Preventing Runaway Token Spend: Budget Guardrails for Openclaw
Every few weeks, a story surfaces in the self-hosted AI community: someone wakes up to an API bill of $800, $2,000, or more because their agent got stuck in a loop overnight. A malformed webhook triggers the same request endlessly. A recursive skill invocation chains dozens of API calls per second. The agent dutifully processes every one, and the meter keeps running until someone notices or the credit card limit is reached.
Openclaw (formerly Clawdbot) is an autonomous agent by design. It reads messages, decides what to do, calls the Anthropic API, and takes action -- all without waiting for you to click "approve." That autonomy is what makes it powerful, but it also means a single misconfiguration can translate directly into real dollars spent. Budget guardrails are not optional. They are a core part of any production deployment. This article covers the specific controls you should put in place, from API-level spending caps down to per-request token limits and circuit breakers. For the full security picture, see our complete deployment security guide.
How Openclaw Token Costs Work
Every time Openclaw processes a message or executes a task, it sends a request to the Anthropic API. That request contains input tokens (the conversation history, system prompt, and user message) and the API returns output tokens (the model's response). You are billed for both, though output tokens cost more per token than input tokens.
Anthropic's pricing varies by model. Claude Sonnet models are generally in the range of $3-$5 per million input tokens and $15-$25 per million output tokens. Claude Opus models cost significantly more, often $15+ per million input tokens and $75+ per million output tokens. These prices change over time, so always check the current Anthropic pricing page for exact figures. What matters for budgeting is understanding the order of magnitude and how different tasks consume tokens at very different rates.
| Task Type | Approximate Token Usage | Estimated Cost Range |
|---|---|---|
| Simple chat reply | 500 - 1,500 tokens | $0.001 - $0.01 |
| Email summarization | 2,000 - 8,000 tokens | $0.01 - $0.08 |
| Calendar scheduling with context | 3,000 - 10,000 tokens | $0.02 - $0.10 |
| Multi-step research task | 10,000 - 50,000 tokens | $0.05 - $0.50 |
| Code generation / analysis | 15,000 - 100,000 tokens | $0.10 - $2.00 |
| Stuck loop (100 iterations) | 500,000 - 5,000,000 tokens | $5.00 - $100+ |
The last row is the one that matters most. A normal day of Openclaw usage might cost a few dollars. A stuck loop can burn through that in minutes.
Setting Hard Spending Limits
Your first line of defense is a hard monthly spending cap set at the API provider level. Anthropic's developer console allows you to configure a monthly spend limit for your entire organization. Once that limit is reached, the API rejects all further requests until the next billing cycle or until you raise the cap.
To configure this, log into the Anthropic Console, navigate to your organization's billing settings, and set a monthly limit that matches your expected usage plus a reasonable buffer. If your typical monthly spend is $50, a cap of $100-$150 gives you room for spikes without exposing you to catastrophic overruns.
For additional granularity, create separate API keys for different purposes and track usage per key. You can monitor current usage programmatically:
# Check current usage via the Anthropic API
curl https://api.anthropic.com/v1/usage \
-H "x-api-key: $ANTHROPIC_API_KEY" \
-H "anthropic-version: 2023-06-01"
# Example response structure:
# {
# "monthly_spend": 42.17,
# "monthly_limit": 150.00,
# "remaining": 107.83,
# "period_start": "2026-02-01",
# "period_end": "2026-02-28"
# }Use dedicated API keys for your Openclaw instance rather than sharing keys across projects. This way, your spending cap isolates Openclaw costs from any other applications using the same Anthropic account. See our API key management guide for detailed instructions on key scoping and rotation.
Per-Request Token Limits
Hard spending caps stop the bleeding eventually, but per-request limits prevent individual API calls from consuming more tokens than necessary. The max_tokens parameter in every Anthropic API request controls the maximum number of output tokens the model will generate for that single call.
Different task types need different limits. A simple chat response rarely needs more than 1,024 output tokens. A long-form research summary might need 4,096. Setting an appropriate ceiling per task type prevents any single request from being excessively expensive.
# Example: Openclaw task-specific token limits
# In your Openclaw configuration file (e.g., config.yaml)
token_limits:
default_max_tokens: 1024
task_overrides:
chat_reply: 1024
email_summary: 2048
research_task: 4096
code_generation: 4096
calendar_scheduling: 1024
# Maximum conversation context sent as input
max_context_tokens: 8000
# Truncate conversation history beyond this many messages
max_history_messages: 20The max_context_tokens setting is equally important. Without it, long conversation histories grow the input tokens on every request. If a user has a 200-message thread with Openclaw, each new message sends the entire history as context, potentially consuming tens of thousands of input tokens per call. Capping context length or implementing a sliding window over recent messages keeps input costs predictable.
Loop Detection and Circuit Breakers
The most dangerous cost scenario is a loop. Loops happen when a skill invocation triggers another skill that calls back to the first one, when a webhook response generates another webhook, or when the agent repeatedly retries a failing operation. Each iteration costs tokens, and without intervention the cycle continues indefinitely.
A circuit breaker pattern stops the agent after it detects abnormal behavior. The concept is borrowed from electrical engineering: when current exceeds safe levels, the breaker trips and cuts the circuit. For Openclaw, "current" is the rate of API requests.
# Circuit breaker and rate limiting configuration
rate_limits:
# Maximum API requests per minute per user
max_requests_per_minute: 15
# Maximum API requests per hour (catches slower loops)
max_requests_per_hour: 200
circuit_breaker:
# Trip after this many consecutive errors
max_consecutive_errors: 5
# Trip after this many requests without user interaction
max_autonomous_requests: 25
# Cooldown period after circuit breaker trips (seconds)
cooldown_seconds: 300
# Action when tripped: "pause" or "notify_and_pause"
on_trip: notify_and_pause
timeouts:
# Maximum time for a single API call (seconds)
api_call_timeout: 120
# Maximum total time for a multi-step task (seconds)
task_timeout: 600The max_autonomous_requests setting is particularly important. It limits how many API calls Openclaw can make in a single chain without the user sending a new message. If the agent is executing a multi-step task and exceeds this limit, it pauses and asks the user whether to continue. This single setting prevents most runaway scenarios.
We set up cost guardrails as part of every installation.
Every Openclaw deployment we deliver includes spending caps, circuit breakers, and alert thresholds configured for your usage patterns. No surprise bills.
View PlansAlert Thresholds and Monitoring
Hard limits stop runaway costs, but you want to know about problems before the limit is reached. Alert thresholds notify you at predefined spending levels so you can investigate and intervene early.
Configure alerts at multiple levels to give yourself time to react:
# Budget alert configuration
alerts:
monthly_budget: 100.00
thresholds:
- level: 50
action: log_warning
message: "Openclaw has used 50% of monthly budget"
- level: 75
action: send_notification
channels: [email, slack]
message: "Openclaw at 75% of monthly budget - review usage"
- level: 90
action: send_urgent_notification
channels: [email, slack, sms]
message: "URGENT: Openclaw at 90% of budget - potential runaway"
- level: 100
action: pause_agent
channels: [email, slack, sms]
message: "Budget limit reached - Openclaw paused"
# Real-time token counting
token_tracking:
enabled: true
log_every_n_requests: 10
include_in_audit_log: trueThe real-time token counting feature tallies input and output tokens across all requests and compares the running total against your budget thresholds. When integrated with your audit logging system, you get a complete record of exactly which requests consumed the most tokens, making it straightforward to identify inefficient prompts or unexpected usage patterns.
Monthly Cost Optimization Tips
Beyond guardrails that prevent worst-case scenarios, there are practical steps to reduce your baseline Openclaw costs:
- Use the right model for each task. Not every request needs the most capable (and expensive) model. Route simple chat replies through a smaller, cheaper model and reserve larger models for complex reasoning tasks. This alone can cut costs by 50-70%.
- Cache frequent responses. If Openclaw answers the same question repeatedly (business hours, office address, standard procedures), cache those responses locally instead of calling the API each time.
- Trim conversation context aggressively. Summarize older messages instead of sending the full history. A 50-message thread with full context can cost 10x more per request than the same thread with a rolling 10-message window plus a summary.
- Batch related operations. If Openclaw needs to process 10 emails, batch them into a single API call with structured instructions rather than making 10 separate calls. The overhead of system prompts and context is paid once instead of ten times.
- Set sensible polling intervals. If Openclaw checks for new messages or emails on a schedule, make sure the interval matches your actual needs. Checking every 10 seconds when every 60 seconds would suffice multiplies your baseline cost by six.
- Review usage weekly. Spend five minutes each week looking at your token consumption by task type. You will almost always find one category that is consuming more than expected, and the fix is usually a simple configuration change.
Never Worry About Surprise Bills
Our professional installations include spending caps, circuit breakers, alert thresholds, and cost optimization -- all configured for your specific usage. Plans from $2,449 (one-time).
Dive deeper into Openclaw security: