Is it safe to expose OpenClaw to inbound DMs

Treat inbound DMs as untrusted input. Defaults are designed to reduce risk:
Default behavior on DM‑capable channels is pairing:
Unknown senders receive a pairing code; the bot does not process their message.
Approve with: openclaw pairing approve <channel> <code>
Pending requests are capped at 3 per channel; check openclaw pairing list <channel> if a code didn’t arrive.
Opening DMs publicly requires explicit opt‑in (dmPolicy: "open" and allowlist "*").
Run openclaw doctor to surface risky DM policies.