IronClaw is a security-first, open-source personal AI assistant built in Rust and designed to keep your data fully under your control. It operates on the principle that your AI should work for you, not external vendors, ensuring all data is stored locally, encrypted, and never shared. The platform emphasizes transparency, offering auditable code with no hidden telemetry or data harvesting. IronClaw runs untrusted tools inside isolated WebAssembly (WASM) sandboxes with strict capability-based permissions. It supports multiple interaction channels, including REPL, HTTP webhooks, Telegram, Slack, and a real-time web gateway. With dynamic tool building, persistent memory, and background automation, IronClaw is built to securely expand and adapt to your personal and professional workflows.
Features
- WASM Sandbox Security – Runs untrusted tools in isolated WebAssembly containers with capability-based permissions and strict resource limits.
- Prompt Injection Defense – Uses pattern detection, content sanitization, and policy enforcement to block malicious instructions.
- Local Encrypted Storage – Stores all data in PostgreSQL with AES-256-GCM encrypted secrets and no telemetry or analytics.
- Multi-Channel Access – Supports REPL, HTTP API, Telegram/Slack (WASM channels), Docker sandbox, and a browser-based web gateway.
- Dynamic Tool Building – Automatically generates new WASM tools based on user descriptions and supports MCP integrations.
- Persistent Hybrid Memory – Combines full-text and vector search with workspace files and identity files for contextual continuity.