npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

leanclaw

v0.1.0-alpha.1

Published

High-efficiency, security-first AI assistant runtime built for fast local execution, low resource usage, and reliable automation.

Downloads

100

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

scottglscottgl

Keywords

openclawai-assistantllmlocal-aiautomationgatewayagenttypescript

Readme

LeanClaw

High-efficiency, security-first AI assistant runtime built for fast local execution, low resource usage, and reliable automation through constrained tool access.

LeanClaw combines NanoClaw's container isolation and auditable codebase with OpenClaw's gateway protocol and plugin architecture — in ~3,500 lines of TypeScript.

Features

  • OpenClaw Gateway Compatible — Protocol v3 WebSocket + HTTP gateway on ws://127.0.0.1:18789
  • Plugin Architecture — Supports openclaw.plugin.json and leanclaw.plugin.json manifests (no bundled plugins)
  • Multi-LLM Providers — Anthropic Claude and GitHub Copilot with API key or OAuth authentication
  • Docker Container Isolation — Each agent runs in an ephemeral Docker container with isolated filesystem
  • Mount Security — Allowlist at ~/.config/leanclaw/mount-allowlist.json, blocked credential patterns (.ssh, .aws, etc.)
  • Pre-run Script Hooks — Validate whether a run should proceed (exit 0=continue, 10=skip, other=fail)
  • Heartbeat-Cron Collision Avoidance — Skip heartbeats when cron jobs are executing
  • Token Budget Management — Daily/monthly limits per group with warn at 80%, block at 100%
  • Enterprise Ready — Audit logging, RBAC hooks, per-sender/per-group rate limiting, health endpoints
  • Structured Logging — pino with JSON mode for enterprise pipelines (LOG_FORMAT=json)

Quick Start

# Install dependencies
npm install

# Configure (copy and edit .env)
cp .env.example .env

# Build
npm run build

# Run
npm start

# Development (hot reload)
npm run dev

Configuration

All settings can be configured via:

  1. Environment variables (LEANCLAW_* prefix)
  2. .env file in the project root
  3. Defaults in src/config.ts

| Variable | Default | Description | |----------|---------|-------------| | LEANCLAW_GATEWAY_PORT | 18789 | Gateway WebSocket/HTTP port | | LEANCLAW_GATEWAY_HOST | 127.0.0.1 | Gateway bind address | | LEANCLAW_GATEWAY_API_KEY | (none) | API key for gateway auth (open if unset) | | LEANCLAW_ANTHROPIC_API_KEY | (none) | Anthropic Claude API key | | LEANCLAW_GITHUB_TOKEN | (none) | GitHub Copilot token | | LEANCLAW_DEFAULT_PROVIDER | anthropic | Default LLM provider (anthropic or copilot) | | LEANCLAW_CONTAINER_IMAGE | leanclaw-agent:latest | Docker image for agent containers | | LEANCLAW_MAX_CONCURRENT_CONTAINERS | 5 | Maximum concurrent agent containers | | LEANCLAW_CONTAINER_TIMEOUT | 1800000 | Container hard timeout (ms) | | LEANCLAW_IDLE_TIMEOUT | 1800000 | Container idle timeout (ms) | | LEANCLAW_HEARTBEAT_INTERVAL | 60000 | Heartbeat interval (ms) | | LEANCLAW_HEARTBEAT_SKIP_WHEN_BUSY | true | Skip heartbeats when cron is active | | LOG_LEVEL | info | Log level (trace/debug/info/warn/error/fatal) | | LOG_FORMAT | pretty | Log format (pretty or json) |

Gateway API

HTTP Endpoints

| Endpoint | Description | |----------|-------------| | GET /health | Liveness probe — always 200 if running | | GET /ready | Readiness probe — 200 if DB, channels, Docker OK | | GET /metrics | JSON metrics (containers, memory, uptime, tokens) |

WebSocket Protocol

Connect to ws://host:port/ and follow the OpenClaw Protocol v3 handshake:

  1. Server sends connect.challenge event with nonce
  2. Client sends connect request with protocol version and client info
  3. Server responds with hello-ok containing features and policy

Available methods after authentication: health, sessions.list, config.get, channels.status, cron.list, groups.list, providers.list, plus any methods registered by plugins.

Plugins

Plugins live in external directories — none are bundled with LeanClaw.

Create a plugin by placing an openclaw.plugin.json or leanclaw.plugin.json manifest in a directory:

{
  "id": "my-plugin",
  "name": "My Plugin",
  "version": "1.0.0",
  "main": "index.js",
  "channels": ["my-channel"],
  "skills": ["skills/"]
}

Set LEANCLAW_PLUGIN_DIR to the parent directory containing your plugins.

Security Model

  • Container isolation: Agents run in Docker containers with no direct host access
  • Mount allowlist: Only explicitly allowed directories can be mounted (~/.config/leanclaw/mount-allowlist.json)
  • Credential injection: API keys injected via env vars at container spawn time, never written to disk
  • .env shadowing: .env file overlaid with /dev/null in containers
  • Blocked patterns: .ssh, .gnupg, .aws, .azure, .kube, .docker, credentials, private_key, etc.
  • Sender allowlist: Per-chat access control (~/.config/leanclaw/sender-allowlist.json)
  • Rate limiting: Per-IP, per-sender, and per-group sliding window limits
  • RBAC hooks: Pluggable role-based access control (admin/user/viewer)
  • Audit logging: All access, config changes, and container lifecycle events logged to SQLite

Project Structure

src/
├── index.ts              # Entry point (library re-exports)
├── cli.ts                # CLI (start/config/version/help)
├── runtime.ts            # Core lifecycle
├── router.ts             # Message formatting and routing
├── ipc.ts                # IPC watcher (agent-to-host)
├── types.ts              # Shared type definitions
├── config.ts             # Configuration with env var overrides
├── logger.ts             # Structured logging (pino)
├── db.ts                 # SQLite persistence
├── gateway/
│   ├── server.ts         # WebSocket + HTTP gateway
│   ├── protocol.ts       # Protocol v3 types and schemas
│   ├── auth.ts           # Auth, rate limiting, RBAC
│   └── health.ts         # Health endpoints
├── plugins/
│   ├── loader.ts         # Plugin discovery and loading
│   ├── registry.ts       # Plugin registry
│   └── sdk.ts            # Plugin SDK exports
├── providers/
│   ├── base.ts           # Provider interface and registry
│   ├── anthropic.ts      # Anthropic Claude provider
│   ├── copilot.ts        # GitHub Copilot provider
│   └── token-counter.ts  # Token budget management
├── agent/
│   ├── container.ts      # Docker container runner
│   ├── session.ts        # Session management
│   └── scheduler.ts      # Cron + heartbeat scheduler
├── security/
│   ├── mount-security.ts # Mount allowlist validation
│   ├── sender-allowlist.ts # Sender access control
│   └── audit.ts          # Audit logging
├── channels/
│   ├── interface.ts      # Channel abstraction types
│   └── registry.ts       # Channel registry
├── queue/
│   ├── group-queue.ts    # Per-group message queue
│   └── collision.ts      # Heartbeat-cron collision avoidance
└── hooks/
    └── pre-run.ts        # Pre-run script hooks

Development

npm run dev          # Run with hot reload
npm run build        # Compile TypeScript
npm test             # Run tests (186 tests)
npm run test:watch   # Watch mode
npm run typecheck    # Type check without emitting
npm run lint         # Lint
npm run format       # Format code

License

Apache-2.0