ClawGuard

ClawGuard

Local AI that safely touches the world - with zero token exposure.

Your AI reasons on-device. When it needs to act, every request routes through Auth0 Token Vault. The model never sees a token.

DashboardChat
Local AIPreviewShieldToken VaultCIBAAPIAudit

Five fail-safes, every layer

Instant Revoke

Bulk revocation of all Token Vault tokens. Severs agent access in under 2 seconds.

Anomaly Shield

Rate limiting, suspicious hour detection, auto-CIBA step-up for high-risk actions.

Offline Queue

Requests queue locally during outages and replay through Token Vault on reconnect.

Permission Preview

Dry-run mode validates scopes and shows risk before any token exchange.

Live Audit Trail

Real-time SSE dashboard of every exchange, consent, and revocation.

CIBA Consent

High-risk actions require second-device approval. The agent can't bypass what it can't see.

Attack Simulator

Red team mode. Simulate token replay, scope escalation, rate limit breach.

Token Lifecycle

Visual token flow: creation, scoping, use, refresh, and revocation.

Next.js 16.2 / Auth0 AI SDK 6.0 / LangGraph 0.4 / Tailwind CSS 4

Auth0 "Authorized to Act" Hackathon - Ashutosh Jha