io.github.IronSecCo/ironclawdev-tools

ironclaw

Verified · today

Sandboxed shell exec for MCP clients: run untrusted agent commands in a gVisor container.

Install

claude mcp add ironclaw -- docker run -i --rm ghcr.io/ironsecco/ironclaw-controlplane:v0.1.216

Our take

Sandboxed shell execution for agents: each command runs in an ephemeral gVisor container, and the project's supply-chain hygiene (cosign-signed releases, SLSA provenance, SBOMs, OpenSSF scorecard) is unusually serious for a month-old repo. The catch is right in the install string — the control plane needs your host Docker socket mounted, which is root-equivalent access to the machine; the vendor discloses this candidly in the registry args. Alpha software from a brand-new org with no community yet, so treat it as promising rather than proven.

reviewed by hand · 2026-07-06

Something wrong or dead here? Report it

Verification record

last verified
today
github stars
13
last commit
today
archived
no
license
AGPL-3.0
in registry since
2026-07-05

github.com/IronSecCo/ironclaw