this is how i locked down my openclaw's bankr wallet. there's no private key, just a permissioned API key. quickest win is IP whitelist. - set up openclaw on railway - enable a static IP, settings > static outbound IPs - add the bankr skill and login w/ email - add static ip to allowed IP list from bankr site links: > access control docs: > railway install guide: > bankr skill: a few gotchas: i had to duplicate the default clawdbot environment variables and change the name to openclaw. add the setup_password environment variable.