Automates the full deployment of NVIDIA NemoClaw, a sandboxed AI agent platform running OpenClaw with Landlock, seccomp, and network namespace isolation inside Docker via k3s. Handles the entire stack: Node.js and Docker prerequisites, cgroup v2 fixes for k3s, OpenShell gateway setup, sandbox creation with Nemotron model configuration, and web UI port forwarding with systemd keepalive. Includes workarounds for the known "device identity required" bug in OpenClaw versions before v2026.3.12 and steps for exposing the UI via Cloudflare Tunnel with proper origin headers and Access protection. Use this when setting up a production sandboxed agent environment on NVIDIA hardware or when you need the web interface accessible remotely with all the annoying Docker permission and networking bits already solved.
npx skills add https://github.com/jezweb/claude-skills --skill nemoclaw-setup