A production-grade Python AI Agent framework with persistent memory, hooks-driven architecture, and compute-storage separation.
English · 中文文档 · 📚 WeChat: Time留痕 公众号合集 →
Team-aware AI agent with institutional memory that compounds — embedded in your team's communication platform.
Built for general-purpose use — daily assistance, complex multi-step tasks, software engineering — with four traits no other open-source agent ships well together:
- Persistent multi-layer memory that survives sessions, accumulates per-team knowledge, and grades from working memory all the way to vector archives
- Self-evolution without fine-tuning — automatically extracts reusable SOPs from successful sessions, ages out stale ones (30d / 90d), agent can actively forget outdated procedures, and high-frequency SOPs graduate into reusable skills. The agent gets measurably better at your team's recurring tasks over weeks of use, with no model retraining
- Multi-channel as first-class — Feishu (Lark), Web, and (planned) TUI / VSCode extension share the same agent core; non-terminal-native teammates can interact directly
- Hooks system for enterprise workflow integration — compliance, audit, approval gates, custom tooling all plug in without forking core
The competitive landscape has strong general-purpose coding agents (Claude Code, Cursor, OpenCode, Aider) and strong general-purpose chat agents (ChatGPT, Claude). Most of them treat each session as a fresh start. PyClaw's defensible angle is the intersection: a coding-capable agent that lives where your team already talks, remembers your codebase conventions and architecture decisions across weeks, learns the team's recurring playbooks on its own, and respects your enterprise approval flow. Daily assistance, research, code, ops — same agent, same memory, same audit trail, and it compounds with use.
Strategic context: see planning roadmap (private) and the strategic discussion record (private).
OpenClaw is a powerful multi-channel AI assistant — but its TypeScript monolith (17,000+ files) tightly couples compute and storage, and lacks production-grade memory. PyClaw rebuilds it from scratch in Python with a memory-first, hooks-driven, horizontally scalable architecture:
- 🧠 4-Layer Memory System — L1 Redis hot index → L2 facts → L3 procedures → L4 vector archives. Production-ready, fully integrated into the agent loop.
- 🔄 Self-Evolution — Auto-extracts SOPs from sessions, curates lifecycle (30d stale / 90d archive), agent can actively forget outdated procedures. No fine-tuning needed.
- 🪝 Hooks-Driven Architecture — Memory injection, working memory, nudges, tool approval — all built as pluggable hooks. Add your own without touching core.
- ☁️ Compute-Storage Separation — Stateless workers behind any load balancer. Sessions in Redis, memory in SQLite/Redis, embeddings via litellm.
- 🌐 Multi-Channel — Feishu (Lark) WebSocket cluster + Web channel with React SPA + OpenAI-compatible
/v1/chat/completionsSSE. - 🚦 Session Affinity Gateway — Active-active multi-worker scaling via Redis-backed affinity routing + PubSub forwarding. Same session always handled by the same worker, regardless of how Feishu/LB dispatches messages. Failover via TTL + PUBLISH-subscriber-count detection.
- 🇨🇳 Built for Chinese — FTS5 + jieba tokenizer for Chinese full-text memory search. Stop words. Auto-migration from trigram.
- 🎯 Prompt Budget Engineering — Frozen prefix (cacheable) + per-turn suffix (dynamic). Priority-based truncation. 90%+ prompt cache hit rate.
Going beyond 2-minute setup? Jump to § Configuration & Deployment for full guides on local dev, single-instance Docker, 3-worker active-active, multi-user isolation, sandboxing, MCP servers, and tool approval.
git clone https://github.com/Timeflys2018/pyclaw.git && cd pyclaw
python3.12 -m venv .venv && .venv/bin/pip install -e ".[dev]"
# Configure Feishu app credentials in configs/pyclaw.json
.venv/bin/python -c "import json,pathlib; pathlib.Path('configs/pyclaw.json').write_text(json.dumps({
'channels': {'feishu': {'enabled': True, 'appId': 'cli_...', 'appSecret': '...'}}
}, indent=2))"
./scripts/start.sh📖 More: full
pyclaw.jsonschema in the configuration reference, or copyconfigs/pyclaw.example.json. Production single-instance deploy: see deployment guide § Single Docker.
./scripts/start.sh # Starts backend + auto-builds React SPA
open http://localhost:8000 # Login (default: admin / changeme)Web channel ships with: streaming chat with inline execution trace (tool calls + memory hits + token usage), multimodal input (paste / drop / attach images), ⌘K command palette, keyboard shortcuts, session rename + delete, dual-theme (light/dark), tool approval modal, OpenAI-compatible API for third-party clients.
📖 More: tune the 3-tier permission model (
read-only/approval/yolo) in the permissions guide. Add MCP servers (GitHub, filesystem, etc.) via the MCP guide. Multi-user team deploy with per-user tier isolation: see multi-user deployment.
from pyclaw.core.agent.factory import build_agent_runner
from pyclaw.infra.settings import load_settings
settings = load_settings("configs/pyclaw.json")
runner = build_agent_runner(settings)
async for event in runner.run("Help me debug this Python error..."):
print(event)📖 More: settings types, hooks, and the agent loop API live in architecture decisions (D1–D26) and context engine.
The memory system is a 4-layer pipeline integrated into every prompt:
flowchart LR
User["User Prompt"] --> L1["L1: Redis<br/>Working Memory<br/>(per session)"]
User --> L2["L2: SQLite + FTS5<br/>Facts<br/>(jieba tokenizer)"]
User --> L3["L3: SQLite + FTS5<br/>Procedures/SOPs"]
User --> L4["L4: SQLite + sqlite-vec<br/>Session Archives"]
L1 -.snapshot.-> Prompt["Frozen Prefix"]
L2 -.facts ≤3.-> Dynamic["Dynamic Zone"]
L3 -.procedures ≤2.-> Dynamic
L4 -.semantic search.-> Dynamic
Prompt --> Agent[Agent Loop]
Dynamic --> Agent
style L1 fill:#fff3e0,stroke:#e65100
style L2 fill:#e8f5e9,stroke:#2e7d32
style L3 fill:#e8f5e9,stroke:#2e7d32
style L4 fill:#e3f2fd,stroke:#1565c0
Hooks that drive it (no LLM-side changes needed):
| Hook | What it does |
|---|---|
WorkingMemoryHook |
Injects <working_memory> XML into every turn (per-session Redis KV) |
MemoryNudgeHook |
Every 10 turns, nudges agent: "Consider using memorize." Counter resets on use |
archive_session_background |
On /new, archives old session → L4 with vector embedding (non-blocking) |
ContextEngine.assemble |
Searches L2/L3 by user prompt, injects top-K facts + procedures |
Tools the agent calls itself:
memorize— Persist to L2 (facts) or L3 (procedures). "No execution, no memory" guard.forget— Archive outdated/failed SOPs. Agent-initiated lifecycle management.update_working_memory— Per-session scratchpad (1024 char cap, 7-day TTL, FIFO eviction).skill_view— Progressive disclosure: load full SKILL.md content on demand.
PyClaw's agent improves itself over time — no fine-tuning, no retraining:
flowchart LR
subgraph Extract["1. Extract"]
A[Task] --> B[Tracker Hook]
B --> C{Session end?}
C -->|threshold met| D[LLM extract]
D --> E[Dedup + Write L3]
end
subgraph Curate["2. Curate"]
E --> F[Search hit<br/>bump count]
F --> G{90d unused?}
G -->|yes| H[archived]
I[forget tool] --> H
end
subgraph Graduate["3. Graduate"]
F --> J{count ≥ 5<br/>age ≥ 7d?}
J -->|yes| K[SKILL.md]
K --> L[skill_view]
end
style Extract fill:#e8f5e9,stroke:#2e7d32
style Curate fill:#fff3e0,stroke:#e65100
style Graduate fill:#e3f2fd,stroke:#1565c0
The timeline:
| Day | What happens |
|---|---|
| Day 1 | Agent follows instructions normally |
| Day 7 | Extracts reusable SOPs from successful sessions |
| Day 30 | Unused SOPs flagged as stale (still active, CLI visible) |
| Day 60 | Agent actively forgets outdated SOPs via forget tool |
| Day 90 | Curator auto-archives remaining unused SOPs |
| Day 90+ | High-frequency SOPs (use_count ≥ N + age ≥ M days) auto-graduate to SKILL.md via Curator (template or LLM-enrich mode) |
Key design decisions:
- Strict rejection bias — better to miss a valid SOP than learn a bad one
- Stale is computed, not stored — active SOPs remain searchable; "stale" is a CLI view, not a DB state
- Deterministic + Agent-driven — Curator handles time decay;
forgettool handles quality judgment - Distributed-safe — Redis SETNX lock ensures only one Curator instance runs across workers
graph TB
subgraph Channels["🌐 Channels"]
CH[Feishu WebSocket · Web WS · OpenAI SSE]
end
subgraph Compute["☁️ Compute Layer — Stateless Workers"]
direction TB
Runner["Agent Runner · 770-line loop<br/>Frozen Prefix · Per-Turn Suffix · Prompt Budget"]
Tools["Tools: bash · read · write · edit · grep · glob · web_fetch<br/>memorize · forget · update_working_memory · skill_view"]
Hooks["Hooks: WorkingMemory · MemoryNudge · ToolApproval · SopTracker"]
CE["Context Engine: assemble + memory search + compact"]
Infra["Infra: TaskManager · Curator · Skill Graduation · Settings"]
end
subgraph Storage["💾 Storage Layer"]
direction TB
Redis[("Redis<br/>Sessions · Locks · L1 Index · Working Memory")]
Memory[("SQLite + FTS5 + jieba<br/>L2 Facts · L3 Procedures")]
Vec[("sqlite-vec<br/>L4 Session Archives")]
Embed["Embedding API · litellm"]
end
CH --> Runner
Runner --> Tools
Runner --> Hooks
Runner --> CE
Hooks --> Redis
CE --> Memory
CE --> Vec
CE --> Embed
Infra --> Redis
style Channels fill:#e3f2fd,stroke:#1565c0
style Compute fill:#f3e5f5,stroke:#6a1b9a
style Storage fill:#e8f5e9,stroke:#2e7d32
| Layer | Status | Highlights |
|---|---|---|
| Agent Core | ✅ | 770-line single loop, 11 builtin tools (Tier 2: web_fetch / grep / glob), hook system, 5-file compaction subsystem |
| Memory System | ✅ | 4-layer (L1/L2/L3/L4), FTS5 + jieba, sqlite-vec, auto-migration from trigram |
| Context Engine | ✅ | Frozen/per-turn split, memory search, L1 snapshot, prompt budget |
| Session Store | ✅ | Redis (production) + InMemory (dev), SessionKey/SessionId rotation, DAG tree |
| Feishu Channel | ✅ | WebSocket cluster (50 workers), CardKit streaming, slash commands |
| Web Channel | ✅ | React 19 SPA · Linear/Cursor visual · execution trace · multimodal · ⌘K palette · keyboard shortcuts · session CRUD · OpenAI-compat SSE · JWT auth · tool approval modal + 3-tier permissions (read-only / approval / yolo) |
| Tool Approval | ✅ | End-to-end: WebToolApprovalHook + Feishu CardKit interactive card (originator-only authorization) · per-turn tier override · structured JSON audit log. See permissions guide |
| MCP Client | ✅ | stdio servers · {server}:{tool} namespace · trust-tier mapping with operator overrides (de-escalation only) · /mcp list / restart / logs · non-blocking startup with /health advisory · {env:VAR} secret placeholders. See MCP guide |
| Skill Hub | ✅ | ClawHub-compatible, progressive disclosure, 7-layer discovery (incl. .claude/skills/ cross-ecosystem read), pyclaw-skill CLI. See skill-hub-compatibility.md |
| Builtin Tier 2 tools | ✅ | In-process web_fetch (httpx + markdownify), grep (Python re, sandbox-friendly), glob (mtime-sorted), optional fetch_mcp_resource. All tool_class="read" so they work under tier=read-only where bash is denied. See builtin-tools.md |
| Prompt Engineering | ✅ | PromptBudgetConfig, frozen prefix caching, priority truncation |
| TaskManager | ✅ | Centralized async lifecycle, K8s-grade graceful shutdown |
| Self-Evolution | ✅ | SOP extraction + Curator lifecycle (30d/90d) + ForgetTool + Skill Graduation (high-frequency SOPs → SKILL.md) + CLI audit |
| Session Affinity Gateway | ✅ | Active-active multi-worker scaling, Redis affinity + PubSub forwarding, failover via PUBLISH-0 fallback |
| Sub-Agent System | ✅ | 5-layer discovery, .md + frontmatter manifest, isolated context window, tier/sandbox/memory inheritance, depth-1 limit, /agents slash command. License-clean (zero bundled personas). See subagents guide. |
| Dreaming Engine | 🔲 | Planned: Light/Deep/REM memory consolidation |
Test stats: 2168 unit/integration tests + 10 real-LLM E2E tests · ~12K lines Python · 110 source files
# L2/L3 search hits → injected as <facts> / <procedures> XML in dynamic zone
# All four layers are searched per turn, results blended by priority
# Example: Chinese query just works
agent.run("帮我看一下飞书 streaming 模块的 token 限流策略")
# → FTS5 matches "飞书"+"streaming"+"token"+"限流" via jieba.cut_for_search
# → Top procedures injected into promptclass MyCustomHook(AgentHook):
async def before_prompt_build(self, ctx):
ctx.append_dynamic("<custom>...injected...</custom>")
async def after_response(self, ctx, response):
# Auto-extract facts after every agent reply
...
agent.hooks.register(MyCustomHook())graph LR
subgraph Frozen["❄️ Frozen Prefix (cached, 90%+ hit)"]
F[identity · tools · skills · L1 snapshot]
end
subgraph Suffix["🔄 Per-Turn Suffix"]
S[runtime · working_memory · nudge]
end
subgraph Dynamic["🔍 Dynamic Zone"]
D[facts · procedures with entry_id]
end
Frozen ~~~ Suffix ~~~ Dynamic
style Frozen fill:#e3f2fd,stroke:#1565c0
style Suffix fill:#fff3e0,stroke:#e65100
style Dynamic fill:#e8f5e9,stroke:#2e7d32
curl http://localhost:8000/v1/chat/completions \
-H "Authorization: Bearer $TOKEN" \
-d '{"model":"pyclaw","messages":[{"role":"user","content":"hi"}],"stream":true}'# docker-compose.yml
services:
pyclaw:
deploy: { replicas: 3 } # 3 active-active workers
environment:
PYCLAW_AFFINITY_ENABLED: "true"
redis:
image: redis:7-alpine # Shared state + affinity registry
nginx:
image: nginx:alpine # ip_hash + reverse proxy
volumes: [./deploy/nginx.conf:/etc/nginx/conf.d/default.conf]
ports: ["80:80"]Two-layer stickiness for resilience:
- Layer 1 — Nginx
ip_hash: Routes same client IP to same worker (reduces forwarding overhead) - Layer 2 — Session Affinity Gateway: Redis-backed
session_key → worker_idmapping ensures the same session is always handled by the same worker, regardless of how Nginx (or Feishu cluster mode) dispatches messages. Cross-worker forwarding via Redis PubSub when needed; failover via TTL expiry +force_claimon PUBLISH-0.
Local dev with reverse proxy (single entry point at localhost:9000 → 3 workers on 8000/8001/8002):
make worker1 # terminal 1: PORT=8000
make worker2 # terminal 2: PORT=8001
make worker3 # terminal 3: PORT=8002
make nginx-start # reverse proxy on :9000
make affinity-status # snapshot Redis state (anytime)See make help for all dev shortcuts and reports/affinity-gateway-smoke-2026-05-15.md for the full smoke test report.
| # | Title | Topic |
|---|---|---|
| A1 | 从 TypeScript 单体到存算分离 | Why rewrite OpenClaw — three principles |
| A2 | 从 6000 行包装到 645 行单循环 | Six-framework Agent Core comparison (Claude Code / OpenClaw / OpenCode / DeerFlow / GenericAgent / Hermes) |
| D0 | AI Agent 记忆系统的四种流派 | Memory schools: Karpathy / 火山 / Shopify / YC |
| D1 | 你的 AI Agent 为什么总是"失忆"? | The 4-layer memory architecture design |
| D2 | 给 AI Agent 的记忆系统通上电 | Memory system end-to-end: tool design + hooks + APSW/jieba FTS5 fix |
| E1 | 给 Agent 加一个"心脏起搏器":TaskManager 设计 | Async task lifecycle for agents |
| E11 | Slash 命令系统:4 层分工驯服 21 个命令 | CommandRegistry + ProtocolOp + Hook 多层分工 |
| E12 | Session Affinity Gateway: N worker 水平扩展 | Affinity 双层 stickiness + (N-1)/N forward |
| E17 | 权限系统:4 层 tier × per-user × per-MCP-server | Tool approval system 四阶段演化 |
| E18 | 运行时沙箱:基于 Anthropic srt 的系统实现 | 8 条架构不变量 + SandboxPolicy Protocol 三件套 |
Series codes: A (project) · B (competitive) · C (context) · D (memory + evolution) · E (architecture + safety) · F (methodology)
PyClaw is configured via a single pyclaw.json discovered in ./pyclaw.json, configs/pyclaw.json, or ~/.openclaw/pyclaw.json. Five common scenarios are documented in the configuration reference: local dev, single-instance production, multi-instance active-active, Feishu bot, memory + self-evolution.
Setup & operations:
- Configuration reference (EN) · 配置参考 (中文) — every Settings field, env-var override map, scenario-driven examples (5 scenarios)
- Deployment guide (EN) · 部署指南 (中文) — local dev, single Docker, 3-worker active-active with
deploy/docker-compose.multi.yml, no-Dockermake worker[1-3] - Multi-user deployment (EN) · 多用户部署 (中文) —
UserProfileschema, per-user default tier, role-based permissions (admin / member),/admin userslash commands configs/pyclaw.example.json— complete runnable template
Security & integrations:
- Permissions & tool approval (EN) · 权限与工具审批 (中文) — three permission tiers (
read-only/approval/yolo), per-channel UX (Web modal vs Feishu CardKit), audit log schema - Sandbox (EN) · 沙箱 (中文) —
@anthropic-ai/sandbox-runtime(srt) integration: macOS Seatbelt / Linux bubblewrap+seccomp,BashTooland MCP subprocess isolation, 8-invariant manifest,production_require_sandboxflag - MCP servers (EN) · MCP 服务器 (中文) — Anthropic Model Context Protocol integration: stdio server config,
{env:VAR}secrets, per-serverforced_tier(de-escalation only),/mcp list/restart/logs, non-blocking startup, security warnings
# Skill management
pyclaw-skill list # Discovered skills
pyclaw-skill search github # Search ClawHub marketplace
pyclaw-skill install github # Install from ClawHub
pyclaw-skill check # Eligibility check (bins/env/OS)
# SOP lifecycle (Curator)
pyclaw-skill curator list --auto # Active auto-extracted SOPs
pyclaw-skill curator list --stale # SOPs unused for 30+ days
pyclaw-skill curator list --archived # Archived SOPs (with reason)
pyclaw-skill curator restore <id> # Restore an archived SOP
pyclaw-skill curator graduate --preview # Preview graduation candidates
pyclaw-skill curator graduate # Execute graduation
pyclaw-skill curator graduate --id <id> # Force-graduate specific SOP
# Live memory inspection
.venv/bin/python scripts/verify_memory_live.py # Real-time L1/L2/L3/L4 watcher# Unit + integration (no external deps)
.venv/bin/pytest tests/ --ignore=tests/e2e
# With real Redis
PYCLAW_TEST_REDIS_HOST=localhost .venv/bin/pytest tests/integration/
# Real-LLM E2E
PYCLAW_LLM_API_KEY=sk-... .venv/bin/pytest tests/e2e/1047 unit/integration tests · 10 E2E tests · ~11K LOC across 105 source files.
src/pyclaw/
├── core/ # Compute layer (stateless)
│ ├── agent/
│ │ ├── runner.py # Single 770-line agent loop
│ │ ├── system_prompt.py # Frozen + per-turn builders
│ │ ├── tools/ # bash, read, write, edit, grep, glob, web_fetch, memorize, forget, update_working_memory, skill_view (+ fetch_mcp_resource opt-in)
│ │ ├── hooks/ # WorkingMemoryHook, MemoryNudgeHook, SopTrackerHook
│ │ ├── compaction/ # 5-file subsystem (planning, dedup, hardening, checkpoint, reasons)
│ │ └── factory.py # Auto-wires memory tools + hooks
│ ├── context_engine.py # Bootstrap + memory search + assemble
│ ├── curator.py # Background SOP lifecycle (scan → stale → archive)
│ ├── sop_extraction.py # LLM-based SOP extraction from sessions
│ ├── memory_archive.py # Background L4 archival on /new
│ └── hooks.py # AgentHook / ToolApprovalHook / SkillProvider Protocols
├── storage/
│ ├── memory/ # 4-Layer memory (composite, sqlite, redis_index, jieba_tokenizer, embedding)
│ ├── session/ # Redis + InMemory session stores
│ ├── workspace/ # File + Redis workspace stores
│ └── lock/ # Redis distributed lock (SET NX PX + Lua CAS)
├── channels/
│ ├── feishu/ # WS receiver, CardKit streaming, slash commands
│ ├── web/ # WebSocket + REST + OpenAI SSE + React SPA + admin
│ └── session_router.py # SessionKey → SessionId routing
├── skills/ # Skill Hub (parser, discovery, eligibility, prompt, clawhub_client, installer)
├── infra/
│ ├── task_manager.py # Centralized async lifecycle (spawn/cancel/drain)
│ ├── settings.py # MemorySettings, EmbeddingSettings, PromptBudgetConfig
│ └── redis_client.py
├── cli/skills.py # pyclaw-skill CLI
└── app.py # FastAPI entry + lifespan
PyClaw's current isolation model is single-tenant or trusted-team — session data, Redis keys, Feishu workspaces, and memory stores are isolated per user, but there is no tenancy boundary between teams sharing one deployment. Suitable for: a team running its own instance, or trusted internal users on a shared instance. Web channel is for trusted users (Tool Approval Hook gates dangerous operations). Multi-tenant SaaS deployment requires the upgrade path documented below.
See D26: User Isolation Model for full isolation boundaries and multi-tenant upgrade path.
Getting started & operations
- Configuration reference — every Settings field, scenario-driven
- Deployment guide — local dev / single Docker / multi-instance active-active
Architecture & design
- Architecture Decisions (D1–D26) — all design choices and rationale
- Session System Design — SessionKey/SessionId, commands, idle reset
- Context Engine — assemble/ingest/compact Protocol
- Compaction Guide — multi-stage context summarization
- Timeouts & Abort — run/idle/tool timeout design
- Builtin Tools — 11 builtin tools, Tier 2 web_fetch / grep / glob, sandbox-bypass contract
- Skill Hub Compatibility — ClawHub integration + 7-layer cross-ecosystem discovery
Chinese docs: docs/zh/
- ✅ Memory Store — 4-layer SQLite-vec + FTS5 + jieba
- ✅ Web Channel — multiplexed WebSocket, OpenAI-compat SSE, React SPA
- ✅ Skill Hub — ClawHub SKILL.md parsing, progressive disclosure
- ✅ TaskManager — centralized async task lifecycle
- ✅ Self-Evolution — SOP extraction + Curator lifecycle + ForgetTool
- ✅ Session Affinity Gateway — Active-active multi-worker via Redis affinity + PubSub forwarding (smoke-verified 2026-05-14)
- ✅ Web UI MVP — Linear/Cursor visual refactor: Zustand state + virtualized message list + inline execution trace + Shiki code highlighting + multimodal (image paste/drop) + ⌘K command palette + global shortcuts + session CRUD (shipped 2026-05-15, see report)
- ✅ MCP Client — Anthropic Model Context Protocol integration: stdio servers, dual-name adapter pattern, per-server
forced_tier(de-escalation only),/mcp list/restart/logs, non-blocking startup,/healthadvisorymcpfield, secret redaction in logs (Sprint 2) - ✅ User Isolation + srt Sandbox — Per-user tier profile + role-based permissions +
@anthropic-ai/sandbox-runtime(macOS Seatbelt / Linux bubblewrap+seccomp), 11 architecture invariants (Sprint 3, shipped 2026-05-16) - ✅ Builtin Tier 2 Tools — In-process
web_fetch/grep/glob(sandbox-friendly, work undertier=read-only), optionalfetch_mcp_resource(default-off), plus.claude/skills/cross-ecosystem 7-source discovery — cross-reads superpowers / Claude Code / OpenCode / Crush / Cursor 2.4 / DeepSeek-TUI ecosystems (Sprint 4', shipped 2026-05-18) - ✅ Skill Graduation — High-frequency SOPs auto-graduate to SKILL.md (template / LLM-enrich modes,
pyclaw-skill curator graduate, shipped 2026-05-07) - ✅ Sub-Agent System (A') — Specialized agent personas (Markdown + YAML frontmatter), 5-layer discovery, depth-1 enforcement, parent-tier inheritance,
/agentsslash command, license-clean MIT distribution (Sprint 5, shipped 2026-05-18) - 🔲 Dreaming Engine — Light/Deep/REM memory consolidation (extract → cluster → graph)
- 🔲 PostgreSQL+pgvector — production-grade memory backend (multi-pod K8s deployment)
- 🔲 Plugin Platform (B) — Unified extension protocol across 5 registries; V2+ backlog, triggered by ≥3 third-party plugin requests OR PyClaw user count ≥ 10k (per strategic roadmap §四 anti-pattern #3: "marketplace infrastructure < 10k users is premature")
Canonical roadmap source:
DailyWork/planning/ROADMAP.md(private). The list above is a high-level mirror only; for sprint status, dependency graph, and ship reports consult ROADMAP.md.
See openspec/ for active changes and architectural specs.
PyClaw is inspired by OpenClaw and designed to be compatible with its skill ecosystem. PyClaw is an independent Python reimplementation, not a fork. It inherits the domain model (sessions, channels, skills) but redesigns the architecture with memory as a first-class citizen.
PyClaw and KnowMe / 知我 are sibling projects by the same author. Both follow the "pinyin + technical word" naming pattern. They solve complementary halves of the agent-memory story:
- PyClaw — the agent runtime (this repo): multi-channel (Feishu / Web), 4-layer L1-L4 memory, sub-agent system, sandbox, MCP client.
- KnowMe — the MCP-native local-first knowledge vault: SQLite + jieba FTS5, Markdown, Obsidian-compatible, exposes 5 read-only MCP tools.
Note: KnowMe is currently a private repository (pre-release). Public launch is planned around v1 ship (~2026-07). When public, this section will link to the repo. Until then, treat KnowMe as architectural context for PyClaw's MCP-extension design.
How they will compose (once KnowMe is public + linked into PyClaw's pyclaw.json):
PyClaw agent ──MCP query──▶ KnowMe vault (today, read-only,
internal smoke verified)
◀──MCP write── KnowMe (planned, KnowMe v1.5+)
─memorize─▶ PyClaw L4 in KnowMe vault (planned)
PyClaw already supports KnowMe as an MCP server today — the wiring lives in configs/pyclaw.json under mcp.servers.knowme, but is commented out / disabled by default until KnowMe goes public. Internal smoke (2026-05-18): list_pages returns indexed wiki pages, search "pyclaw" returns jieba-tokenized full-text hits.
Boundary contract (because both projects ship independently):
- PyClaw's MCP client treats KnowMe as a versioned external dependency — any breaking change in KnowMe's tool schema must be announced before the breaking commit, with a documented changelog in the KnowMe repo (visible once KnowMe goes public).
- The reverse direction (PyClaw exposing itself as an MCP server, so KnowMe's future agent panel can call PyClaw) is a planned PyClaw OpenSpec change — tracked internally as
pyclaw-mcp-server-package, not yet started.
Why this exists at all: the KB capability was originally Sprint 4 in PyClaw's roadmap; on 2026-05-18 it was reassigned to KnowMe so that PyClaw stays focused on the agent loop while KnowMe owns the vault. MCP is the protocol between them.
WeChat Official Account: Time留痕 — Deep dives on PyClaw development, AI Agent architecture, memory systems, and context engineering.
📚 完整文章合集 →
PRs welcome. The openspec/ directory tracks all architectural changes — read the active proposals before opening big PRs. Small PRs (typo fixes, bug fixes) are always appreciated.
MIT License — free to use, modify, and distribute, including commercial use.