
IronClaw
An open-source personal AI assistant focused on privacy, local control, secure tool use, and background automation.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for IronClaw, derived from its capabilities.
These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.
Overview
IronClaw is an open-source personal AI assistant inspired by OpenClaw and built in Rust with a strong focus on privacy, security, and local control. Its official repository describes it as a secure assistant that stores data locally, encrypts secrets, avoids telemetry, and protects against prompt injection and data exfiltration through layered defenses. IronClaw supports background routines, heartbeat-based monitoring, parallel jobs, MCP servers, dynamic WASM tool building, Docker sandboxing, and multi-channel access through REPL, HTTP webhooks, Slack, Telegram, and a web gateway. It is designed for users who want a self-hosted assistant that can automate tasks, expand its own capabilities, and retain persistent memory without handing control of data to a third party.
Key features
- Rust
- privacy
- security
- self-hosted
- local storage
- encrypted secrets
- WASM sandbox
- MCP
- prompt injection defense
- background routines
Use cases
- Running a privacy-focused personal AI assistant with local data storage and encrypted secrets.
- Automating recurring work through cron schedules, event triggers, and webhook-based routines.
- Extending assistant capabilities with MCP servers, WASM tools, and dynamically built tools.
- Using a self-hosted assistant across channels such as terminal, web gateway, Slack, and Telegram.