From f5d7d1b74820f0f4615b34a9e315468ef2b57ee0 Mon Sep 17 00:00:00 2001
From: Felipe Micaroni Lalli <micaroni@gmail.com>
Date: Fri, 30 Jan 2026 10:40:50 -0300
Subject: [PATCH 1/3] First version adding a docker of openclaw.

---
 docker-openclaw/Dockerfile     | 118 +++++++++++++++++++++++++++++++++
 docker-openclaw/build          |   1 +
 docker-openclaw/openclaw-start |  12 ++++
 docker-openclaw/run            |  18 +++++
 4 files changed, 149 insertions(+)
 create mode 100644 docker-openclaw/Dockerfile
 create mode 100755 docker-openclaw/build
 create mode 100755 docker-openclaw/openclaw-start
 create mode 100755 docker-openclaw/run

diff --git a/docker-openclaw/Dockerfile b/docker-openclaw/Dockerfile
new file mode 100644
index 0000000..19ad4db
--- /dev/null
+++ b/docker-openclaw/Dockerfile
@@ -0,0 +1,118 @@
+# syntax=docker/dockerfile:1.7
+FROM igorhvr/bedlam-ubuntu
+
+ENV DEBIAN_FRONTEND=noninteractive
+SHELL ["/bin/bash", "-o", "pipefail", "-c"]
+
+# -------------------------------
+# System deps (headless + build tools)
+# -------------------------------
+RUN set -eux; \
+    apt-get update; \
+    apt-get install -y \
+    build-essential curl file git procps ca-certificates \
+    sudo locales dialog gnupg lsb-release unzip xz-utils \
+    python3 python3-dev python3-pip \
+    chromium xvfb \
+    ; \
+    rm -rf /var/lib/apt/lists/*
+
+# -------------------------------
+# Install GitHub CLI (gh)
+# -------------------------------
+RUN set -eux; \
+    curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg \
+    | dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg; \
+    chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg; \
+    echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" \
+    > /etc/apt/sources.list.d/github-cli.list; \
+    apt-get update; \
+    apt-get install -y gh; \
+    rm -rf /var/lib/apt/lists/*; \
+    gh --version
+
+# -------------------------------
+# Homebrew (Linuxbrew) – manual, Docker-safe
+# -------------------------------
+RUN set -eux; \
+    useradd -m -d /home/linuxbrew -s /bin/bash linuxbrew; \
+    mkdir -p /home/linuxbrew/.linuxbrew; \
+    chown -R linuxbrew:linuxbrew /home/linuxbrew
+
+USER linuxbrew
+ENV HOME=/home/linuxbrew
+
+RUN set -eux; \
+    git clone --depth=1 https://github.com/Homebrew/brew /home/linuxbrew/.linuxbrew/Homebrew; \
+    mkdir -p /home/linuxbrew/.linuxbrew/bin; \
+    ln -sf ../Homebrew/bin/brew /home/linuxbrew/.linuxbrew/bin/brew; \
+    eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"; \
+    brew --version
+
+USER root
+ENV HOME=/root
+
+RUN set -eux; \
+    echo 'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"' > /etc/profile.d/brew.sh
+
+ENV PATH="/home/linuxbrew/.linuxbrew/bin:/home/linuxbrew/.linuxbrew/sbin:${PATH}"
+ENV HOMEBREW_PREFIX="/home/linuxbrew/.linuxbrew"
+ENV HOMEBREW_CELLAR="/home/linuxbrew/.linuxbrew/Cellar"
+ENV HOMEBREW_REPOSITORY="/home/linuxbrew/.linuxbrew/Homebrew"
+
+# -------------------------------
+# npm reliability settings
+# -------------------------------
+RUN set -eux; \
+    npm config set fund false; \
+    npm config set audit false; \
+    npm config set update-notifier false; \
+    npm config set progress false; \
+    npm config set fetch-retries 5; \
+    npm config set fetch-retry-mintimeout 20000; \
+    npm config set fetch-retry-maxtimeout 120000
+
+# -------------------------------
+# Tooling installs (cached)
+# -------------------------------
+ENV OPENCLAW_STATE_DIR=/root/.openclaw
+RUN --mount=type=cache,target=/root/.npm \
+    npm install -g openclaw@latest --no-audit --no-fund
+
+RUN --mount=type=cache,target=/root/.npm \
+    npm install -g @google/gemini-cli --no-audit --no-fund
+
+RUN --mount=type=cache,target=/root/.npm \
+    npm install -g @openai/codex --no-audit --no-fund
+
+RUN --mount=type=cache,target=/root/.npm \
+    npm install -g @anthropic-ai/claude-code --no-audit --no-fund
+
+# -------------------------------
+# Headless defaults
+# -------------------------------
+ENV CHROME_FLAGS="--window-size=1920,1080 --disable-gpu --no-sandbox"
+# ENV DISPLAY=:99
+
+# -------------------------------
+# Copy OpenClaw start script
+# -------------------------------
+COPY openclaw-start /bin/openclaw-start
+RUN chmod 0755 /bin/openclaw-start
+
+# -------------------------------
+# Global ZSH banner (after oh-my-zsh)
+# -------------------------------
+RUN cat <<'EOF' > /etc/zsh/zshrc
+# Show OpenClaw help once per interactive shell
+if [[ -o interactive ]]; then
+  echo
+  echo "OpenClaw quickstart:"
+  echo "  First run (one time only): openclaw onboard"
+  echo "  Start gateway:             openclaw-start"
+  echo "  Gateway UI:                http://127.0.0.1:18789/"
+  echo
+fi
+EOF
+
+CMD ["/bin/zsh"]
diff --git a/docker-openclaw/build b/docker-openclaw/build
new file mode 100755
index 0000000..39c3ce9
--- /dev/null
+++ b/docker-openclaw/build
@@ -0,0 +1 @@
+sudo DOCKER_BUILDKIT=1 docker build --progress=plain -t igorhvr/openclaw .
\ No newline at end of file
diff --git a/docker-openclaw/openclaw-start b/docker-openclaw/openclaw-start
new file mode 100755
index 0000000..5fa0f50
--- /dev/null
+++ b/docker-openclaw/openclaw-start
@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# Start a virtual display for browser-based flows
+echo "[+] Starting virtual display on ${DISPLAY:-:99} (1920x1080x24)"
+Xvfb "${DISPLAY:-:99}" -screen 0 1920x1080x24 >/tmp/xvfb.log 2>&1 &
+sleep 1
+
+PORT="${OPENCLAW_GATEWAY_PORT:-18789}"
+
+echo "[+] Starting OpenClaw gateway on port ${PORT}"
+exec openclaw gateway --port "${PORT}" --verbose
diff --git a/docker-openclaw/run b/docker-openclaw/run
new file mode 100755
index 0000000..e48f498
--- /dev/null
+++ b/docker-openclaw/run
@@ -0,0 +1,18 @@
+#!/bin/sh
+
+# Run OpenClaw in an interactive Bedlam-style container
+# - privileged + NET_ADMIN + /dev/net/tun: required for network/tunnel features
+# - mount ~/.openclaw to persist config, credentials, and WhatsApp session
+# - expose gateway/dashboard ports explicitly (avoid random -P)
+
+sudo docker run \
+  --hostname openclaw \
+  --privileged \
+  -it \
+  --device /dev/net/tun:/dev/net/tun \
+  --cap-add=NET_ADMIN \
+  --cap-add=MKNOD \
+  -v "$HOME/.openclaw:/root/.openclaw" \
+  -p 18789:18789 \
+  -p 18793:18793 \
+  igorhvr/openclaw /bin/zsh -i

From fc5a8e001418a2f7f0faf52074885afef3fb72f0 Mon Sep 17 00:00:00 2001
From: Felipe Micaroni Lalli <micaroni@gmail.com>
Date: Sat, 31 Jan 2026 00:57:57 -0300
Subject: [PATCH 2/3] Refactor Dockerfile for better caching, dependencies, and
 shell integration

- Optimize `apt-get` and `npm` layers with caching and consolidation to speed up builds.
- Add missing system dependencies (`libnss3`, `libatk`, `libgtk`, etc.) for headless browser support.
- Fix `zsh` PATH issues to ensure `linuxbrew` remains accessible after shell initialization.
- Update the interactive shell banner with comprehensive OpenClaw command usage.
- Add a build-time sanity check for Homebrew availability.
- Update run script to name the container explicitly.
---
 docker-openclaw/Dockerfile | 78 ++++++++++++++++++++++++++++----------
 docker-openclaw/run        |  2 +
 2 files changed, 61 insertions(+), 19 deletions(-)

diff --git a/docker-openclaw/Dockerfile b/docker-openclaw/Dockerfile
index 19ad4db..af6beac 100644
--- a/docker-openclaw/Dockerfile
+++ b/docker-openclaw/Dockerfile
@@ -1,33 +1,40 @@
 # syntax=docker/dockerfile:1.7
 FROM igorhvr/bedlam-ubuntu
+LABEL maintainer="Felipe Micaroni Lalli <bedlam@nok.uy>"
 
 ENV DEBIAN_FRONTEND=noninteractive
 SHELL ["/bin/bash", "-o", "pipefail", "-c"]
 
 # -------------------------------
 # System deps (headless + build tools)
+#   Bedlam already includes: zsh, curl, git, file, procps, sudo, locales, dialog,
+#   gnupg, lsb-release, unzip, xz-utils, ca-certificates, nodejs/npm, etc.
 # -------------------------------
-RUN set -eux; \
+RUN --mount=type=cache,target=/var/cache/apt \
+    --mount=type=cache,target=/var/lib/apt \
+    set -eux; \
     apt-get update; \
-    apt-get install -y \
-    build-essential curl file git procps ca-certificates \
-    sudo locales dialog gnupg lsb-release unzip xz-utils \
+    apt-get install -y --no-install-recommends \
+    build-essential \
     python3 python3-dev python3-pip \
     chromium xvfb \
+    libnss3 libatk-bridge2.0-0 libgtk-3-0 libgbm1 libasound2t64 \
     ; \
     rm -rf /var/lib/apt/lists/*
 
 # -------------------------------
 # Install GitHub CLI (gh)
 # -------------------------------
-RUN set -eux; \
+RUN --mount=type=cache,target=/var/cache/apt \
+    --mount=type=cache,target=/var/lib/apt \
+    set -eux; \
     curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg \
     | dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg; \
     chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg; \
     echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" \
     > /etc/apt/sources.list.d/github-cli.list; \
     apt-get update; \
-    apt-get install -y gh; \
+    apt-get install -y --no-install-recommends gh; \
     rm -rf /var/lib/apt/lists/*; \
     gh --version
 
@@ -52,16 +59,33 @@ RUN set -eux; \
 USER root
 ENV HOME=/root
 
+# Make brew usable in shells that *do* load /etc/profile.d
 RUN set -eux; \
     echo 'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"' > /etc/profile.d/brew.sh
 
+# Keep env for non-shell callers too (but note Bedlam may reset PATH inside zshrc)
 ENV PATH="/home/linuxbrew/.linuxbrew/bin:/home/linuxbrew/.linuxbrew/sbin:${PATH}"
 ENV HOMEBREW_PREFIX="/home/linuxbrew/.linuxbrew"
 ENV HOMEBREW_CELLAR="/home/linuxbrew/.linuxbrew/Cellar"
 ENV HOMEBREW_REPOSITORY="/home/linuxbrew/.linuxbrew/Homebrew"
 
+# -------------------------------
+# Fix Bedlam PATH reset for root zsh
+#   Bedlam sets: export PATH=/usr/local/sbin:...:/bin (drops brew)
+#   We re-add Linuxbrew safely (no duplication).
+# -------------------------------
+RUN set -eux; \
+    cat <<'EOF' >> /root/.zshrc
+# Ensure Linuxbrew is available (Bedlam resets PATH above)
+case ":$PATH:" in
+  *":/home/linuxbrew/.linuxbrew/bin:"*) ;;
+  *) export PATH="/home/linuxbrew/.linuxbrew/bin:/home/linuxbrew/.linuxbrew/sbin:$PATH" ;;
+esac
+EOF
+
 # -------------------------------
 # npm reliability settings
+#   Bedlam already installs nodejs/npm, so only configure.
 # -------------------------------
 RUN set -eux; \
     npm config set fund false; \
@@ -76,23 +100,18 @@ RUN set -eux; \
 # Tooling installs (cached)
 # -------------------------------
 ENV OPENCLAW_STATE_DIR=/root/.openclaw
-RUN --mount=type=cache,target=/root/.npm \
-    npm install -g openclaw@latest --no-audit --no-fund
-
-RUN --mount=type=cache,target=/root/.npm \
-    npm install -g @google/gemini-cli --no-audit --no-fund
-
-RUN --mount=type=cache,target=/root/.npm \
-    npm install -g @openai/codex --no-audit --no-fund
 
 RUN --mount=type=cache,target=/root/.npm \
+    set -eux; \
+    npm install -g openclaw@latest --no-audit --no-fund; \
+    npm install -g @google/gemini-cli --no-audit --no-fund; \
+    npm install -g @openai/codex --no-audit --no-fund; \
     npm install -g @anthropic-ai/claude-code --no-audit --no-fund
 
 # -------------------------------
 # Headless defaults
 # -------------------------------
 ENV CHROME_FLAGS="--window-size=1920,1080 --disable-gpu --no-sandbox"
-# ENV DISPLAY=:99
 
 # -------------------------------
 # Copy OpenClaw start script
@@ -101,18 +120,39 @@ COPY openclaw-start /bin/openclaw-start
 RUN chmod 0755 /bin/openclaw-start
 
 # -------------------------------
-# Global ZSH banner (after oh-my-zsh)
+# OpenClaw banner (do NOT overwrite Bedlam zshrc; append)
 # -------------------------------
-RUN cat <<'EOF' > /etc/zsh/zshrc
-# Show OpenClaw help once per interactive shell
+RUN set -eux; \
+    cat <<'EOF' >> /etc/zsh/zshrc
+
+# ---- OpenClaw banner (interactive only) ----
 if [[ -o interactive ]]; then
   echo
   echo "OpenClaw quickstart:"
-  echo "  First run (one time only): openclaw onboard"
+  echo "  Onboard (first run):        openclaw onboard"
   echo "  Start gateway:             openclaw-start"
   echo "  Gateway UI:                http://127.0.0.1:18789/"
   echo
+  echo "Diagnostics & config:"
+  echo "  Environment check:         openclaw doctor"
+  echo "  Edit configuration:        openclaw configure"
+  echo "  Show current config:       openclaw config show"
+  echo
+  echo "Agents & context:"
+  echo "  List agents:               openclaw agent list"
+  echo "  Use agent:                 openclaw agent use <name>"
+  echo "  Current agent:             openclaw agent current"
+  echo "  List loaded context:       openclaw context list"
+  echo
+  echo "  Help:                      openclaw help"
+  echo
 fi
 EOF
 
+# -------------------------------
+# Build-time sanity check: brew must be visible in interactive zsh
+# -------------------------------
+RUN set -eux; \
+    zsh -ic 'command -v brew >/dev/null && brew --version >/dev/null'
+
 CMD ["/bin/zsh"]
diff --git a/docker-openclaw/run b/docker-openclaw/run
index e48f498..afd2206 100755
--- a/docker-openclaw/run
+++ b/docker-openclaw/run
@@ -6,6 +6,7 @@
 # - expose gateway/dashboard ports explicitly (avoid random -P)
 
 sudo docker run \
+  --name openclaw \
   --hostname openclaw \
   --privileged \
   -it \
@@ -16,3 +17,4 @@ sudo docker run \
   -p 18789:18789 \
   -p 18793:18793 \
   igorhvr/openclaw /bin/zsh -i
+

From 205f2af23a8e6ff2f334d341df6e6735e03b664d Mon Sep 17 00:00:00 2001
From: Felipe Micaroni Lalli <micaroni@gmail.com>
Date: Sat, 31 Jan 2026 00:58:22 -0300
Subject: [PATCH 3/3] Adding VSCode workspace on gitignore.

---
 .gitignore | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitignore b/.gitignore
index b0e99e7..a67938d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,3 @@
 .aider*
 __pycache__/
+bedlam.code-workspace
\ No newline at end of file