Anonymize LLM traffic to dodge API fingerprinting and rate-limiting

As a heavy user of OpenClaw and various LLM clients, I’ve started noticing a disturbing trend: API providers are getting much better at "identifying" us. It’s not just about the API key anymore—it's your IP, your request timing, and your client’s specific HTTP fingerprint.

Anthropic’s recent reports on "distillation-pressure" and the community whispers about "silent" rate-limiting for specific IP ranges got me thinking: Why am I giving OpenAI/Google my home IP with every single prompt?

What I Built: I built Claw Shield. It’s a privacy layer for OpenClaw (and potentially any OpenAI-compatible client) that implements Oblivious HTTP (OHTTP).

How it works: Instead of a direct connection, Claw Shield uses a double-blind architecture:

The Client (OpenClaw Plugin) encrypts your request using HPKE.

The Relay (Cloudflare) sees your IP but cannot see your request content.

The Gateway (Your CF Worker) sees your request content but cannot see your IP.

The Model Provider sees the request coming from Cloudflare’s edge infrastructure, not you.

Why this is better than a simple VPN/Proxy:

Zero Trust: Even the Relay can't log your prompts, and the Gateway can't log your identity. You don't have to trust me or the relay provider.

Fingerprint Reduction: By standardizing the traffic through OHTTP/BHTTP, we strip away the unique signatures that providers use to identify "third-party client" traffic.

Open Source & Self-Hostable: Both the Relay and Gateway are lightweight Cloudflare Workers you can deploy in 1 click.

Status: Verified working for Gemini and OpenAI. Supporting Anthropic and others via providerTargets.

Repo: https://github.com/xinxin7/claw-shield