Octopal: Powerful AI agents without blind trust(octopal.ca)
3 pointsby pmbstyle6 hours ago1 comment
  • pmbstyle6 hours ago
    Projects like OpenClaw, Hermes Agent, and NanoClaw show that people want agents that actually do things, not just answer questions.

    That is the part I agree with. I love smart agentic systems.

    What I did not like in many agent setups was the default trust model: the same agent that can see your memory, instructions, and secrets can often also walk outside your system and take unrestricted actions.

    It will be exposed to various attacks, including prompt injection, unsafe scripts, skills, and websites whose sole purpose is to attack AI agents and gain control over them. After the original OpenClaw release, the web became a much more dangerous place for AI agents.

    This can lead to sensitive data exposure, identity theft, system compromise, and generally produce a lot of issues.

    - Octopal tries to make that simpler and safer to reason about. - Octo is the brain that plans and decides - Workers do the risky part: tools, shell, files, web, and external actions - Workers use Docker by default, so they do not start with full access to your machine - If a worker needs files from your main workspace, you share only the paths it actually needs

    Why this is better in practice: - easier to trust, because the agent doing the work is not automatically sitting on top of your whole machine - easier to understand, because there is a clear line between thinking and acting - easier to control, because file access is shared deliberately instead of being wide open by default

    OpenClaw and Hermes Agent both support sandboxed/containerized execution, but their documented defaults still allow host-side execution in common setups. Octopal takes the opposite approach: isolation first, host-style execution only as a fallback.

    NanoClaw goes in a different direction, keeping the whole system much smaller. That is a good trade if you want the leanest possible setup. Octopal is broader on purpose: memory, worker templates, channels, MCP, skills, recurring tasks, and a private gateway/dashboard all live in one runtime.

    Example workflow: User: "Research the latest Gemini model and write a summary."

    Octo: - Spawns Web Researcher - Researcher fetches sources or spawns sub-workers for multi-tasking - Researcher generates a summary and returns it to Octo - Octo stores canon entry - Result returned to the user

    Learn more: https://octopal.ca