PanClaw intentionally treats every external channel and every model output as untrusted.
- Skills run in dry-run mode unless explicitly approved.
- Mutating skills require
PANCLAW_APPROVAL_TOKEN. - Browser, desktop, messaging and cloud mutation adapters require separate environment flags.
- Audit events are written to
PANCLAW_AUDIT_LOGwhen a skill is invoked.
PanClaw does not provide unofficial personal WeChat automation, payment automation, credential scraping, medical diagnosis, investment advice, legal opinions, construction sign-off or military targeting.
Open an issue with a minimal reproduction and do not include secrets, tokens, cookies or personal data.