[jmacd]

I went through the setup process for Openclaw. Near the end I felt like I had wrestled more with setting it up than I would have had to if I had just built it from the ground up. So I pointed Pi at Nanoclaw and asked it to review it and build me a minimal clone. It took a few minutes and I had the core of something that is easier to maintain (for me) than some unknown large and cumbersome system, or whatever Openclaw is.

To each their own.

[8cvor6j844qw_d6]

One concern I have is API key management.

.env files or injecting secrets at startup via a secret manager still risks leaking keys.

I vaguely recall an implementation that substitutes secret placeholders with real secrets only during outgoing calls to approved domains which sounds better. However, you're still trusting an agent on your machine with command execution.

[BloondAndDoom]

Funny enough ooenclaw is based on Pi.

I’m kind of curious what you do with it. I feel like the real value is integrating it with everything but then even if it’s nanoclaw or simpler majority of the worthy things are on the unsafe side.

Would love to hear your experience as I’m planning to do the exactly same.

[jmacd]

The most interesting thing for me is that I built an extension for Pi that has it recognize when it does not know how to do something I am asking and it then attempts to make its own extension and/or skill to enable whatever that functionality is. Best example there is I just told it to make a todo list for me, and so it made a skill that uses a local file to track todos and follow up on them. I instructed it to make an LLM call to find the best suggested follow up timing to remind me.

So... the real value so far is I find it fun? It isn't the "life changing need to go make a tweet!!" level for me.

[siva7]

Pi is great so it's sad to see that it only gained momentum because some trash tool like openclaw uses it.

[BloondAndDoom]

I think developer of pi and openclaw are friends, not sure if it matters but also Pi has its own small following. I agree with you it’s such an elegant piece of project with an awesome clean architecture. (Also see: oh my pi)

The real lesson is if you ignore security and data disasters agentic AI is easier than anyone expected.

[Havoc]

Yeah it does seem a little fragile. Still battling with working out why it pegs CPU at 100% permanently on a VPS I tried using. Literally just from installing the base