Everything you need to install, configure, and run ZeroClaw — the Rust agent runtime for a personal AI assistant you fully own: providers, channels, tools, security policy, gateway, and SOP engine.
Official: zeroclawlabs.ai · Docs: docs.zeroclawlabs.ai · Source: github.com/zeroclaw-labs/zeroclaw
What you’ll have at the end
- ZeroClaw installed (prebuilt or from source)
- ~/.zeroclaw/config.toml with provider, agent, risk profile, and one channel
- CLI chat via zeroclaw agent -a main
- Telegram or Discord (or CLI-only) on the same agent loop
- Understanding of supervised autonomy, tool receipts, and optional YOLO dev mode
- Optional gateway dashboard and systemd/launchctl always-on service
Introduction — you own the agent, the data, the machine
ZeroClaw is an agent runtime shipped as a single Rust binary. It connects to LLM providers (Anthropic, OpenAI, Ollama, and ~20 more), delivers messages across 30+ channels (Discord, Telegram, Matrix, email, webhooks, voice, CLI), and executes tools — shell, browser, HTTP, hardware, and custom MCP servers.
Everything runs on your hardware with your keys. Default posture is security-first : supervised autonomy, workspace boundaries, OS sandboxes, and cryptographic tool receipts on every action.
The project crossed 32k GitHub stars with a 100% Rust codebase — fast cold start, small binaries (minimal preset ~6.6 MB), and feature flags for embedded or server deployments.
ZeroClaw runtime stack — channels to tools
Official repo only: github.com/zeroclaw-labs/zeroclaw — beware impersonation forks.
Part 1 — Architecture
Layers:
- Channels — inbound/outbound adapters per platform
- Gateway — HTTP/WebSocket API + web dashboard
- Agent loop — ReAct-style tool use with routing and fallbacks
- Security — autonomy levels, sandboxes, command policy, receipts
- SOP engine — event-triggered procedures (cron, MQTT, webhook)
- Providers / Tools / Memory — pluggable backends
Full diagrams: Architecture overview (upstream book).
Part 2 — Four design opinions (philosophy)
ZeroClaw documents four opinions that shape every config decision:
- You own the stack — no mandatory cloud; keys stay local
- Security defaults beat YOLO defaults — supervised mode first
- Swap anything — providers, channels, tools via TOML aliases
- One runtime, many surfaces — CLI, gateway, ACP, channels share the loop
Read upstream Philosophy for the full essay.
Part 3 — Prerequisites
- macOS, Linux, Windows, FreeBSD, NixOS , or Docker
- No Rust required for prebuilt install (source build needs Rust toolchain)
- API key or local Ollama endpoint
- For Telegram/Discord: bot token from platform developer portal
zeroclaw --version # after install
Part 4 — Install
One-liner
curl -fsSL https://raw.githubusercontent.com/zeroclaw-labs/zeroclaw/master/install.sh | bash
The installer asks: prebuilt (seconds) or source (custom features). Both run zeroclaw quickstart at the end unless --skip-quickstart.
Useful flags
./install.sh --prebuilt # skip prompt
./install.sh --source --preset minimal # ~6.6 MB kernel preset
./install.sh --with-gateway # force gateway support
./install.sh --dry-run --prebuilt # preview only
./install.sh --uninstall # remove
Platform notes: Linux · macOS · Windows · Docker — in upstream setup docs.
Part 5 — Quickstart and config.toml
zeroclaw quickstart # wizard: provider, model, write config
zeroclaw agent -a main # interactive CLI chat
Config lives at ~/.zeroclaw/config.toml.
A minimal V3 config needs four section shapes:
- [providers.models..] — model endpoint
- [agents.] — agent personality + provider reference
- [risk.] — autonomy and approval gates
- [channels..] — optional messaging surface
See examples/config.minimal.toml for a copy-ready starter.
# ZeroClaw minimal config — copy to ~/.zeroclaw/config.toml
# Run: zeroclaw quickstart (overwrites) or merge sections manually
[providers.models.ollama.local]
type = "ollama"
base_url = "http://127.0.0.1:11434"
model = "llama3.2"
[risk.supervised]
autonomy = "supervised"
approve_medium_risk = true
block_high_risk = true
[agents.main]
model_provider = "ollama.local"
risk_profile = "supervised"
system_prompt = "You are a helpful personal assistant. Be concise and safe."
Part 6 — Providers
ZeroClaw is provider-agnostic. Universal schema:
[providers.models.ollama.local]
type = "ollama"
base_url = "http://127.0.0.1:11434"
model = "llama3.2"
[agents.main]
model_provider = "ollama.local"
system_prompt_file = "~/.zeroclaw/agents/main.md"
Fallback chains keep the agent alive when a provider flakes — configure routing in upstream providers/routing.
OpenAI Codex subscription uses auth profiles (not raw api_key on the provider entry):
[providers.models.openai.coding]
model = "gpt-5-codex"
wire_api = "responses"
requires_openai_auth = true
Point agent: model_provider = "openai.coding". Check zeroclaw auth status If streaming falls back to non-streaming chat.
Part 7 — Agents and risk profiles¶
Each [agents.] entry defines one agent personality:
- System prompt (inline or file)
- Model provider reference
- Tool allow-list
- Linked risk profile
Risk profiles gate autonomy:
Part 8 — Channels
One agent loop, many inboxes. Configure per-channel blocks:
[channels.telegram.main]
bot_token_env = "TELEGRAM_BOT_TOKEN"
allowed_users = [123456789]
agent = "main"
Supported families include Discord, Telegram, Matrix, email, webhooks, voice , and more — see channels overview.
Test flow:
- Create bot (e.g. Telegram @botfather)
- Add channel block to config
- Export token env var
- zeroclaw service restart
- Message bot → same agent as CLI
Telegram channel setup — animated
Example: examples/channel.telegram.toml
# Telegram channel block — merge into ~/.zeroclaw/config.toml
[channels.telegram.main]
bot_token_env = "TELEGRAM_BOT_TOKEN"
allowed_users = [123456789] # your numeric user ID from @userinfobot
agent = "main"
dm_only = true
# Export before starting service:
# export TELEGRAM_BOT_TOKEN="..."
# zeroclaw service restart
Part 9 — Security deep dive
ZeroClaw’s security model is harness engineering done in Rust:
- Workspace boundaries — the agent cannot escape the configured roots
- Command policy — allow/deny shell patterns
- OS sandboxes — Landlock, Bubblewrap, Seatbelt, Docker, depending on platform
- Tool receipts — cryptographic record of each tool invocation
- Autonomy gates — human approval for medium/high risk
Default is supervised. Use YOLO only on isolated dev machines.
Cross-read: Harness Engineering verification + scope subsystems.
Part 10 — Tools
Built-in tool families:
- Shell — scripted automation with policy checks
- Browser — fetch, interact, verify UI work
- HTTP — API calls
- Hardware — GPIO/I2C/SPI on Pi, STM32, Arduino, ESP32 (Hardware docs)
- MCP — attach custom MCP servers like any modern harness
Tools connect through the agent loop; receipts log every action for audit.
Part 11 — Memory
ZeroClaw persists memory in SQLite with optional embeddings — searchable across sessions. The gateway dashboard exposes memory browsing and editing.
Unlike Hermes’s three-tier Markdown snapshot model (Hermes masterclass Part 6), ZeroClaw centralizes memory in the runtime database with dashboard UX.
Enhance ZeroClaw’s long-term memory using Chroma Vector Database for semantic search and embedding-based retrieval.
Techlatest.net - Chroma: Vector DB for AI Development
Build Retrieval-Augmented AI assistants by pairing ZeroClaw with RAGFlow to search documentation, PDFs, internal knowledge bases, and APIs.
Techlatest.net - Instant RAGFlow: Ready-to-Use AI Knowledge Retrieval Engine
Part 12 — Gateway and dashboard
Enable gateway at install (--with-gateway) or in config. Provides:
- HTTP / WebSocket API for clients
- Web dashboard — chat, config editor, cron, tool inspection, memory browser
Useful for headless servers: run ZeroClaw on a VPS, chat from a browser or phone channel.
Part 13 — SOP engine
Standard Operating Procedures — event-triggered workflows:
- Triggers: cron , MQTT , webhook , peripheral events
- Approval gates before destructive steps
- Resumable runs if interrupted
Example snippet: examples/sop.example.toml
# SOP example — event-triggered workflow (merge into config)
[sop.daily_digest]
trigger = "cron"
schedule = "0 8 * * 1-5"
agent = "main"
prompt = "Summarize overnight email and calendar for the user."
require_approval = false
[sop.deploy_webhook]
trigger = "webhook"
path = "/hooks/deploy"
agent = "main"
require_approval = true
Think of SOPs as a deterministic backbone + agent intelligence where it matters — similar to CrewAI Flows or OpenClaw cron, but native to the runtime.
Looking to orchestrate multiple AI agents?
Explore CrewAI Studio on TechLatest to build collaborative workflows and production-ready multi-agent systems.
Techlatest.net - AI Agents using CrewAI Studio & Jupyter with GPU support
Dify can expose ZeroClaw-powered workflows through APIs and visual AI applications.
Techlatest.net - Dify AI: Build & Launch GenAI Apps
Part 14 — ACP (Agent Client Protocol)
ZeroClaw speaks ACP — JSON-RPC 2.0 over stdio — for IDE and editor integration. Your editor becomes a channel into the same agent loop as Telegram.
Docs: channels/acp
Parallels OpenCode’s IDE extension (OpenCode masterclass Part 14) — different protocol, same idea: harness follows the developer.
Part 15 — Always-on service
Register as an OS service:
zeroclaw service install # systemd · launchctl · Windows Service
zeroclaw service start
zeroclaw service status
Now channels stay connected while you close the laptop terminal — the runtime keeps running.
Part 16 — Hardware and edge
ZeroClaw targets edge and embedded seriously — Raspberry Pi agents with GPIO, firmware crates, and minimal preset builds. Skip this part if you only need desktop assistant workflows.
Entry: upstream Hardware index.
Part 17 — ZeroClaw vs OpenClaw vs OpenCode
ZeroClaw vs OpenClaw: Both are personal assistant runtimes. OpenClaw is Node/TypeScript with a rich skill marketplace and a WhatsApp focus. ZeroClaw is Rust-native , security-policy-first, with SOP engine and hardware paths. See Hermes vs OpenClaw for gateway comparison patterns.
ZeroClaw vs OpenCode: OpenCode optimizes repo coding in TUI/IDE. ZeroClaw optimizes multi-channel life + ops with enterprise-style security. Many builders use OpenCode in git and ZeroClaw for always-on inbox automation.
ZeroClaw vs Hermes: Hermes emphasizes learning loops (skills, Curator, GEPA). ZeroClaw emphasizes runtime security, channels, and SOP automation.
If your primary goal is personal AI automation across WhatsApp, Telegram, scheduled workflows, and knowledge management, explore OpenClaw on TechLatest as a complementary solution alongside ZeroClaw.
Techlatest.net - OpenClaw: AI Agent Automation Stack
Summary
ZeroClaw is a Rust agent harness for people who want full ownership: one config file, many channels, enforced security, optional gateway UI, and SOP automation. Run quickstartPoint an agent at your provider, wire Telegram, install the service, and you have a private assistant that doesn’t phone home.
The model is interchangeable. The runtime — policy, channels, receipts, memory — is the product you actually live with.
Thank you so much for reading
Like | Follow | Subscribe to the newsletter.
Catch us on
Website: https://www.techlatest.net/
Newsletter: https://substack.com/@parvezmohammed
Twitter: https://twitter.com/TechlatestNet
LinkedIn: https://www.linkedin.com/in/techlatest-net/
YouTube:https://www.youtube.com/@techlatest_net/
Blogs: https://medium.com/@techlatest.net
Reddit Community: https://www.reddit.com/user/techlatest_net/












Top comments (0)