PocketClawAI security alerts
Sign in
roadmap

Where PocketClaw is going.

Today: an email-only watchdog on the OpenClaw ecosystem — agents, plugins, providers, hosts. Tomorrow: a mobile app covering the same universe with push notifications. No bullshit timelines — things ship when they ship.

today

What you get right now

  • Email-only · no app to install

    Alerts arrive in your inbox. No mobile app yet, no dashboard you have to monitor. PocketClaw runs in the background and only interrupts you when something matches your declared stack.

  • OpenClaw ecosystem coverage

    OpenClaw, Hermes Agent, Nanobot, NanoClaw, IronClaw, ZeroClaw, Moltworker — plus providers (OpenRouter, Anthropic, OpenAI), vector stores (Qdrant, Weaviate), and runtime hosts.

  • Curated, not raw

    We don't relay the NVD firehose. Every CVE is read, tagged with affected versions, and matched against your stack before it reaches you.

timeline

Public bets

Q2 2026shipped

Email alerts MVP

12 agents tracked, 13 CVEs annotated, NVD cron every 6h, fanout via SES. Pro membership live at €9/mo with 7-day trial.

Q2 2026shipped

StackScanner one-shot audit

Paste docker-compose / requirements / package.json and get a coloured report. €1.99 per scan, packs available.

Q3 2026in progress

Coverage expansion across the OpenClaw universe

Adding every adjacent we can find: Hermes Agent forks, Nanobot variants, NanoClaw, IronClaw, ZeroClaw, Moltworker, ClawHub plugin marketplace, supply-chain attacks like ClawHavoc — all under one alert feed.

Q3 2026in progress

Discord / Slack webhook payloads

Pro members can pipe alerts straight to a channel. Currently email-first; webhook delivery is being polished and tested under load.

Q4 2026next

iOS / Android app

PocketClaw becomes a mobile app. Same alerts, push notifications instead of email, stack management on the go. Email stays available — the app is additive, not replacing it.

Q4 2026next

Auto-detect from GitHub repo URL

Point the scanner at a public GitHub repo URL and we walk it for compose / lockfiles / Dockerfiles. No more manual paste.

Q1 2027planned

Hardware host coverage

Beyond the agents themselves: alerts on the hosts you self-host on. Pi 5 firmware CVEs, NUC vendor advisories, Hetzner platform notices.

Q1 2027planned

Annual security report

Full retrospective on the OpenClaw universe in 2026 — every CVE, every supply-chain incident, lessons for 2027.

influence what ships next

Pro members get a private feedback channel. Reply to any alert email and the response goes straight to the desk. We read everything and you can move items up the queue.

Start 7-day Pro trial →