Short answer for 2026
CordClaw is the open-source Cordum Edge adapter for OpenClaw, with pre-dispatch policy enforcement for supported high-risk actions. It hooks the OpenClaw gateway at four points (agent_start, prompt_build, tool_call, message_write), sends structured metadata to a localhost daemon, and returns one of five typed decisions: ALLOW, DENY, THROTTLE, REQUIRE_HUMAN, or CONSTRAIN. Every decision is logged with a reason for audit.
CordClaw is governance, not a sandbox or a prompt rule. Sandboxes (like NemoClaw) isolate actions while they execute and limit runtime blast radius; they complement pre-dispatch governance. Prompt rules (like SecureClaw) live inside the model context where injection bypasses them. CordClaw evaluates structured envelope data — provider, channel, action, canonicalized command — before the gateway lets the call cross the execution boundary, so destructive payloads hidden in base64 or shell substitution are decoded and tagged before policy runs.
Pick CordClaw when you need deterministic, declarative policy in front of OpenClaw agents. Install from GitHub for plugin-only mode with local audit. The connected Cordum path for centralized policy bundles, approval inboxes, and configured audit exports remains in progress; do not treat the local adapter as tenant-wide enforcement.