IronClaw

NEAR AI

HybridReleased8.7k stars

Overview

Security-first AI agent runtime by NEAR AI, built in Rust and deployed inside encrypted Trusted Execution Environments (TEEs). Credentials live in an encrypted vault injected at the network boundary - the AI never sees raw values. Every tool runs in its own WebAssembly sandbox with no filesystem access. Announced at NEARCON 2026, it addresses OpenClaw's credential exposure risks by design.

Features

TEE encrypted execution environments

Credential vault with boundary injection

WASM sandbox for every tool execution

Real-time outbound traffic scanning

AES-256-GCM encrypted data at rest

Free Starter tier with hosted agent

Pros & Cons

Pros

Hardware-enforced security via TEE (not just software isolation)
Credentials never touch the LLM by design
Free tier available with managed hosting
Works with any OpenAI-compatible endpoint

Cons

TEE hosting requires NEAR AI Cloud infrastructure
Tied to NEAR/blockchain ecosystem branding
Smaller community than OpenClaw or ZeroClaw

You might also consider

CoPaw

Alibaba / AgentScope

Open-source personal AI assistant by Alibaba's AgentScope team, short for 'Co Personal Agent Workstation'. Emphasizes local-first operation with support for local models via Ollama/llama.cpp, while also offering cloud deployment through Alibaba Cloud. Supports DingTalk, Lark, QQ, Discord, iMessage, and ClawHub skills. Built on AgentScope framework with persistent long-term memory.

Quick Facts

Vendor: NEAR AI
Type: Hybrid
Status: Released
Pricing: Free Starter tier (1 agent instance). Flexible paid tiers for scaling. Self-hosted is free and open source.
GitHub Stars: 8,700

Visit Website View on GitHub Compare