ClawRouter introduces severe privacy and security risks by routing all AI prompt data through an undocumented, anonymous middleman API without a privacy policy.
Operates as a local routing proxy that intercepts and forwards requests through the undocumented BlockRun API, acting as a middleman for all LLM interactions.
Relies on cryptocurrency micropayments via self-custodial wallets rather than traditional API keys.
Stores cryptocurrency wallet mnemonics and private keys in unencrypted plain text on the local filesystem.
No Privacy Policy or Terms of Service could be found, leaving users with zero legal protection regarding prompt data retention or model training.
The local proxy component is fully open-source under the MIT license, though the backend it relies on is proprietary.