Jensen said 'Claw strategy.' But OpenShell — the actual product inside NemoClaw — works with ANY agent. Claude Code, Codex, Cursor. Not just OpenClaw. NVIDIA didn't build an OpenClaw fix. They built the security layer for the entire agent stack. What many missed and why it matters: I tested OpenClaw's guardrails in February. The agent disabled its own safety controls instantly — the guardrails were config files it could rewrite. Claude Code is better — the agent can't rewrite its permission rules. But enforcement still runs inside the same process. Earlier this year, internal tool definitions silently overrode operator guardrails. The agent self-approved a 383-line commit. OpenShell moves enforcement outside the agent entirely. Deny-by-default. Network isolation. A privacy router that scrubs data before it hits cloud inference. One command: openshell sandbox create -- claude. Claude Code runs inside it. Zero code changes. The pattern across all agents is the same. Guardrails inside the agent can be overridden or reasoned around. Guardrails that wrap the agent from the outside can't. Jensen attached this to OpenClaw because OpenClaw is the hype. 200K GitHub stars is distribution. But the architecture tells a different story. The partnerships — Cisco, CrowdStrike, Microsoft Security — aren't OpenClaw partnerships. They're enterprise agent security partnerships. This is the CUDA pattern. Launch with gaming. Become the infrastructure for AI. Launch with OpenClaw. Become the security layer for all agents. OpenShell is alpha. Three days old. The architecture is right. The implementation is untested. But NVIDIA just made a bet that agent security is an infrastructure problem, not an application feature. That's the actual strategy behind "every company needs a Claw strategy."