One voice command. 120+ real actions. No root required.
FoneClaw doesn't just answer questions — it does things. Tell it "check my work email and summarize the urgent ones", and it opens your mail app, reads the inbox, filters by sender, reads each thread, and reports back. All through natural language, all on-device via the Accessibility Service.
Most "AI assistants" live in a chat bubble and can't touch your phone. FoneClaw is different — it acts as a real agent layer on top of Android, able to see your screen, tap buttons, fill forms, and chain actions across apps.
| Traditional Assistants | FoneClaw | |
|---|---|---|
| What it can do | Fixed voice commands | 120+ tools across 16 categories |
| How far it goes | One app at a time | Cross-app multi-step workflows |
| Screen awareness | None | Full UI tree reading + tap / swipe / gesture |
| Safety model | Implicit trust | Risk-graded approval before any risky action |
| Extensibility | Closed | Open community Skills, Workflows & Plugin APKs |
| 120+ | Built-in tools (mail, maps, phone, SMS, calendar, device settings, …) |
| 16 | Action categories |
| 14 | Supported languages |
| 8 | Community Skills ready to use |
| 1 | Official plugin APK package |
| 0 | Root access required |
- Download — Grab the latest APK from the Releases page or visit foneclaw.ai.
- Install & Launch — Follow the setup wizard.
- Enable Accessibility — Grant the Accessibility Service permission (required for on-screen automation).
- Talk to it — Try: "Find Italian restaurants near me and send the top pick to Sarah".
Requirements: Android 9 (API 28) or above.
flowchart LR
A[🗣️ Natural Language] --> B[Agent Runtime<br/>Koog + LLM]
B --> C{Risk Level?}
C -->|Read-only| D[⚡ Auto-execute]
C -->|State-changing| E[🔍 Approval Gate]
E --> F[✅ Execute Tools]
D --> F
F --> G[📱 Device Actions]
G --> H[📋 Transparent Result]
style A fill:#E8F5E9
style E fill:#FFF3E0
style G fill:#E3F2FD
Every action flows through a risk-graded approval system — read-only operations run instantly, while anything that sends data, changes settings, or deletes content pauses for your confirmation.
📖 Deep dive: System Architecture · Security & Privacy Model
Skills are knowledge packs that teach FoneClaw specialized workflows. Browse and contribute:
| Skill | What it does |
|---|---|
📧 mail |
Smart email triage & sending |
🗺️ navigation |
Turn-by-turn route planning |
📶 wifi |
Wi-Fi network management |
🔵 bluetooth |
Bluetooth pairing & control |
🛒 shopping |
Price comparison across stores |
🔍 webResearch |
Multi-source web research |
📲 openApp |
App launch & deep-link routing |
daily-device-brief |
Daily device, schedule, and reminder briefing |
➡️ Write your own: Skill Format Guide · Tool Catalog · Skill Template
Sample one-click import: Install Daily Device Brief in FoneClaw
Plugin APKs extend FoneClaw with installable Android-side tools. The host app discovers installed plugin APKs, registers their declared tools into the Agent, shows approval before side-effecting actions, and binds the plugin service to execute the real operation.
The first official plugin is the file-manager device
plugin. It provides file CRUD, search, batch rename, delete, and HTTPS download
tools after the user grants Android All files access to the plugin APK.
Plugin support requires FoneClaw Android app 0.0.6 or later.
➡️ Explore plugins: Plugin System · Published Plugins · Plugin Source
No-code automation recipes — record once, replay forever without LLM calls:
check-work-email— Morning email triagehome-wifi-connect— Auto-connect on arrival
➡️ Create your own: Workflow Format Guide · Tool Catalog
FoneClaw's core risk is "model decides + device executes" — so safety is built into the architecture, not bolted on:
- Risk-graded tools — every tool declares its risk level; high-risk tools never run without your tap.
- Approval UI — see the tool name, sanitized parameters, and impact before confirming.
- Sensitive data protection — passwords & API keys never pass through the LLM; email credentials are AES-256-GCM encrypted.
- Transparent execution — every tool call is logged and visible.
📖 Full breakdown: Security & Privacy Model
foneclaw-android/
├── docs/ Product & technical documentation
│ ├── overview.md What FoneClaw is
│ ├── architecture.md How it works under the hood
│ ├── security.md Risk levels, approvals, privacy
│ └── scenarios.md Real-world use cases
├── skills/ Community Skills (extend FoneClaw's knowledge)
│ ├── mail/ bluetooth/ wifi/ ...
│ └── _template/ Starter template for new skills
├── workflows/ No-code automation templates
│ ├── examples/ Ready-to-use workflows
│ └── _template/ Starter template
├── plugin/ Android plugin APK workspace and package index
│ ├── source/ Plugin source workspace
│ └── plugins/ Published plugin index and APK artifacts
├── releases/ Release notes & version metadata
└── .github/ Issue & PR templates for contributors
We welcome community contributions! The fastest ways to help:
- ⭐ Star this repo — helps others discover FoneClaw.
- 🧩 Share a Skill — submit a skill for a domain you know well.
- 🐛 Report issues — open a bug report.
- 💡 Suggest features — request a feature.
📖 Read CONTRIBUTING.md to get started.
- Product Overview — What FoneClaw is and how it works
- System Architecture — High-level technical design
- Security & Privacy — Tool risk levels, approvals, and data boundaries
- Core Scenarios — What users can accomplish
- Tool Policy — How risk levels and approvals work
- Tool Catalog — Built-in tool names for Skills and Workflows
- Skill Format — How to write a skill
- Workflow Format — How to create workflow templates
- Plugin System — How installable Android plugin APK tools work
FoneClaw's public documentation, Skills, and Workflow templates are released under the MIT License.
🌐 foneclaw.ai · Made with ❤️ for people who want their phone to actually listen.