NanoClaw

NanoClaw is a lightweight, open-source personal AI agent that runs on your own machine. It connects to messaging apps like WhatsApp, Telegram, Slack, Discord, Microsoft Teams, and more, runs every agent group inside an isolated Docker container, and routes credentials through OneCLI's Agent Vault so agents never hold raw API keys. Built on the Claude Agent SDK and designed for people who want to own and fully control their AI assistant.

OpenClaw is a monolithic framework with thousands of source files and dozens of dependencies. NanoClaw takes the opposite approach: ~15 source files, a single Node.js process, and real OS-level container isolation instead of application-level permission checks. If you want something you can fully audit, understand, and customize, NanoClaw is built for that.

Security is a core design principle. Each agent group runs inside an isolated Linux container with its own filesystem and process space, accessing only directories you explicitly mount. Credentials never enter the container — outbound API requests route through OneCLI's Agent Vault, which injects authentication at the proxy level and supports rate limits and per-agent policies. The codebase is small enough that you can realistically audit everything it does.

No. Run bash nanoclaw.sh and the installer handles dependencies, credentials, containers, and pairing your first channel. When something needs judgment, Claude Code takes over to diagnose and resume. If you want to customize behavior later, describe what you want in plain language and Claude Code modifies the codebase for you. Comfort with a terminal and git clone is expected.

NanoClaw itself is completely free and open source under the MIT license. However, it runs on the Claude Agent SDK, which requires a Claude API key or a Claude Code subscription. The cost depends on how much you use it. NanoClaw is designed to be lightweight in token usage, but the underlying AI usage is billed by Anthropic.

WhatsApp, Telegram, Discord, Slack, Microsoft Teams, iMessage, Matrix, Google Chat, Webex, Linear, GitHub, WeChat, and email via Resend. Channels are installed on demand with /add-<channel> skills, so you only carry the adapters you actually use. Run one or many at the same time, each wired to its own agent or sharing one — your choice per channel.

Docker is the default on macOS, Linux, and Windows (via WSL2). For additional isolation, Docker Sandboxes run each container inside a micro VM. On macOS you can optionally switch to Apple Container via /convert-to-apple-container for a lighter-weight native runtime.

Yes. Docker works on macOS, Linux, and Windows (via WSL2). The requirements are Node.js 20+, pnpm 10+, Docker, and Claude Code — the installer (bash nanoclaw.sh) will install Node, pnpm, and Docker for you if they're missing.

Clone the repo and run bash nanoclaw.sh. The script walks you from a fresh machine to a named agent you can message — installing dependencies, registering your Anthropic credential with OneCLI, building the agent container, and pairing your first channel. If a step fails, Claude Code is invoked automatically to diagnose and resume from where it broke. No manual configuration files. For ongoing changes, describe what you want and Claude Code modifies the codebase directly.

Most AI agent frameworks are designed for teams building products. They're large, complex, and require significant investment to understand. NanoClaw is designed for individuals who want a personal AI assistant that they fully own and control. It runs as a single Node.js process, uses real container isolation rather than application-level sandboxing, and is small enough to understand completely. It runs on the Claude Agent SDK, giving you direct access to Claude's capabilities without abstraction layers.

Yes. Nano Claw is fully open source under the MIT license. The entire codebase is available on GitHub, and contributions are welcome. The project encourages forking and customization. The philosophy is that your personal AI agent should be working software tailored to your exact needs, not a generic framework you configure.