autoresearchclaw-must-run-in-dedicated-container-for-sandbox

autoresearchclaw-must-run-in-dedicated-container-for-sandbox-isolation

AutoResearchClaw executes generated experiment code at runtime and must be isolated in a dedicated researchclaw container on oracle-network — not installed inside the oracle-hermes container. Installing inside oracle-hermes risks dependency conflicts and breaks experiment sandboxing security. The container follows the existing oracle-* topology pattern and can use Docker-in-Docker or bind the host Docker socket for nested experiment containers.

Related

• researchclaw-must-run-in-dedicated-container-for-sandboxing
• autoresearchclaw-requires-dedicated-container-for-sandbox
• researchclaw-requires-dedicated-container-not-hermes-install
• autoresearchclaw-dedicated-container-not-inside-hermes
• autoresearchclaw-requires-dedicated-container-for-experiment
• researchclaw-dedicated-container-oracle-network-topology
• autoresearchclaw-experiment-sandbox-requires-docker-isolatio
• researchclaw-dedicated-container-not-inside-hermes