Constrails: Early-Alpha External Governance Layer for AI Agents
Constrails is an early-alpha external runtime governance layer for AI agents. Instead of relying on agents to self-regulate, it places a control layer between the agent and the tools it wants to use.
Key Features
The tool implements several safety and governance mechanisms:
- Capability checks
- Risk scoring
- Policy evaluation
- Allow/deny/approval/sandbox decisions
- Approval replay
- Audit logging
- Auth/key controls
- Sandbox posture enforcement
- Early anti-exfiltration heuristics
- Basic burst-rate limiting
The developer created Constrails in response to seeing agents try to work around their own restrictions when blocked, arguing that safety controls should live outside the agent whenever possible.
This is an early-alpha release, not production-ready, but has been tested enough for public sharing. The developer is actively seeking feedback, criticism, and ideas from the community.
GitHub repository: https://github.com/TMFPRETTY/Constrails
📖 Read the full source: r/openclaw
👀 See Also
NPCterm: Full PTY Terminal Emulator for AI Agents via MCP
NPCterm provides AI agents with full terminal access through a headless, in-memory PTY terminal emulator exposed via MCP. It includes 15 MCP tools for terminal control, process state detection, and support for TUI applications.
ReasonDB: Open-Source Document Database Using LLM-Guided Tree Navigation Instead of Vector Search
ReasonDB is an open-source document database that preserves document structure as a hierarchy and uses LLM-guided tree traversal for retrieval instead of vector search. It uses BM25 for initial search, tree-grep for structure filtering, and beam-search traversal where the LLM visits ~25 nodes out of millions.
Claude Code Voice Mode: Hands-Free AI Conversations for Developers
Claude's voice mode beta lets you speak to the AI and hear responses, with hands-free and push-to-talk options. It works on web and mobile, counts toward regular usage limits, and allows switching between text and voice in the same conversation.
Ephemeral OpenClaw setups with network sandboxing and auto-teardown
A setup that boots OpenClaw inside an ephemeral VM with a network egress allowlist, injects API keys into RAM-backed storage, and includes a 2-hour auto-teardown. All LLM calls are recorded to SQLite for replay.