OpenClaw LogoOpenClaw with ArmorIQ
Plugin

ArmorClaw Plugin

Security plugin for OpenClaw with intent verification and policy enforcement

ArmorClaw Plugin

ArmorClaw is a security plugin for OpenClaw that provides intent verification and policy enforcement for AI agents. It ensures every tool call is authorized, policies are enforced, and all actions are logged for compliance.

Key Features

Intent Verification

Cryptographic proof links every action to user intent, preventing unauthorized operations and ensuring accountability.

Policy Enforcement

Block sensitive operations based on customizable rules. Define what your agents can and cannot do with granular control.

Audit Trail

Complete logging of all agent actions for compliance. Track every decision, every tool call, and every policy check.

Real-time Monitoring

Each step is verified before execution. ArmorClaw intercepts tool calls at runtime to enforce policies in real-time.

How It Works

ArmorClaw integrates seamlessly with OpenClaw's plugin system using hooks:

  1. Before Agent Start: Initializes security context for each conversation
  2. Before Tool Call: Intercepts every tool invocation to:
    • Verify user authorization
    • Check policy compliance
    • Log the action
    • Block or allow execution

ArmorClaw runs as a plugin inside OpenClaw, requiring no changes to your agent code. Simply install and configure!

Architecture

User Intent → OpenClaw → ArmorClaw Plugin → Policy Check → Tool Execution

                         Audit Log

Every tool call flows through ArmorClaw for verification before execution, ensuring no unauthorized actions can occur.

Repository

GitHub: https://github.com/armoriq/armorclaw

npm Package: @armoriq/armorclaw

Installation

ArmorClaw is automatically installed when you use the one-command installer. See the Installation Guide for setup instructions. Installer support: macOS, Linux, and Windows (run from Git Bash or WSL on Windows).

Configuration

The plugin is configured through openclaw.json with the following key settings:

  • API Key: Your ArmorIQ platform API key
  • Endpoints: Production URLs for IAP, proxy, and customer API
  • Policy Rules: Customizable security policies
  • Logging: Audit trail configuration

For detailed configuration options, see the Configuration Guide.

Next Steps

Quick Start Guide

One-command installation - OpenClaw with ArmorClaw security in under 5 minutes

Overview

Configure OpenClaw with API keys and ArmorIQ credentials

On this page

ArmorClaw PluginKey FeaturesIntent VerificationPolicy EnforcementAudit TrailReal-time MonitoringHow It WorksArchitectureRepositoryInstallationConfigurationNext Steps