npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@reinhartsamuel/clawguard

v0.1.1

Published

Transparent API proxy and firewall for AI spending — budget caps, anomaly detection, loop prevention

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

reinhartsamuelreinhartsamuel

Keywords

Readme

ClawGuard

The API firewall that kills catastrophic cloud bills before they happen.

ClawGuard is a transparent proxy that sits between your AI agents and cloud providers (OpenAI, Anthropic, Google). It intercepts every request, enforces spending caps, detects anomalies, kills runaway loops, and alerts you in real-time — without changing a single line of your application code.

Origin: A 3-person startup received an $82K bill in 48 hours from a compromised Gemini API key. Google cited "Shared Responsibility" and refused to waive it. ClawGuard exists so that never happens to you.

What it does

  • Hard budget caps — hourly / daily / monthly spending limits per key and globally. Requests are blocked the moment a cap is exceeded.
  • Anomaly detection — EMA baseline + z-score spike detection. Warns at 3σ, blocks at 10σ. Adapts to your normal usage pattern automatically.
  • Loop detection — Content fingerprinting (djb2), heartbeat storm detection, and cost spiral detection. Stops runaway agents before they drain your account.
  • Per-key policies — Set independent budgets and anomaly thresholds for each API key, in addition to global caps.
  • Real-time alerts — Telegram notifications for budget warnings, anomaly spikes, loop detections, and key freezes.
  • Live dashboard — React dashboard with real-time WebSocket feed, spend charts, alert timeline, and key management.
  • Zero code changes — Just point OPENAI_BASE_URL at ClawGuard. Works with any OpenAI-compatible client.

Quick start

Option 1 — Install script (no Bun required):

curl -fsSL https://raw.githubusercontent.com/Reinhartsamuel/clawguard/main/install.sh | sh

Downloads a pre-compiled binary for your OS/arch. No runtime dependencies.

Option 2 — From source (requires Bun ≥ 1.0):

git clone https://github.com/Reinhartsamuel/clawguard
cd clawguard && bun install
bun run packages/cli/src/index.ts init

Then:

clawguard init    # generate .env config (if not done above)
clawguard start   # start proxy + dashboard

Your proxy is now running at http://localhost:4100.

Configure your AI client to route through ClawGuard:

# OpenAI SDK / any OpenAI-compatible client
export OPENAI_BASE_URL=http://localhost:4100

# Anthropic SDK (via OpenClaw or LiteLLM adapter)
export ANTHROPIC_BASE_URL=http://localhost:4100

# Claude Code
export ANTHROPIC_BASE_URL=http://localhost:4100

Your API keys stay exactly where they are — in your app's environment. ClawGuard sees them on each request, hashes them immediately, and never stores the raw key. The hash is used to track spend and apply per-key policies.

How it works

Your app → ClawGuard proxy → OpenAI / Anthropic / Google
              │
              ├─ Hash API key (raw key never stored)
              ├─ Check: is key frozen?
              ├─ Check: budget cap exceeded?
              ├─ Check: loop detected?
              ├─ Check: anomaly spike?
              │
              ├─ ALLOW → forward to provider, stream response
              ├─ WARN  → forward + fire Telegram alert
              └─ DENY  → return 429 immediately

Provider detection is automatic from the key prefix:

  • sk-ant-* → Anthropic
  • sk-* → OpenAI
  • AI* → Google Gemini

API keys — how they work

ClawGuard never stores your raw API keys. Here's the full picture:

| Where | What lives there | |-------|-----------------| | Your app's env (OPENAI_API_KEY, etc.) | The raw key — ClawGuard never touches this | | Request Authorization header | Raw key in transit — hashed on arrival, never logged | | ClawGuard SQLite DB | Key hash only — used to track spend and policies | | ClawGuard .env | Proxy config only (port, budget caps, Telegram token) |

When a request arrives, ClawGuard hashes the key, looks up any per-key policy by hash, and applies budget/anomaly/loop checks — all without ever persisting the raw key anywhere.

The dashboard's Register Key feature lets you pre-create a policy (with a human-readable label) for a key before it's ever used. You paste the raw key once into the registration form; the proxy hashes it server-side and discards the original. The hash is stored; the key is not.

Configuration

ClawGuard is configured entirely via environment variables (generated by clawguard init):

PORT=4100
CLAWGUARD_DB_PATH=data/clawguard.db

# Budget caps (USD) — leave blank to disable
CLAWGUARD_BUDGET_HOURLY=
CLAWGUARD_BUDGET_DAILY=10
CLAWGUARD_BUDGET_MONTHLY=100
CLAWGUARD_WARN_THRESHOLD=0.8        # Alert at 80% of cap

# Anomaly detection (standard deviations above baseline)
CLAWGUARD_ANOMALY_WARN_MULT=3       # Warn at 3σ
CLAWGUARD_ANOMALY_KILL_MULT=10      # Block at 10σ
CLAWGUARD_ANOMALY_MIN_SAMPLES=10    # Samples before detection activates

# Loop detection
CLAWGUARD_LOOP_ENABLED=true
CLAWGUARD_LOOP_DUP_THRESHOLD=5      # Same request 5× in window → block
CLAWGUARD_LOOP_DUP_WINDOW=300       # Window in seconds
CLAWGUARD_LOOP_SPIRAL_AMOUNT=2      # $2 in 5 minutes → block
CLAWGUARD_LOOP_HB_THRESHOLD=30      # 30 requests in 60s → block

# Telegram alerts
CLAWGUARD_TELEGRAM_BOT_TOKEN=
CLAWGUARD_TELEGRAM_CHAT_ID=

Dashboard

The web dashboard is included and starts automatically with clawguard start:

  • Overview — live spend charts, model mix, request log, alert feed
  • Keys — registered keys with spend, per-key policy editor, freeze/unfreeze
  • Alerts — full alert timeline with severity and type filters

Dashboard runs at http://localhost:5173 in development.

Management API

GET  /health                      # Health check
GET  /api/status                  # Global spend + all keys
GET  /api/keys                    # All keys with spend and policies
POST /api/keys/register           # Register a key (hash only — raw key never stored)
GET  /api/keys/:hash/policy       # Get per-key policy
PUT  /api/keys/:hash/policy       # Set/update per-key policy
DEL  /api/keys/:hash/policy       # Remove per-key policy
POST /api/freeze                  # Freeze a key
POST /api/unfreeze                # Unfreeze a key

CLI

clawguard init              # Generate .env config
clawguard start             # Start proxy + dashboard
clawguard start --no-dashboard   # Proxy only
clawguard status            # Print current spend
clawguard freeze --key <hash>    # Freeze a key

Architecture

packages/
├── proxy/          # Bun + Hono proxy (the core)
│   ├── router/     # Ingress (key detection, hashing) + egress (streaming, token counting)
│   ├── policy/     # Budget caps, anomaly detection, loop detection
│   ├── store/      # SQLite (bun:sqlite): requests, counters, baselines, frozen keys
│   ├── alert/      # Telegram dispatcher
│   ├── tokens/     # Token counting + LiteLLM-backed pricing (500+ models)
│   └── ws/         # In-process pub/sub for real-time dashboard feed
├── dashboard/      # React 19 + Tailwind + Recharts
└── cli/            # clawguard CLI

Storage: SQLite (WAL mode) — no external database required. Real-time: Native WebSocket via Bun.serve — no extra dependencies. Pricing: Live from LiteLLM's model pricing JSON, cached 24h locally, with hardcoded fallback.

Self-hosting vs managed cloud

ClawGuard is fully self-hostable — all you need is Bun and a machine. No external services required except Telegram (optional).

A managed cloud offering is in development. Join the waitlist →

Contributing

  1. Fork the repo
  2. Install dependencies: bun install
  3. Run tests: bun test
  4. Start dev server: bun run dev

All PRs welcome. Please keep TypeScript strict (no any), no classes, and run bun test before submitting.

License

MIT — see LICENSE.