oracle-researchclaw-dedicated-container-rationale

AutoResearchClaw must run in a dedicated container (not inside oracle-hermes) because it executes generated experiment code that requires sandboxing isolation. Coupling it with Hermes risks dependency conflicts and removes the safety boundary for arbitrary code execution. The container joins oracle-network alongside oracle-hermes, oracle-mirofish, and oracle-graphiti-mcp.

Related

• researchclaw-dedicated-container-required-for-sandbox
• autoresearchclaw-requires-dedicated-container-for-sandbox
• researchclaw-requires-dedicated-container-with-docker-socket
• autoresearchclaw-requires-dedicated-container-for-experiment
• researchclaw-must-run-in-dedicated-container-for-experiment
• researchclaw-must-run-in-dedicated-container-for-sandboxing