For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
User Guide
User Guide
    • Home
      • Overview
      • Architecture Overview
      • Ecosystem
      • Release Notes
      • Prerequisites
      • Quickstart with OpenClaw
      • Inference Options
      • Use Local Inference
      • Tool-Calling Reliability
      • Switch Inference Providers
      • Set Up Task-Specific Sub-Agents
      • Manage Sandbox Lifecycle
      • Runtime Controls
      • Set Up Messaging Channels
      • Workspace Files
      • Backup and Restore
      • Install OpenClaw Plugins
      • Sandbox Hardening
      • Approve or Deny Network Requests
      • Customize the Network Policy
      • Integration Policy Examples
      • Deploy to Remote GPU Instances
      • Brev Web UI
      • Monitor Sandbox Activity
      • Security Best Practices
      • Credential Storage
      • OpenClaw Controls
      • Architecture Details
      • Commands
      • Which CLI to Use
      • Network Policies
      • Troubleshooting
      • Agent Skills
      • Report Vulnerabilities
      • License
      • Discord
NVIDIANVIDIA
Developer-friendly docs for your API
Privacy Policy | Your Privacy Choices | Terms of Service | Accessibility | Corporate Policies | Product Security | Contact

Copyright © 2026, NVIDIA Corporation.

LogoLogoNemoClaw
On this page
  • Prepare a Build Directory
  • Example Dockerfile
  • Create the Sandbox
  • Network Access
  • Common Mistakes
  • Next Steps
Manage Sandboxes

Install OpenClaw Plugins

||View as Markdown|
Previous

Backup and Restore Workspace Files

Next

Sandbox Image Hardening

OpenClaw plugins extend the OpenClaw runtime with hooks, services, tools, or provider integrations. They are different from NemoClaw-managed agent skills:

  • Plugins are code packages loaded by OpenClaw.
  • Skills are SKILL.md directories that teach an agent how to perform a task.
  • Policy presets are network-egress rules that control what sandboxed code can reach.

Today, the supported NemoClaw path for OpenClaw plugins is to bake the plugin into a custom sandbox image and onboard from that Dockerfile.

Prepare a Build Directory

Put the Dockerfile and everything it needs to COPY in one directory. nemoclaw onboard --from <Dockerfile> uses the Dockerfile’s parent directory as the Docker build context.

my-plugin-sandbox/
├── Dockerfile
└── my-plugin/
    ├── package.json
    └── src/

Example Dockerfile

Use the custom image to copy the plugin into the OpenClaw extensions directory and let OpenClaw refresh its config before NemoClaw starts the sandbox.

1ARG SANDBOX_BASE=ghcr.io/nvidia/nemoclaw/sandbox-base:latest
2FROM ${SANDBOX_BASE}
3
4COPY my-plugin/ /opt/my-plugin/
5WORKDIR /opt/my-plugin
6RUN npm ci --no-audit --no-fund && npm run build
7
8RUN mkdir -p /sandbox/.openclaw/extensions \
9 && cp -a /opt/my-plugin /sandbox/.openclaw/extensions/my-plugin \
10 && openclaw doctor --fix
11
12WORKDIR /opt/nemoclaw

If the plugin needs configuration in openclaw.json, apply it after openclaw doctor --fix so the base config exists first.

Create the Sandbox

Point nemoclaw onboard --from at the Dockerfile in the build directory.

$nemoclaw onboard --from ./my-plugin-sandbox/Dockerfile

If you need a second sandbox alongside an existing one, use a dedicated build directory and rerun onboarding with the sandbox name and ports you intend to use.

Network Access

Plugins still run inside the sandbox policy boundary. If a plugin needs network egress, add or update a policy preset for the required hostnames and binaries before rebuilding the sandbox.

For example, see Network Policies for policy concepts and Customize Network Policy for custom preset workflows.

Common Mistakes

These are the most common places where plugin installation gets mixed up with other NemoClaw extension paths.

  • Do not use nemoclaw <sandbox> skill install for OpenClaw plugins. That command only installs SKILL.md agent skills.
  • Do not put a Dockerfile in a broad directory such as /tmp unless you intend to send that whole directory as the Docker build context.
  • Keep plugin dependencies in the build stage or plugin directory; avoid copying unrelated host files into the sandbox image.

Next Steps

  • Review Sandbox Hardening before adding plugin code to a shared or long-lived sandbox.
  • Review Network Policies to plan plugin egress rules.
  • Follow Customize Network Policy if the plugin needs a custom preset.