ironclaw
Verified · todaySandboxed shell exec for MCP clients: run untrusted agent commands in a gVisor container.
Install
claude mcp add ironclaw -- docker run -i --rm ghcr.io/ironsecco/ironclaw-controlplane:v0.1.216
Our take
Sandboxed shell execution for agents: each command runs in an ephemeral gVisor container, and the project's supply-chain hygiene (cosign-signed releases, SLSA provenance, SBOMs, OpenSSF scorecard) is unusually serious for a month-old repo. The catch is right in the install string — the control plane needs your host Docker socket mounted, which is root-equivalent access to the machine; the vendor discloses this candidly in the registry args. Alpha software from a brand-new org with no community yet, so treat it as promising rather than proven.
Verification record
- today
- 13
- today
- no
- AGPL-3.0
- 2026-07-05