Container Isolated Agent Execution With File Based Ipc

via “container-isolated agent execution with file-based ipc”

A lightweight alternative to OpenClaw that runs in containers for security. Connects to WhatsApp, Telegram, Slack, Discord, Gmail and other messaging apps,, has memory, scheduled jobs, and runs directly on Anthropic's Agents SDK

Unique: Uses file-based IPC (src/ipc.ts) instead of direct process invocation or network sockets, allowing the host to monitor and validate all agent I/O without requiring agents to implement network protocols; combined with mount security system (src/mount-security.ts) that enforces filesystem access policies at container runtime

More secure than in-process agent execution (like LangChain agents) because malicious code cannot directly access host memory; simpler than microservice architectures because IPC is filesystem-based and requires no service discovery or network configuration