
Your AI, your rules.
A native desktop AI platform that runs fully offline, connects to any provider, and puts you in control.
Private by default. Powerful by design. Extensible by nature.
OpenPawz is a native Tauri v2 application with a pure Rust backend engine. It runs fully offline with Ollama, connects to any OpenAI-compatible provider, and gives you complete control over your AI agents, data, and tools.
Every commit is validated by a 3-job CI pipeline: Rust (check + test + clippy), TypeScript (tsc + eslint + vitest + prettier), and Security (cargo audit + npm audit). See ENTERPRISE_PLAN.md for the full hardening audit.
OpenPawz takes a defense-in-depth approach with 7 security layers. The agent never touches the OS directly — every tool call flows through the Rust engine where it can be intercepted, classified, and blocked.
CAP_DROP ALL, memory/CPU limits, network disabledSee SECURITY.md for the complete security architecture.
| Provider | Models |
|---|---|
| Ollama | Any local model (auto-detected, fully offline) |
| OpenAI | GPT-4.1, GPT-4.1 mini, GPT-4.1 nano, o3, o4-mini |
| Anthropic | Claude Opus 4, Sonnet 4, Sonnet 4 Thinking, Haiku 3.5 |
| Google Gemini | Gemini 3.1 Pro, 3 Pro, 3 Flash (Preview), 2.5 Pro/Flash/Flash-Lite |
| OpenRouter | Meta-provider routing (100+ models) |
| DeepSeek | deepseek-chat, deepseek-reasoner |
| xAI (Grok) | grok-3, grok-3-mini |
| Mistral | mistral-large, codestral, pixtral-large |
| Moonshot/Kimi | moonshot-v1 models |
| Custom | Any OpenAI-compatible endpoint |
Telegram · Discord · IRC · Slack · Matrix · Mattermost · Nextcloud Talk · Nostr · Twitch · WebChat · WhatsApp
Each bridge includes user approval flows, per-agent routing, and uniform start/stop/config commands. The same agent brain, memory, and tools work across every platform.
Frontend (TypeScript) Rust Engine
┌──────────────────────┐ ┌────────────────────────────────┐
│ Vanilla DOM · 20+ views │◄── IPC ──► │ Tauri commands │
│ Feature modules │ (typed) │ Channel bridges │
│ Material Icons │ │ AI providers │
│ │ │ Tool executor + HIL approval │
└──────────────────────┘ │ AES-256-GCM encrypted SQLite │
│ OS keychain · Docker sandbox │
└────────────────────────────────┘
No Node.js backend. No gateway process. No open ports. Everything flows through Tauri IPC.
See ARCHITECTURE.md for the full technical breakdown.
git clone https://github.com/OpenPawz/openpawz.git
cd paw
npm install
npm run tauri dev
# TypeScript tests
npx vitest run
# Rust tests
cd src-tauri && cargo test
# Lint
npx tsc --noEmit
cd src-tauri && cargo clippy -- -D warnings
npm run tauri build
| Document | Description |
|---|---|
| ARCHITECTURE.md | Full technical breakdown — directory structure, module design, data flow |
| SECURITY.md | Complete security architecture — 7 layers, threat model, credential handling |
| CONTRIBUTING.md | Development setup, code style, testing, PR guidelines |
| ENTERPRISE_PLAN.md | Enterprise hardening audit — all phases with test counts |
| AUTONOMY_ROADMAP.md | Agent autonomy roadmap — auto-approve, webhooks, MCP, PawzHub |
| Docs Site | Full documentation with guides, channel setup, and API reference |
| Layer | Technology |
|---|---|
| Framework | Tauri v2 |
| Backend | Rust (async, Tokio) |
| Frontend | TypeScript (vanilla DOM) |
| Database | SQLite (21 tables, AES-256-GCM encrypted fields) |
| Bundler | Vite |
| Testing | vitest (TS) + cargo test (Rust) |
| CI | GitHub Actions (3 parallel jobs) |
MIT — See LICENSE
$ claude mcp add openpawz \
-- python -m otcore.mcp_server <graph>