Tools like OpenClaw let employees run AI agents directly on their machines — with file access, shell execution, web fetch, custom skills, etc.
That’s powerful.
But for enterprises, it creates a new problem:
• No visibility • No policy enforcement • No audit trail • No kill switch • No control
We built ClawForge, an open-source control plane for OpenClaw.
Think of it like MDM — but for AI assistants.
ClawForge gives organizations: • Org-wide tool allow/deny policies • Skill approval workflow • Audit logs for tool calls & sessions • Heartbeat monitoring • Emergency kill switch • SSO/OIDC auth
Architecture:
OpenClaw instance (employee machine) → ClawForge plugin → Control plane (API) → Admin console
Policies are enforced at the edge (client-side), not server-side blocking.
If the control plane is unreachable, it fails secure.
Repo: https://github.com/ClawForgeAI/clawforge
Would love feedback from folks working on AI agents, DevTools, or enterprise security.