OpenClaw highlighted the core problem with securing AI agents: you can't enumerate every malicious prompt. Pattern matching catches "rm -rf" but misses "please remove all files."

Distributed systems solved this decades ago. OAuth scopes, RBAC, zero-trust—don't ask "is this malicious?" Ask "is this allowed?"

MACAW wraps your LLM/tool calls with policy enforcement. Define allowed actions in plain English, the system generates the policy, enforcement is deterministic.

Would love feedback on what works and what breaks. Generous free tier (covered all our enterprise POCs), no credit card.

Blog: https://macawsecurity.ai/blog/securing-ai-agents-weve-solved... Console: https://console.macawsecurity.ai