OpenClaw is an open-source personal AI assistant that runs on your own hardware and connects to messaging apps like WhatsApp, Telegram, and Discord. Created by Peter Steinberger (@steipete) for Molty (a space lobster AI assistant), it executes actions rather than just conversations—reading files, managing calendars, monitoring GitHub repos, and executing system commands. The system uses a Gateway-centric architecture with persistent memory powered by SQLite with hybrid search capabilities.
GitHub: 332k+ stars, 64.7k+ forks, 1,279 contributors | License: MIT
- Self-hosted execution on your own infrastructure
- Multi-platform messaging integration (WhatsApp, Telegram, Discord, Slack, Signal, iMessage)
- Local file access and system command execution
- Persistent memory with SQLite hybrid search (no external database required)
- Multi-model support (Claude, GPT-4, or local models via Ollama)
- Proactive responses and event monitoring
- Plugin and skill ecosystem for extensibility
- 28+ model providers and 28+ messaging platform integrations
- Developer automation (monitor GitHub repos, trigger deployments, check logs)
- Personal assistance (calendar management, email triage, reminders)
- CI/CD integration (monitor builds, view logs, trigger actions)
- System administration (execute commands, manage files, automate tasks)
- Privacy-sensitive operations (handle confidential data without cloud exposure)
- Languages: TypeScript 88.6%, Swift 7.0%, Kotlin 1.6%, Shell 1.1%, JavaScript 0.9%, CSS 0.5%, Other 0.3%
- Gateway: Node.js 24+ recommended (Node.js 22 LTS 22.16+ still supported)
- Database: SQLite with hybrid search (vector + keyword)
- Libraries: Baileys (WhatsApp), grammY (Telegram), TypeBox (schema validation)
- Docker: Container support with sandboxing capabilities
OpenClaw uses a Gateway-centric architecture:
- Gateway daemon (port 18789) - Single source of truth for sessions, routing, channels
- WebSocket-first protocol - All communication via WebSocket with JSON frames
- Device-based pairing - Cryptographic challenges for new device approval
- Session-based routing - Isolated conversations per channel/peer
- SQLite with hybrid search - Persistent memory with vector + keyword search (no external database)
- Open-source and self-hosted
- Security warning: Default pairing mode for DMs (
dmPolicy="pairing") - unknown senders require approval
- Critical: Never expose port 18789 to public internet
- Use a reverse proxy with authentication for remote access
- Run
openclaw doctor to check configuration and surface risky/misconfigured DM policies
- Requires technical expertise for setup and management
- Designed for users who want maximum control and privacy
- Sandbox mode available for group/channel safety (
agents.defaults.sandbox.mode: "all")
- Latest Release: v2026.3.22 (March 23, 2026) - 70+ total releases
- ⚠️ Security Advisories:
- CVE-2026-28472 (CVSS 9.8 Critical): WebSocket authentication bypass. Versions < 2026.2.2 affected. Upgrade to 2026.2.2 or higher immediately.
- CVE-2026-25253 (CVSS 9.0+ Critical): Auth token theft leading to RCE. Early versions affected. Upgrade to latest version.
- Recent Fixes (v2026.3.22): Exec sandbox hardening, exec approvals, webhook auth, device pairing
¶ History and References
Any questions?
Feel free to contact us. Find all contact information on our contact page.