it is dangerous. feels like buying your first handgun and beginning to learn all about weapon safety.
I cannot answer your question, because openclaw is inherently insecure, so I would not recommend installing it on anything that runs something else, nor do I.
Good question and good gut feeling though.
TLDR; Don't mix secure environment with insecure hyped crap.