alphaclaw

Name: alphaclaw
Author: chrysb

by chrysb

Warning

The ultimate setup harness for OpenClaw. Deploy in minutes. Stay running for months. No CLI required.

1,386stars

202forks

JavaScript

Added 3/9/2026

View on GitHub Download ZIP Scan for vulnerabilities

AI Agentsai-agentgatewaynodejsopenclawsetup-ui

Installation

# Add to your Claude Code skills
git clone https://github.com/chrysb/alphaclaw

Getting Started

Guides for using ai agents skills like alphaclaw.

Caveman: Cut Claude Token Use by 65%
How agent-side prompt compression works, when to use it, and when not to.
What is an AI Skills Marketplace?
Definitions, how marketplaces work, and how to choose between them in 2026.
Getting Started with AI Skills

Security ReportWarning

Last scanned: 4/29/2026

{
  "issues": [
    {
      "type": "npm-audit",
      "message": "basic-ftp: basic-ftp vulnerable to denial of service via unbounded memory consumption in Client.list()",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "follow-redirects: follow-redirects leaks Custom Authentication Headers to Cross-Domain Redirect Targets",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "path-to-regexp: path-to-regexp vulnerable to Regular Expression Denial of Service via multiple route parameters",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "picomatch: Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching",
      "severity": "high"
    },
    {
      "type": "npm-audit",
      "message": "postcss: PostCSS has XSS via Unescaped </style> in its CSS Stringify Output",
      "severity": "medium"
    },
    {
      "type": "npm-audit",
      "message": "vite: Vite Vulnerable to Path Traversal in Optimized Deps `.map` Handling",
      "severity": "high"
    }
  ],
  "status": "WARNING",
  "scannedAt": "2026-04-29T06:25:56.569Z",
  "semgrepRan": false,
  "npmAuditRan": true,
  "pipAuditRan": true
}

README.md

Agentic AI for Beginners

Build your first AI agent from scratch - tool use, ReAct pattern, memory, deployment

41 minBeginner

Comments (0)

to leave a comment.

No comments yet. Be the first to share your thoughts!

Related Skills

ECC

by affaan-m

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

212,953

paper2code cc-safety-net

Platform: AlphaClaw currently targets Docker/Linux deployments. macOS local development is not yet supported.

Features

Setup UI: Password-protected web dashboard for onboarding, configuration, and day-to-day management.
Guided Onboarding: Step-by-step setup wizard — model selection, provider credentials, GitHub repo, channel pairing.
Multi-Agent Management: Sidebar-driven agent navigation with create, rename, and delete flows. Per-agent overview cards, channel bindings, and URL-driven agent selection.
Gateway Manager: Spawns, monitors, restarts, and proxies the OpenClaw gateway as a managed child process.
Watchdog: Crash detection, crash-loop recovery, auto-repair (openclaw doctor --fix), Telegram/Discord/Slack notifications, and a live interactive terminal for monitoring gateway output directly from the browser.
Channel Orchestration: Telegram, Discord, and Slack bot pairing with per-agent channel bindings, credential sync, and a guided wizard for splitting Telegram into multi-threaded topic groups as your usage grows.
Google Workspace: OAuth integration for Gmail, Calendar, Drive, Docs, Sheets, Tasks, Contacts, and Meet, plus guided Gmail watch setup with Google Pub/Sub topic, subscription, and push endpoint handling.
Cron Jobs: Dedicated cron tab with job management, an interactive rolling calendar, run-history drilldowns, trend analytics, and per-run usage breakdowns.
Nodes: Guided local-node setup for VPS deployments with per-node browser attach checks, reconnect commands, and routing/pairing controls.
Webhooks: Named webhook endpoints with per-hook transform modules, request logging, payload inspection, editable delivery destinations, and OAuth callback support for third-party auth flows.
File Explorer: Browser-based workspace explorer with file visibility, inline edits, diff view, and Git-aware sync for quick fixes without SSH.
Prompt Hardening: Ships anti-drift bootstrap prompts (AGENTS.md, TOOLS.md) injected into your agent's system prompt on every message — enforcing safe practices, commit discipline, and change summaries out of the box.
Git Sync: Automatic hourly commits of your OpenClaw workspace to GitHub with configurable cron schedule. Combined with prompt hardening, every agent action is version-controlled and auditable.
Version Management: In-place updates for both AlphaClaw and OpenClaw with in-app release notes, changelog review, and one-click apply.
Codex OAuth: Built-in PKCE flow for OpenAI Codex CLI model access.

Why AlphaClaw

Zero to production in one deploy: Railway/Render templates ship a complete stack — no manual gateway setup.
Self-healing: Watchdog detects crashes, enters repair mode, relaunches the gateway, and notifies you.
Everything in the browser: No SSH, no config files to hand-edit, no CLI required after first deploy.
Stays out of the way: AlphaClaw manages infrastructure; OpenClaw handles the AI.

No Lock-in. Eject Anytime.

AlphaClaw simply wraps OpenClaw, it's not a dependency. Remove AlphaClaw and your agent keeps running. Nothing proprietary, nothing to migrate.

Quick Start

Deploy (recommended)

Set SETUP_PASSWORD at deploy time and visit your deployment URL. The welcome wizard handles the rest.

Railway users: after deploying, upgrade to the Hobby plan and redeploy to ensure your service has at least 8 GB of RAM. The Trial plan's memory limit can cause out-of-memory crashes during normal operation.

Local / Docker

npm install @chrysb/alphaclaw
npx alphaclaw start

Or with Docker:

FROM node:22-slim
RUN apt-get update && apt-get install -y git curl procps cron tini && rm -rf /var/lib/apt/lists/*
WORKDIR /app
COPY package.json ./
RUN npm install --omit=dev
ENV PATH="/app/node_modules/.bin:$PATH"
ENV ALPHACLAW_ROOT_DIR=/data
EXPOSE 3000
ENTRYPOINT ["/usr/bin/tini", "--"]
CMD ["alphaclaw", "start"]

Setup UI

Tab	What it manages
General	Gateway status, channel health, pending pairings, Google Workspace, repo sync schedule, OpenClaw dashboard
Browse	File explorer for workspace visibility, inline edits, diff review, and Git-backed sync
Usage	Token summaries, per-session and per-agent cost and token breakdown with source/agent dimension comparisons
Cron	Cron job management, interactive rolling calendar, run-history drilldowns, trend analytics, and per-run usage breakdowns
Nodes	Guided local-node setup for VPS deployments, per-node browser attach, reconnect commands, and routing/pairing controls
Watchdog	Health monitoring, crash-loop status, auto-repair toggle, notifications, event log, live log tail, interactive terminal
Providers	AI provider credentials (Anthropic, OpenAI, Gemini, Mistral, Voyage, Groq, Deepgram) and model selection
Envars	Environment variables — view, edit, add — with gateway restart prompts
Webhooks	Webhook endpoints, transform modules, request history, payload inspection, OAuth callbacks, Gmail watch delivery flows

CLI

Command	Description
`alphaclaw start`	Start the server (Setup UI + gateway manager)
`alphaclaw git-sync -m "message"`	Commit and push the OpenClaw workspace
`alphaclaw telegram topic add --thread <id> --name <text>`	Register a Telegram topic mapping
`alphaclaw version`	Print version
`alphaclaw help`	Show help

Architecture

graph TD
    subgraph AlphaClaw
        UI["Setup UI<br/><small>Preact + htm + Wouter</small>"]
        WD["Watchdog<br/><small>Crash recovery · Notifications</small>"]
        WH["Webhooks<br/><small>Transforms · Request logging</small>"]
        UI --> API
        WD --> API
        WH --> API
        API["Express Server<br/><small>JSON APIs · Auth · Proxy</small>"]
    end

    API -- "proxy" --> GW["OpenClaw Gateway<br/><small>Child process · 127.0.0.1:18789</small>"]
    GW --> DATA["ALPHACLAW_ROOT_DIR<br/><small>.openclaw/ · .env · logs · SQLite</small>"]

Watchdog

The built-in watchdog monitors gateway health and recovers from failures automatically.

Capability	Details
Health checks	Periodic `openclaw health` with configurable interval
Crash detection	Listens for gateway exit events
Crash-loop detection	Threshold-based (default: 3 crashes in 300s)