gitopenclaw / setup / v1.0
OpenClaw, set up securely.
No terminal required.
A one-click macOS installer that handles API keys, model selection, Slack setup, cost controls, and security hardening automatically. OpenClaw running and monitored in under ten minutes — without touching a config file.
macOS 13+ · Apple Silicon & Intel · Free during beta
Download .pkg
Standard macOS installer
Enter API keys
Stored in macOS Keychain
Set cost cap
Hard stops, no surprises
Connect Slack
Alerts + agent output
Security hardening
Applied automatically
Running
Monitored from first boot
How it works
Six steps. No terminal at any point.
Everything that normally requires digging through docs or editing JSON files is handled by the installer UI.
Download the installer
A standard macOS .pkg file. Double-click to run. No Homebrew, no npm, no terminal.
Enter your API keys
The UI guides you through each key with a direct link to where you get it. Anthropic, OpenAI, Tavily — whatever you're using. Stored securely in macOS Keychain.
Choose your model and set a cost cap
Pick a model from a list that shows real cost estimates per task. Set a daily spending limit. The installer configures hard stops automatically — your bill won't surprise you.
Connect Slack or Telegram
Choose a channel for agent outputs and alerts. The UI handles bot creation and token setup with guided steps — no API docs required.
Security hardening applied
Dangerous configuration defaults are corrected automatically. Debug mode off. Audit logging on. Network access scoped. No JSON editing required.
Done
OpenClaw is running, secured, and monitored. A LaunchAgent ensures it restarts on boot. Watch monitoring is active from the moment the installer finishes.
Included automatically
Everything you'd normally configure by hand.
The installer sets this up once. GitOpenClaw maintains it going forward.
Cost controls
Daily and monthly spending caps configured automatically. GitOpenClaw sends a Slack alert when you approach the limit and pauses the gateway if it's exceeded.
Activity logs
Every agent run — what it did, when, how much it cost — logged in plain English. No parsing raw JSON files. Delivered to your Slack channel.
Security hardening
Dangerous defaults corrected at install time. Prompt injection protections configured. Config audited on every gateway restart.
Runtime monitoring
Watch integration enabled automatically. Credential access, unexpected network calls, and anomalous behavior surface as alerts without any additional configuration.
Auto-start on boot
A LaunchAgent is installed so the gateway comes back up automatically after restarts. No cron jobs to maintain, no manual restarts.
Credential security
API keys stored in macOS Keychain — not in plain-text config files. The installer never writes secrets to disk unencrypted.
Secure Setup — Professional Service
$499 one-timeFor teams that want a documented security review. The GitOpenClaw team audits your existing install, scans every skill, hardens your config, and delivers a written security report. Includes 3 months of Pro monitoring.
Questions
Does this require any terminal access?
No. The entire setup process runs through a native macOS UI. You will not need to open Terminal at any point.
What if I already have OpenClaw installed?
The installer detects an existing installation and runs in audit mode — scanning your current skills, reviewing your config, and applying hardening from your current state.
Which Mac versions are supported?
macOS 13 (Ventura) and later. Apple Silicon and Intel both supported.
Can I change settings after installation?
Yes. GitOpenClaw includes a local settings UI at localhost:18789 with the same no-terminal interface for adjusting model selection, cost caps, channels, and security policies.
What's the difference between this and the $499 Secure Setup service?
The Secure Installer is a self-serve product — you run it yourself in minutes. The $499 service is a hands-on professional audit for teams that want a documented security review delivered by the GitOpenClaw team.
Join the early access list
The installer is in development. Be notified when it's ready.