ProxyClaw Security & Trust
Last updated: April 27, 2026
Status: ProxyClaw MCP packages are official IPLoop/ProxyClaw packages for legitimate AI-agent web access, testing, research, rendering, and automation workflows.
Automated threat-intelligence systems may flag new proxy, browser-rendering, or MCP packages because those categories are commonly abused. We treat those reports seriously and publish package identity, source links, and security expectations here for verification.
Official packages
- Node.js MCP: npm proxyclaw-mcp-server / source
- Python MCP: PyPI proxyclaw-mcp-server / source
- Glama listing: ProxyClaw MCP Server by IPLoop
Security posture
- No install-time shell hooks are required for package operation.
- No credential harvesting, persistence mechanism, crypto mining, obfuscated payloads, or unrelated outbound calls are intended or permitted.
- Published packages are tied to public source repositories and IPLoop/ProxyClaw domains.
- Abuse is prohibited under our Acceptable Use Policy.
Report security issues or false positives
Email support@iploop.io with evidence, affected versions, logs, and reproduction details. We will investigate concrete malicious-code evidence immediately.