clawmoat 0.7.0 → 1.0.0

package/docs/blog/calculator-math.html

@@ -0,0 +1,180 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+<link rel="icon" type="image/png" href="/favicon.png">
+<link rel="apple-touch-icon" href="/apple-touch-icon.png">
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width, initial-scale=1.0">
+<title>She Was Paying Someone Two Days a Month to Do Math With a Calculator — ClawMoat</title>
+<meta name="description" content="A business owner was spending $3,200/month on financial reporting that took two days. We replaced it in an afternoon. The reports are better now.">
+<meta property="og:title" content="She Was Paying Someone Two Days a Month to Do Math With a Calculator">
+<meta property="og:description" content="A business owner was spending $3,200/month on financial reporting that took two days. We replaced it in an afternoon.">
+<meta property="og:type" content="article">
+<meta property="og:url" content="https://clawmoat.com/blog/calculator-math.html">
+<link rel="icon" href="data:image/svg+xml,<svg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 100 100'><text y='.9em' font-size='90'>🏰</text></svg>">
+<style>
+*{margin:0;padding:0;box-sizing:border-box}
+:root{--navy:#0F172A;--navy-light:#1E293B;--navy-mid:#334155;--blue:#3B82F6;--emerald:#10B981;--white:#F8FAFC;--gray:#94A3B8;--red:#EF4444}
+body{font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',Roboto,sans-serif;background:var(--navy);color:var(--white);line-height:1.7}
+a{color:var(--blue);text-decoration:none}
+a:hover{text-decoration:underline}
+.container{max-width:760px;margin:0 auto;padding:0 24px}
+
+nav{position:fixed;top:0;left:0;right:0;z-index:100;background:rgba(15,23,42,.95);backdrop-filter:blur(12px);border-bottom:1px solid rgba(59,130,246,.15);padding:16px 0}
+nav .inner{max-width:760px;margin:0 auto;padding:0 24px;display:flex;align-items:center;justify-content:space-between}
+.logo{font-size:1.25rem;font-weight:700;color:var(--white)}
+.logo span{color:var(--emerald)}
+.nav-links{display:flex;gap:24px}
+.nav-links a{color:var(--gray);font-size:.9rem}
+.nav-links a:hover{color:var(--white);text-decoration:none}
+
+article{padding:120px 0 80px}
+.meta{color:var(--gray);font-size:.9rem;margin-bottom:32px}
+article h1{font-size:clamp(1.8rem,4vw,2.4rem);font-weight:800;line-height:1.2;margin-bottom:12px;letter-spacing:-.02em}
+article h2{font-size:1.4rem;font-weight:700;margin:48px 0 16px;color:var(--white)}
+article h3{font-size:1.15rem;font-weight:700;margin:32px 0 12px;color:var(--white)}
+article p{color:var(--gray);font-size:1.05rem;margin-bottom:20px}
+article strong{color:var(--white)}
+article em{color:var(--gray)}
+article ul,article ol{color:var(--gray);margin:0 0 16px 24px}
+article li{margin-bottom:8px}
+article hr{border:none;border-top:1px solid var(--navy-mid);margin:48px 0}
+article blockquote{border-left:3px solid var(--emerald);padding:12px 20px;margin:24px 0;background:rgba(16,185,129,.06);border-radius:0 8px 8px 0}
+article blockquote p{color:var(--white);font-style:italic;margin-bottom:0}
+
+.highlight{background:var(--navy-light);border-radius:10px;padding:24px 28px;margin:24px 0;border-left:3px solid var(--emerald)}
+.highlight p{margin-bottom:0}
+
+.tags{display:flex;gap:8px;margin-top:32px;flex-wrap:wrap}
+.tag{background:rgba(59,130,246,.12);color:var(--blue);padding:4px 12px;border-radius:20px;font-size:.8rem}
+
+.back{display:inline-flex;align-items:center;gap:6px;color:var(--gray);font-size:.9rem;margin-bottom:24px}
+.back:hover{color:var(--white);text-decoration:none}
+
+.cta{background:var(--navy-light);border:1px solid var(--navy-mid);border-radius:12px;padding:32px;margin:48px 0;text-align:center}
+.cta h3{margin-top:0;font-size:1.2rem}
+.cta p{font-size:.95rem}
+.cta a.btn{display:inline-block;background:var(--emerald);color:var(--navy);padding:12px 28px;border-radius:8px;font-weight:600;margin-top:12px;text-decoration:none}
+.cta a.btn:hover{opacity:.9;text-decoration:none}
+
+footer{border-top:1px solid rgba(255,255,255,.06);padding:32px 0;color:var(--gray);font-size:.85rem;text-align:center}
+</style>
+</head>
+<body>
+
+<nav>
+  <div class="inner">
+    <a href="/" class="logo">🏰 Claw<span>Moat</span></a>
+    <div class="nav-links">
+      <a href="/">Home</a>
+      <a href="/blog/">Blog</a>
+      <a href="https://github.com/darfaz/clawmoat">GitHub</a>
+    </div>
+  </div>
+</nav>
+
+<div class="container">
+<article>
+<a href="/blog/" class="back">← Back to Blog</a>
+<h1>She Was Paying Someone Two Days a Month to Do Math With a Calculator</h1>
+<div class="meta">March 1, 2026 · 4 min read</div>
+
+<p>Two days a month. That's what Sarah's financial reporting cost her.</p>
+
+<p>Not two days of her time — she'd outsourced it. A subcontractor at $200/day came in, pulled numbers from three different systems, typed them into spreadsheets, ran formulas on a calculator, and copy-pasted charts into a slide deck.</p>
+
+<p>Sixteen hours of work. $3,200 a month. $38,400 a year.</p>
+
+<p>For reports that were late half the time and wrong the other half.</p>
+
+<h2>The Part That Should Make You Uncomfortable</h2>
+
+<p>Sarah isn't bad at her job. She runs a 22-person company. She's sharp. She negotiates contracts, closes deals, manages a team.</p>
+
+<p>But she'd been paying for this reporting setup for three years. Never questioned it. Because it felt like what businesses do — you hire someone, they make the reports, the reports go in a folder, you glance at them before the board meeting.</p>
+
+<p>Here's the uncomfortable truth: <strong>she was paying $100/hour for someone to do $15/hour work.</strong></p>
+
+<p>Not because the subcontractor was charging too much. Because the work itself — manual data entry, calculator math, copy-paste formatting — is $15/hour work. It just happened to be wrapped in a monthly invoice that felt normal.</p>
+
+<p>And it was invisible. Nobody in Sarah's company thought to ask: "Why does this take two days?"</p>
+
+<h2>What Happened on a Tuesday Afternoon</h2>
+
+<p>We set it up in four hours.</p>
+
+<p>No new software to buy. No six-month implementation. No consultants with slide decks about "digital transformation."</p>
+
+<p>We connected her three data sources. Built the logic — the same math her subcontractor did by hand, except without the typos. Added the presentation layer so the output looked like something you'd actually want to show a board.</p>
+
+<p>That was it.</p>
+
+<p>Now her data goes in, the analysis runs, and the presentation comes out. Under an hour. Every month. No missed deadlines. No transposed numbers. No $3,200 invoice.</p>
+
+<div class="highlight">
+<p><strong>Before:</strong> 16 hours, $3,200/month, reports with errors, delivered late.<br>
+<strong>After:</strong> 47 minutes, automated, accurate, ready before she asks.</p>
+</div>
+
+<h2>The Moment It Clicked</h2>
+
+<p>Sarah didn't get excited about the technology. She barely asked how it worked.</p>
+
+<p>What she said was: <strong>"I want to run my whole business like this."</strong></p>
+
+<p>Because the reporting was just the first thing she could see. Once it was gone — once the two-day ritual turned into a 47-minute background process — she started looking at everything else.</p>
+
+<p>The proposal formatting that took her office manager half a day. The client onboarding checklist that lived in someone's head. The weekly email summary that three people contributed to and nobody read.</p>
+
+<p>All of it — the same shape. Humans doing mechanical work. Slowly. Expensively. With errors.</p>
+
+<h2>Why This Exists and Nobody Told You</h2>
+
+<p>Because the people who build this technology talk about it in a language you'd never search for.</p>
+
+<p>They call it "agentic AI" and "workflow automation" and "LLM orchestration." They demo it at conferences you don't attend, in Slack channels you've never heard of, using jargon that sounds like it's from a different industry.</p>
+
+<p>Meanwhile, you're paying someone two days a month to do math with a calculator.</p>
+
+<p>Not because you're behind. Because nobody translated it into your language. Nobody said: "That thing you're annoyed about? The slow reports, the manual busywork, the stuff that feels like it should be faster? It can be. Today. In an afternoon."</p>
+
+<h2>The Question</h2>
+
+<p>Sarah's subcontractor didn't get fired. He started working on things that actually need a human brain — analysis, recommendations, strategy. The kind of work that's worth $200/day.</p>
+
+<p>But the calculator math? That's done.</p>
+
+<p>So here's what I'd ask you:</p>
+
+<p><strong>What's your version of two days a month with a calculator?</strong></p>
+
+<p>Because you have one. Every business owner does. Some process that takes too long, costs too much, and nobody's questioned in years because "that's just how we do it."</p>
+
+<p>It doesn't have to be financial reporting. It could be client intake. Invoicing. Inventory reconciliation. The weekly status update that takes three hours to compile.</p>
+
+<p>Whatever it is — it probably doesn't need to take two days anymore.</p>
+
+<div class="cta">
+  <h3>Curious what this looks like for your business?</h3>
+  <p>We help business owners find the calculator-math in their operations and replace it. No jargon. No six-month timeline. Usually an afternoon.</p>
+  <a href="mailto:dar@clawmoat.com?subject=Calculator%20math%20in%20my%20business" class="btn">Let's talk →</a>
+</div>
+
+<div class="tags">
+  <span class="tag">AI agents</span>
+  <span class="tag">automation</span>
+  <span class="tag">business operations</span>
+  <span class="tag">ROI</span>
+</div>
+
+</article>
+</div>
+
+<footer>
+  <div class="container">
+    © 2026 ClawMoat · <a href="/">Home</a> · <a href="/blog/">Blog</a>
+  </div>
+</footer>
+
+</body>
+</html>

package/docs/blog/clawmoat-vs-llamafirewall-nemo-guardrails.html

@@ -0,0 +1,229 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width, initial-scale=1.0">
+<title>ClawMoat vs LlamaFirewall vs NeMo Guardrails — Which AI Agent Security Tool? | ClawMoat Blog</title>
+<meta name="description" content="Detailed comparison of ClawMoat, Meta's LlamaFirewall, and NVIDIA's NeMo Guardrails. Which open-source AI agent security tool should you use?">
+<meta property="og:title" content="ClawMoat vs LlamaFirewall vs NeMo Guardrails">
+<meta property="og:description" content="Three open-source tools, three different approaches to AI agent security. Here's how to choose.">
+<link rel="canonical" href="https://clawmoat.com/blog/clawmoat-vs-llamafirewall-nemo-guardrails">
+<style>
+*{margin:0;padding:0;box-sizing:border-box}
+body{font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',Roboto,sans-serif;background:#0F172A;color:#F8FAFC;line-height:1.8}
+a{color:#3B82F6}
+.container{max-width:760px;margin:0 auto;padding:40px 24px}
+nav{background:rgba(15,23,42,.95);padding:16px 24px;position:fixed;top:0;left:0;right:0;z-index:100;border-bottom:1px solid rgba(59,130,246,.15)}
+nav a{color:#94A3B8;text-decoration:none;margin-right:24px;font-size:.9rem}
+nav a:first-child{color:#F8FAFC;font-weight:700;font-size:1.1rem}
+article{padding-top:80px}
+h1{font-size:2.2rem;font-weight:800;line-height:1.2;margin-bottom:16px;letter-spacing:-.02em}
+h2{font-size:1.5rem;font-weight:700;margin:48px 0 16px;color:#10B981}
+h3{font-size:1.2rem;margin:32px 0 12px}
+p{margin-bottom:16px;color:#CBD5E1}
+.meta{color:#64748B;font-size:.9rem;margin-bottom:40px}
+table{width:100%;border-collapse:collapse;margin:24px 0;font-size:.9rem}
+th{text-align:left;padding:12px;border-bottom:2px solid #334155;color:#94A3B8;font-weight:600}
+td{padding:10px 12px;border-bottom:1px solid rgba(255,255,255,.06)}
+.yes{color:#10B981}
+.no{color:#EF4444}
+code{background:#1E293B;padding:2px 8px;border-radius:4px;font-size:.85rem}
+pre{background:#0a0e17;border:1px solid #334155;border-radius:10px;padding:20px;overflow-x:auto;margin:20px 0;font-size:.85rem;line-height:1.6}
+blockquote{border-left:3px solid #3B82F6;padding:12px 20px;margin:20px 0;background:#1E293B;border-radius:0 8px 8px 0;font-style:italic}
+.cta{background:#1E293B;border:1px solid rgba(59,130,246,.3);border-radius:14px;padding:32px;text-align:center;margin:48px 0}
+.cta h3{color:#F8FAFC;margin:0 0 12px}
+.cta code{font-size:1rem;background:#0a0e17;padding:8px 16px}
+.btn{display:inline-block;padding:12px 28px;background:#3B82F6;color:#fff;border-radius:8px;text-decoration:none;font-weight:600;margin:8px}
+.btn:hover{background:#2563EB}
+</style>
+</head>
+<body>
+<nav>
+<div class="container">
+  <a href="/" class="logo">🏰 Claw<span>Moat</span></a>
+  <button class="menu-toggle" onclick="document.querySelector('.nav-links').classList.toggle('open')" aria-label="Menu">☰</button>
+  <div class="nav-links">
+    <a href="/">Security</a>
+    <a href="/services/">AI Agents</a>
+    <a href="/blog/">Blog</a>
+    <a href="https://github.com/darfaz/clawmoat">GitHub ↗</a>
+  </div>
+</div>
+</nav>
+<div class="container">
+<article>
+<h1>ClawMoat vs LlamaFirewall vs NeMo Guardrails: Which Open-Source AI Agent Security Tool?</h1>
+<div class="meta">February 25, 2026 · 8 min read · By Dar Fazulyanov</div>
+
+<p>Three open-source projects. Three very different approaches to securing AI agents. If you're running AI agents in production (or on your laptop), you need to understand what each one actually does — because they solve fundamentally different problems.</p>
+
+<h2>The Quick Answer</h2>
+
+<table>
+<thead>
+<tr><th></th><th>ClawMoat</th><th>LlamaFirewall</th><th>NeMo Guardrails</th></tr>
+</thead>
+<tbody>
+<tr><td><strong>Maker</strong></td><td>Open source</td><td>Meta</td><td>NVIDIA</td></tr>
+<tr><td><strong>Language</strong></td><td>Node.js</td><td>Python</td><td>Python</td></tr>
+<tr><td><strong>Focus</strong></td><td>Host protection</td><td>Prompt/agent safety</td><td>Conversational guardrails</td></tr>
+<tr><td><strong>Dependencies</strong></td><td>Zero</td><td>PyTorch, transformers</td><td>Multiple</td></tr>
+<tr><td><strong>Protects</strong></td><td>Your machine</td><td>Your model</td><td>Your conversations</td></tr>
+<tr><td><strong>Credential monitoring</strong></td><td class="yes">✅</td><td class="no">❌</td><td class="no">❌</td></tr>
+<tr><td><strong>Permission tiers</strong></td><td class="yes">✅</td><td class="no">❌</td><td class="no">❌</td></tr>
+<tr><td><strong>Skill/plugin auditing</strong></td><td class="yes">✅</td><td class="no">❌</td><td class="no">❌</td></tr>
+<tr><td><strong>Prompt injection</strong></td><td class="yes">✅</td><td class="yes">✅</td><td class="yes">✅</td></tr>
+<tr><td><strong>Setup time</strong></td><td>30 seconds</td><td>~30 minutes</td><td>~15 minutes</td></tr>
+<tr><td><strong>License</strong></td><td>MIT</td><td>MIT</td><td>Apache 2.0</td></tr>
+</tbody>
+</table>
+
+<h2>LlamaFirewall (Meta)</h2>
+
+<p>Released May 2025, LlamaFirewall is Meta's open-source guardrail framework. It's serious engineering — used in production at Meta itself. Three main components:</p>
+
+<ul style="margin:16px 0;padding-left:24px;color:#CBD5E1">
+<li><strong>PromptGuard 2</strong> — A fine-tuned classifier that detects prompt injection and jailbreak attempts with high accuracy</li>
+<li><strong>AlignmentCheck</strong> — Uses an LLM judge to verify agent actions align with their intended goals</li>
+<li><strong>CodeShield</strong> — Scans generated code for security vulnerabilities before execution</li>
+</ul>
+
+<p><strong>Strengths:</strong> State-of-the-art prompt injection detection. Meta's research backing. Production-proven at massive scale. The PromptGuard 2 model is genuinely impressive.</p>
+
+<p><strong>Weaknesses:</strong> Python-only. Requires PyTorch and ML model downloads (heavy). Focused on the model/prompt layer — doesn't know or care about your filesystem, credentials, or installed plugins.</p>
+
+<p><strong>Best for:</strong> Teams building LLM applications who need the best possible prompt injection and jailbreak detection.</p>
+
+<h2>NeMo Guardrails (NVIDIA)</h2>
+
+<p>NVIDIA's framework for adding programmable guardrails to LLM-based conversational systems. Think of it as a policy layer for chatbots and assistants.</p>
+
+<ul style="margin:16px 0;padding-left:24px;color:#CBD5E1">
+<li>Topical guardrails (keep conversations on-track)</li>
+<li>Safety guardrails (content moderation)</li>
+<li>Hallucination detection and fact-checking</li>
+<li>Custom flows using Colang (their domain-specific language)</li>
+</ul>
+
+<p><strong>Strengths:</strong> Extremely flexible. Colang lets you define complex conversational policies. Great integration with the NVIDIA AI ecosystem.</p>
+
+<p><strong>Weaknesses:</strong> Designed for conversational AI, not autonomous agents. Steep learning curve (Colang is its own language). Heavy dependency chain.</p>
+
+<p><strong>Best for:</strong> Teams building customer-facing chatbots and copilots who need content safety and conversation control.</p>
+
+<h2>ClawMoat</h2>
+
+<p>ClawMoat protects a fundamentally different layer: <strong>the host machine itself</strong>. If you're running AI agents on your laptop, a dedicated machine, or in the cloud, ClawMoat is the security layer between the agent and your operating system.</p>
+
+<ul style="margin:16px 0;padding-left:24px;color:#CBD5E1">
+<li><strong>Host Guardian</strong> — 4 permission tiers (observer → full), enforced at runtime</li>
+<li><strong>Forbidden zones</strong> — Auto-protects SSH keys, AWS creds, crypto wallets, browser data</li>
+<li><strong>Credential monitoring</strong> — Watches sensitive directories for unauthorized access</li>
+<li><strong>Skill integrity checking</strong> — Hash-based verification + suspicious pattern detection for installed plugins</li>
+<li><strong>Network egress logging</strong> — See exactly where your agent sends data</li>
+<li><strong>Plus:</strong> Prompt injection scanning, policy engine, audit trails</li>
+</ul>
+
+<p><strong>Strengths:</strong> Only tool protecting the host layer. Zero dependencies. Sub-millisecond scanning. Installs in seconds. Node.js native (where most AI agent frameworks run).</p>
+
+<p><strong>Weaknesses:</strong> Prompt injection detection is pattern-based + heuristic, not ML-based (lighter but less sophisticated than PromptGuard 2). No conversational guardrails.</p>
+
+<p><strong>Best for:</strong> Anyone running AI agents that have shell access, file system access, or credential access — especially on personal machines or shared infrastructure.</p>
+
+<h2>The Real Insight: These Solve Different Problems</h2>
+
+<p>The industry is (correctly) obsessed with prompt injection. But there's a gap nobody's talking about:</p>
+
+<blockquote>
+<p>Your agent can read ~/.ssh/id_rsa right now. No prompt injection required — it already has permission.</p>
+</blockquote>
+
+<p>LlamaFirewall asks: "Is this prompt trying to hijack the agent?"<br>
+NeMo Guardrails asks: "Is this conversation staying on topic?"<br>
+ClawMoat asks: "Should this agent be allowed to access this file / run this command / talk to this server?"</p>
+
+<p>They're complementary. The best security posture uses multiple layers:</p>
+
+<ol style="margin:16px 0;padding-left:24px;color:#CBD5E1">
+<li><strong>Prompt layer:</strong> LlamaFirewall or similar to catch injection attempts</li>
+<li><strong>Conversation layer:</strong> NeMo Guardrails for content safety (if applicable)</li>
+<li><strong>Host layer:</strong> ClawMoat to enforce what the agent can actually DO</li>
+</ol>
+
+<h2>Decision Matrix</h2>
+
+<table>
+<thead>
+<tr><th>If you need...</th><th>Use</th></tr>
+</thead>
+<tbody>
+<tr><td>Best-in-class prompt injection detection</td><td>LlamaFirewall</td></tr>
+<tr><td>Conversational safety for chatbots</td><td>NeMo Guardrails</td></tr>
+<tr><td>Protect your machine from your own agent</td><td>ClawMoat</td></tr>
+<tr><td>Runtime permission control for agents</td><td>ClawMoat</td></tr>
+<tr><td>Credential and filesystem monitoring</td><td>ClawMoat</td></tr>
+<tr><td>Supply chain security for agent plugins</td><td>ClawMoat</td></tr>
+<tr><td>Comprehensive defense-in-depth</td><td>All three</td></tr>
+</tbody>
+</table>
+
+<h2>Update: The Ecosystem Just Got Bigger (Feb 26)</h2>
+
+<p>Since we first published this comparison, three new players have entered the OpenClaw security space:</p>
+
+<h3>Runlayer — Enterprise SaaS</h3>
+<p><a href="https://venturebeat.com/orchestration/runlayer-is-now-offering-secure-openclaw-agentic-capabilities-for-large">Covered by VentureBeat</a>. NYC startup offering "OpenClaw for Enterprise" with ToolGuard (real-time blocking, &lt;100ms latency) and OpenClaw Watch (shadow AI discovery via MDM). Claims 8.7% → 95% prompt injection resistance. Integrates with Okta and Entra. <strong>Closed source, enterprise pricing.</strong></p>
+
+<h3>Crittora — Cryptographic Policy Enforcement</h3>
+<p>Announced via <a href="https://finance.yahoo.com/news/crittora-makes-openclaw-enterprise-ready-155800602.html">Yahoo Finance PR</a>. Cryptographically enforced policy framework for OpenClaw. Targets enterprise compliance. <strong>Different approach — policy signatures, not host protection.</strong></p>
+
+<h3>KiloClaw (Kilo.ai) — Managed Hosting</h3>
+<p><a href="https://venturebeat.com/orchestration/kilo-launches-kiloclaw-allowing-anyone-to-deploy-hosted-openclaw-agents-into">Covered by VentureBeat</a>. Backed by GitLab co-founder. Deploy OpenClaw on managed VMs (Fly.io) in 60 seconds. Handles the "3am crash" problem with always-on monitoring. <strong>Hosting solution, not a security tool — complementary to ClawMoat.</strong></p>
+
+<h3>Updated Comparison</h3>
+<table>
+<thead>
+<tr><th>Tool</th><th>Layer</th><th>Open Source?</th><th>Host Protection?</th><th>Target</th></tr>
+</thead>
+<tbody>
+<tr><td><strong>ClawMoat</strong></td><td>Host / OS</td><td>✅ MIT</td><td>✅</td><td>Everyone (free core)</td></tr>
+<tr><td>LlamaFirewall</td><td>Model / Prompt</td><td>✅ MIT</td><td>❌</td><td>ML teams</td></tr>
+<tr><td>NeMo Guardrails</td><td>Conversation</td><td>✅ Apache 2</td><td>❌</td><td>Chatbot builders</td></tr>
+<tr><td>Runlayer</td><td>Enterprise Governance</td><td>❌ Proprietary</td><td>Partial</td><td>Large enterprises</td></tr>
+<tr><td>Crittora</td><td>Policy / Crypto</td><td>❌ Proprietary</td><td>❌</td><td>Compliance teams</td></tr>
+<tr><td>KiloClaw</td><td>Managed Hosting</td><td>❌ Proprietary</td><td>❌ (VM isolation)</td><td>Developers / SMBs</td></tr>
+</tbody>
+</table>
+
+<p><strong>Key insight:</strong> <a href="https://www.microsoft.com/en-us/security/blog/2026/02/19/running-openclaw-safely-identity-isolation-runtime-risk/">Microsoft's security team says</a> OpenClaw is "not appropriate for standard workstations." Runlayer and KiloClaw solve this by moving agents off your machine. ClawMoat solves it by securing agents <em>on</em> your machine. Different philosophies — and for anyone who wants to keep running agents locally, ClawMoat is the only open-source option.</p>
+
+<h2>Getting Started</h2>
+
+<pre><code># ClawMoat — 30 seconds to host protection
+npm install -g clawmoat
+clawmoat scan ~/.openclaw/
+clawmoat skill-audit ~/.openclaw/skills/
+clawmoat report
+
+# LlamaFirewall — model-layer security
+pip install llamafirewall
+# Requires model downloads (~2GB)
+
+# NeMo Guardrails — conversational safety
+pip install nemoguardrails
+# Requires configuration files + Colang</code></pre>
+
+<div class="cta">
+<h3>Try ClawMoat</h3>
+<p style="color:#94A3B8;margin-bottom:16px">Zero dependencies. MIT licensed. 142 tests passing.</p>
+<code>npm install -g clawmoat</code>
+<br><br>
+<a href="https://github.com/darfaz/clawmoat" class="btn">⭐ Star on GitHub</a>
+<a href="https://clawmoat.com/#pricing" class="btn" style="background:#10B981">See Plans</a>
+</div>
+
+<p style="font-size:.85rem;color:#64748B;margin-top:40px">This comparison was written in February 2026. All three projects are actively developed — check their repos for the latest features.</p>
+</article>
+</div>
+</body>
+</html>

package/docs/blog/host-guardian-launch.html

@@ -63,14 +63,16 @@ footer{border-top:1px solid rgba(255,255,255,.06);padding:32px 0;color:var(--gra
 <body>
 
 <nav>
-  <div class="inner">
-    <a href="/" class="logo">🏰 Claw<span>Moat</span></a>
-    <div class="nav-links">
-      <a href="/">Home</a>
-      <a href="/blog/">Blog</a>
-      <a href="https://github.com/darfaz/clawmoat">GitHub</a>
-    </div>
+<div class="container">
+  <a href="/" class="logo">🏰 Claw<span>Moat</span></a>
+  <button class="menu-toggle" onclick="document.querySelector('.nav-links').classList.toggle('open')" aria-label="Menu">☰</button>
+  <div class="nav-links">
+    <a href="/">Security</a>
+    <a href="/services/">AI Agents</a>
+    <a href="/blog/">Blog</a>
+    <a href="https://github.com/darfaz/clawmoat">GitHub ↗</a>
   </div>
+</div>
 </nav>
 
 <div class="container">
@@ -338,7 +340,15 @@ console.log(guardian.report());
 </div>
 
 <footer>
-  <div>© 2026 ClawMoat. Built for the OpenClaw community. 🏰</div>
+<div class="container">
+  <div style="display:flex;gap:24px;justify-content:center;flex-wrap:wrap;margin-bottom:16px">
+    <a href="https://github.com/darfaz/clawmoat" style="color:var(--gray)">GitHub</a>
+    <a href="https://www.npmjs.com/package/clawmoat" style="color:var(--gray)">npm</a>
+    <a href="/blog/" style="color:var(--gray)">Blog</a>
+    <a href="mailto:hello@clawmoat.com" style="color:var(--gray)">hello@clawmoat.com</a>
+  </div>
+  <p style="text-align:center;color:var(--gray);font-size:.85rem">© 2026 ClawMoat</p>
+</div>
 </footer>
 
 </body>