Your AI Has
Shell Access. Now.

Tweek stops your AI coding tools from touching your credentials, keys, and secrets.
Install once. Forget about it.

Built-in AI That Catches What Rules Can't Custom prompt injection classifier runs on your machine. No API calls. No cloud. No latency.

$ curl -sSL https://raw.githubusercontent.com/gettweek/tweek/main/scripts/install.sh | bash

Open Source · Apache 2.0 · 100% Local · Your code never leaves your machine

HOW IT WORKS

Protected in 30 Seconds

Paste One Command

The installer handles everything. Python, pipx, tool detection.

curl -sSL ... | bash

Say Yes

Tweek auto-detects your AI tools and asks to protect each one.

y ↵

You're Done

Tweek runs invisibly. You never think about it again.

✓

6 LAYERS OF DEFENSE

Not Just One Lock on the Door

Every command your AI runs passes through six independent security checks. An attacker would have to beat all of them.

Pattern Matching

249 known attack signatures catch credential theft, data exfiltration, and prompt injection on sight.

Rate Limiting

Detects rapid-fire attack sequences and shuts them down before they get anywhere.

Local Prompt Injection AI

Custom-trained prompt injection classifier running entirely on your machine. Catches encoding tricks, social engineering, and novel injection techniques that rules miss. No API calls. No cloud. No data leaves your computer.

Session Tracking

Watches for multi-step attacks that look innocent individually but form a dangerous pattern over time.

Sandbox Preview

Runs risky commands in an isolated environment first to see what they actually do before letting them touch your system.

Response Screening

Scans what comes back from tools too. Hidden instructions in web pages, emails, or API responses get caught at the door.

Critical threats are hard-blocked. Suspicious ones ask you first. Low-risk signals are logged quietly.

WORKS WITH

Every AI Tool You Use

Auto-detects and protects all your AI coding assistants. No configuration needed.

Claude Code

Claude Desktop

ChatGPT Desktop

Gemini CLI

Cursor

Windsurf

Continue.dev

GitHub Copilot

OpenClaw

WHY

Sleep Better at Night

Invisible Protection

Runs silently between your AI assistant and your system. You never notice it until it blocks something dangerous.

Nothing Leaves Your Machine

100% local execution. No cloud. No telemetry. Your code, credentials, and keys stay exactly where they are.

Free. Forever.

Open source under Apache 2.0. All 249 attack patterns. All 9 tool integrations. No trial. No credit card. No catch.

That's It. Seriously.

One command. Say yes. Go back to coding.
Tweek handles the rest.

$ curl -sSL https://raw.githubusercontent.com/gettweek/tweek/main/scripts/install.sh | bash

View on GitHub

HARD SHELL

Tweek's Little Brother

A security-hardened Docker distribution of OpenClaw with Tweek built in. Full stack, pre-hardened, ready to go.

$ curl -fsSL https://raw.githubusercontent.com/gettweek/hard-shell/master/install.sh | bash

One Docker Command

OpenClaw + Tweek bundled in a hardened container. Install once, everything works.

Infrastructure Hardened

Read-only filesystem, dropped capabilities, non-root, resource limits, immutable configs.

Zero Configuration

Auto-generates auth tokens, configures security presets, locks configs after startup.

Learn More View on GitHub

PRICING

Everything is Free for Personal Use

Apache 2.0. All 249 patterns, all defense layers, all 9 tool integrations. Free forever.

CURRENT

Free

$0 forever

Everything. No limits. Apache 2.0.

249 attack patterns (all categories)
6 defense layers
All 9 tool integrations
100% local execution
Plugin system

Get Started Free

COMING SOON

Teams

TBD per seat / month

For teams of 2-50 developers.

Everything in Free
Compliance scanning
Centralized configuration
Priority support

Join Waitlist