LuLu AI - AI-Powered Firewall Assistant

The Problem

LuLu is the best open-source macOS firewall. But when it shows an alert like:

python3 (/usr/bin/python3) wants to connect to 185.199.108.133:443

Most users have no idea if this is safe or malicious. They either:

Allow everything (defeating the purpose of a firewall)
Block everything (breaking legitimate apps)

LuLu AI solves this. It automatically analyzes every connection and tells you what's happening, who owns the destination, the risk level, and whether to allow or block.

Architecture

LuLu AI has two independent components. Each works on its own, no shared dependency:

┌─────────────────────────────────────────────────────────┐ │ User's Mac │ │ │ │ ┌────────────┐ ┌──────────────────┐ │ │ │ LuLu │─────▶│ lulu-monitor │──▶ AI Agent │ │ │ Firewall │ │ (Agent Skill) │ (OpenClaw) │ │ └────────────┘ └──────────────────┘ │ │ │ │ │ │ │ │ ▼ │ │ │ Telegram / │ │ │ Discord │ │ │ Notifications│ │ ┌────────────────┐ │ │ │ LuLu AI │ │ │ │ Companion │──▶ Anthropic API │ │ │ (Mac App) │ (or 3mate Platform) │ │ └────────────────┘ │ └─────────────────────────────────────────────────────────┘

🤖

Agent Skill: lulu-monitor

Background service. Detects LuLu alerts via AppleScript, sends to AI agent for analysis, delivers Telegram notifications with Allow/Block buttons.

🖥️

Mac App: LuLu AI Companion

Native menu bar app. Shows AI analysis overlay directly on your Mac. WHOIS + Geo enrichment. Setup wizard included.

ℹ️ The two components are completely independent. The Agent Skill connects directly to LuLu Firewall and your AI agent. The Mac App connects to LuLu Firewall and an LLM API. Neither depends on the other.

🤖 Agent Skill: lulu-monitor

A background service that monitors LuLu Firewall alerts and delivers AI-analyzed notifications to Telegram with one-tap action buttons.

Repo: EasonC13-agent/lulu-monitor

Flow

LuLu Alert → Detect (AppleScript) → AI Analyzes → Telegram Notification
                                                            ↓
                                                  User taps Allow/Block
                                                            ↓
                                                  Action executed on LuLu

Features

Real-time LuLu alert detection via AppleScript
AI analysis using Claude (via OpenClaw Gateway)
Telegram notifications with 4 action buttons (Allow/Block, permanent or one-time)
Auto-execute mode for high-confidence safe connections
Runs as launchd service (auto-start on boot)

Example: Suspicious Connection 🔴

Process: python3 (/usr/bin/python3)

PID: 51847

Connection: 185.199.108.133:443 (TCP)

DNS: raw.githubusercontent.com

Analysis: This Python subprocess is attempting to connect to GitHub to download additional scripts. This connection was NOT initiated by me and appears to be from a post-install hook in a skill package.

Risk: 🔴 High - Unexpected outbound connection during skill installation
Recommendation: 🚫 Block - Investigate the install scripts before allowing

Example: Safe Connection 🟢

Process: python3.11 (/opt/homebrew/bin/python3.11)

PID: 52103

Connection: 148.251.183.254:443 (TCP)

DNS: wttr.in

Analysis: Running the weather skill for the first time. The skill uses a Python script that connects to wttr.in (a weather service). This is expected behavior.

Risk: 🟢 Low - First-time connection from weather skill
Recommendation: ✅ Allow

Telegram alert notifications with Allow/Block buttons

Telegram notifications with one-tap Allow/Block buttons

🖥️ Mac App: LuLu AI Companion

A native macOS menu bar app that provides AI-powered analysis directly on your Mac with an overlay recommendation window.

Repo: EasonC13-agent/LuLuAICompanion

Features

Native SwiftUI menu bar app
Monitors LuLu alerts via macOS Accessibility API
WHOIS + Geo IP enrichment for every connection
AI recommendation overlay window next to LuLu alert
Setup wizard for easy first-time configuration
Uses claude-haiku-4-5 for fast, cost-efficient responses

API Key Options

The app supports two ways to connect to AI:

Anthropic API key (sk-ant-...) - Direct connection to Anthropic
3mate Platform key (sk-3mate-...) - Pay-per-use via Sui Tunnel

LuLu AI Companion running on macOS desktop

LuLu AI Companion (left) showing AI analysis alongside the LuLu Firewall alert (right)

⚡ Sui Integration: 3mate Platform

⚠️ The 3mate Platform is currently in progress. Smart contracts are deployed on Sui Testnet.

LuLu AI Companion can optionally use the 3mate Platform for AI API access, powered by Sui Tunnel micropayments. This enables pay-per-use AI without requiring users to have their own Anthropic API key.

The entire 3mate Platform was built through vibe coding with SuiMate AI. Watch the development process: Building Demo ↗

Platform: platform.3mate.io | Repo: EasonC13-agent/platform.3mate.io

How Payment Works

Deposit: User opens a Sui Tunnel, deposits USDC on-chain
Create Key: Generate API key, authorized on-chain via add_authorized_key()
Use: Each AI analysis deducts from tunnel balance (pay-per-use)
Claim: Backend claims used funds with Ed25519 signature verification
Close: User can close tunnel and get unused funds refunded anytime

Smart Contract

Sui Move Tunnel Payment Protocol on testnet:

Item	Detail
Package	`0x42a47edd...092678`
Tests	42 tests, 100% code coverage
Features	Multi-key tunnels, grace period, cooperative close
Gas	Gas Station sponsored transactions

State Receipt Signing

Each API call updates cumulative usage. The backend signs a state receipt with Ed25519:

message = tunnel_id_bytes || bcs(cumulative_amount) || bcs(nonce)
signature = ed25519_sign(message, api_key_private_key)

The operator submits this signature on-chain to claim funds. The contract verifies against any authorized key in the Tunnel.

Repositories

Repo	Description
lulu-ai-firewall-sui-hackathon	This repo: documentation, slides, submission
lulu-monitor	AI Agent Skill (background service)
LuLuAICompanion	Mac App (menu bar companion)
platform.3mate.io	3mate Platform (backend + smart contracts)

Tech Stack

Component	Technology
AI Agent Skill	Node.js, AppleScript, OpenClaw
Mac App	Swift, SwiftUI, XcodeGen
Web Platform	React, TypeScript, Vite, TailwindCSS
Backend	Bun, Hono, Prisma
Smart Contracts	Sui Move (42 tests, 100% coverage)
Wallet	@mysten/dapp-kit
Payments	Sui Tunnel, Gas Station, Ed25519

🛡️ LuLu AI

Contents

The Problem

Architecture

Agent Skill: lulu-monitor

Mac App: LuLu AI Companion

🤖 Agent Skill: lulu-monitor

Flow

Features

Example: Suspicious Connection 🔴

Example: Safe Connection 🟢

🖥️ Mac App: LuLu AI Companion

Features

API Key Options

⚡ Sui Integration: 3mate Platform

How Payment Works

Smart Contract

State Receipt Signing

Repositories

Tech Stack