HomeGet Started

Self-host your own governance control plane

Free to deploy. You own the data. Connect your first agent in under 10 minutes.

Download SkillConnect your first agent Open Source Repo
View live demoSDK docsCheck instance status

Cloud (recommended)

Vercel + Neon free tiers. Zero cost, accessible from any device, auto-HTTPS. Takes ~10 minutes.

Local

Docker + localhost. Good for development or if you want everything on your machine.

Verify

Confirm your deployment is healthy

Doctor diagnoses database, configuration, auth, deployment, SDK reachability, governance staleness, and shape drift, and auto-fixes safe issues. Run it as the first thing after your instance comes up.

Operator (on the host)

npm run doctor

Filesystem-level fixes. Can write missing env vars to .env (always backed up first), run pending DB migrations, generate NEXTAUTH_SECRET/ENCRYPTION_KEY, fix CORS, and seed a default policy.

npm run doctor
Anyone with an API key

dashclaw doctor

Same engine, invoked via GET /api/doctor + POST /api/doctor/fix. No filesystem access. Add --json for CI, --no-fix to diagnose only.

npm install -g @dashclaw/cli
dashclaw doctor

Exit codes: 0 healthy, 1 warnings, failures, or unreachable.

Approve from anywhere

Resolve pending actions without opening the dashboard

Every instance exposes four approval surfaces against the same /api/approvals/:id endpoint. Pick whichever your on-call workflow prefers. waitForApproval unblocks the agent within about a second regardless of which surface resolved the action.

Mobile PWA

/approve

Phone-first approval surface. Add to your home screen and incoming approvals appear with the triggering policy, risk score, and one-tap Allow / Deny.

https://<your-instance>/approve
Telegram bot (optional)

Inline Approve / Reject

Pending actions push to an admin chat with inline buttons. If Telegram is unreachable, DashClaw warn-logs and approvals stay available via the other surfaces; it is purely additive.

npm run telegram:setup

Dashboard (/approvals) and CLI (dashclaw approve) are always on. Mobile PWA ships by default; Telegram is opt-in via TELEGRAM_BOT_TOKEN.

What you just deployed

Your DashClaw instance ships with 259 governance API routes. Every feature works out of the box -- no LLM API key required.

Governance

  • Decision audit trail with full action traces
  • Behavior guard -- no-code policy enforcement
  • Human-in-the-loop approval gates
  • Prompt injection scanning

Quality & Evaluation

  • 5 scorer types (regex, keywords, range, custom, LLM judge)
  • Batch evaluation runs across outputs
  • Output quality tracking over time
  • Action-linked scoring for root-cause analysis

Scoring Profiles

  • User-defined weighted quality dimensions with custom scales
  • 3 composite methods (weighted avg, minimum, geometric mean)
  • Risk templates replace hardcoded agent risk numbers
  • Auto-calibration from real data (percentile analysis)

Prompt Management

  • Version-controlled prompt templates
  • Mustache variable rendering (server-side, no LLM)
  • One-click rollback to any version
  • Usage analytics per template

Observability

  • Real-time SSE event stream
  • Token usage and cost tracking
  • Risk signal monitoring (7 signal types)
  • Behavioral drift detection with z-score alerts

Compliance & Audit

  • GDPR, SOC 2, NIST AI RMF, ISO 27001, IMDA Agentic mapping
  • One-click compliance export bundles
  • Evidence packaging (guard decisions + action records)
  • Scheduled recurring exports on cron

Learning & Feedback

  • Learning velocity -- rate of agent improvement
  • 6-level agent maturity model (Novice to Master)
  • Per-skill learning curves
  • User feedback with auto-sentiment and auto-tagging

Agent Operations

  • Session handoffs with context preservation
  • Inter-agent messaging and broadcasts
  • Task routing with agent health monitoring
  • Memory health scanning and stale fact detection

Security

  • Verified agent identity (RSA signatures)
  • Automatic secret redaction
  • Assumption tracking and drift reports
  • Content scanning for sensitive data

Platform

  • Multi-tenant org isolation
  • HMAC-signed webhooks
  • Full activity audit log
  • Docker + Vercel + any Node.js host

All features are free, self-hosted, and work without any external AI provider. The only optional LLM feature is the llm_judge scorer type in the Evaluation Framework.

DashClaw Platform Skill

Skills are an open standard for giving agents specialized capabilities. Any agent that supports the skill framework can load this skill and become a DashClaw platform expert -- with searchable knowledge of every route, env var, and schema field in your instance.

Works with Claude Code, and the growing ecosystem of skill-compatible agents.

What it does

  • Instruments any agent with DashClaw SDKs (Node.js or Python)
  • Designs guard policies for cost ceilings, risk thresholds, and action allowlists
  • Configures evaluation scorers to track output quality (5 built-in types)
  • Sets up prompt template registries with version control and rollback
  • Generates compliance export bundles for GDPR, SOC 2, NIST AI RMF, ISO 27001, IMDA Agentic
  • Configures behavioral drift detection with statistical baselines
  • Sets up learning analytics to track agent velocity and maturity
  • Troubleshoots 401, 403, 429, and 503 errors with guided diagnostics

What's inside

dashclaw-platform-intelligence/
├── SKILL.md                          # Auto-generated shape snapshot
├── scripts/
│   ├── validate-integration.mjs      # End-to-end connectivity test
│   ├── diagnose.mjs                  # Diagnostic info collector
│   └── bootstrap-agent-quick.mjs     # Agent workspace importer
└── references/
    ├── api-surface.md                # Curated route catalog by domain
    ├── platform-knowledge.md         # Architecture, auth chain, ID prefixes
    └── troubleshooting.md            # 401/403/429/503 resolution guide

SKILL.md is regenerated from the live shape, so the agent always has the current API surface. When the snapshot might be stale, the skill instructs the agent to run a live query (python -m livingcode query routes, env, tables) against your instance and trust that result.

Setup

  1. Download and extract the zip into your project's skills directory (e.g. .claude/skills/ for Claude Code)
  2. Point your agent at the skill directory -- it activates automatically
  3. Ask your agent anything DashClaw-related and it routes to the right workflow
Download Skill
Alternative: Local Setup

Run locally with Docker

The installer generates secrets, writes .env.local, installs dependencies, and prints the API key your agents should use.

Windows (PowerShell)
./install-windows.bat
Mac / Linux (bash)
bash ./install-mac.sh

When it finishes, open http://localhost:3000.

6

Optional: enable verified agents

For cryptographic identity binding, set ENFORCE_AGENT_SIGNATURES=true on the dashboard host. The Python SDK's create_pairing_from_private_jwk() helper generates a keypair and registers the public key via POST /api/pairings; an admin then approves the pairing in the dashboard before the agent's signed actions are accepted.

Connect your agent framework

Step-by-step guides for popular agent frameworks. Each takes under 20 minutes.

Claude Code

Hook-based governance

Codex

dashclaw install codex

Hermes Agent

8 lifecycle hooks + live ingest

OpenAI Agents SDK

Node.js SDK integration

LangGraph

Python governance node

CrewAI

@tool decorator pattern

OpenClaw

Framework-native plugin