Y
HN HRCB new | past | comments | ask | show | by right | domains | dashboard | about hrcb
-0.05 Claws are now a new layer on top of LLM agents (twitter.com)
412 points by Cyphase 3 days ago | 925 comments on HN | Neutral Mixed · vv3.4 · 2026-02-24
Article Heatmap
Preamble: -0.10 — Preamble P Article 1: +0.05 — Freedom, Equality, Brotherhood 1 Article 2: -0.05 — Non-Discrimination 2 Article 3: 0.00 — Life, Liberty, Security 3 Article 4: 0.00 — No Slavery 4 Article 5: 0.00 — No Torture 5 Article 6: 0.00 — Legal Personhood 6 Article 7: -0.15 — Equality Before Law 7 Article 8: 0.00 — Right to Remedy 8 Article 9: 0.00 — No Arbitrary Detention 9 Article 10: -0.25 — Fair Hearing 10 Article 11: 0.00 — Presumption of Innocence 11 Article 12: -0.65 — Privacy 12 Article 13: +0.15 — Freedom of Movement 13 Article 14: +0.05 — Asylum 14 Article 15: 0.00 — Nationality 15 Article 16: 0.00 — Marriage & Family 16 Article 17: -0.20 — Property 17 Article 18: +0.25 — Freedom of Thought 18 Article 19: +0.10 — Freedom of Expression 19 Article 20: +0.15 — Assembly & Association 20 Article 21: +0.20 — Political Participation 21 Article 22: 0.00 — Social Security 22 Article 23: 0.00 — Work & Equal Pay 23 Article 24: 0.00 — Rest & Leisure 24 Article 25: +0.15 — Standard of Living 25 Article 26: +0.05 — Education 26 Article 27: 0.00 — Cultural Participation 27 Article 28: -0.35 — Social & International Order 28 Article 29: -0.15 — Duties to Community 29 Article 30: -0.10 — No Destruction of Rights 30
Negative Neutral Positive No Data
Aggregates
Weighted Mean -0.05 Unweighted Mean -0.03
Max +0.25 Article 18 Min -0.65 Article 12
Signal 31 No Data 0
Confidence 100% Volatility 0.17 (Medium)
Negative 9 Channels E: 0.5 S: 0.5
SETL ND
HOTL +0.38 Contentious
Evidence: High: 2 Medium: 8 Low: 8 No Data: 13
Theme Radar
Foundation Security Legal Privacy & Movement Personal Expression Economic & Social Cultural Order & Duties Foundation: -0.03 (3 articles) Security: 0.00 (3 articles) Legal: -0.07 (6 articles) Privacy & Movement: -0.11 (4 articles) Personal: 0.02 (3 articles) Expression: 0.15 (3 articles) Economic & Social: 0.04 (4 articles) Cultural: 0.03 (2 articles) Order & Duties: -0.20 (3 articles)
Domain Context Profile
Element Modifier Affects Note
Privacy -0.15
Article 12 Article 19
Twitter/X maintains extensive user data collection and tracking practices; privacy policy permits broad data use and sharing
Terms of Service -0.10
Article 19 Article 20
Terms permit content moderation and account suspension with limited transparency; restrictions on expression enforcement
Accessibility +0.05
Article 25
Platform provides some accessibility features but gaps remain in comprehensive coverage
Mission +0.10
Article 19 Article 20
Platform mission includes free expression and public discourse, though enforcement inconsistent
Editorial Code
No formal editorial code observable on domain
Ownership -0.05
Article 19
Private corporate ownership; editorial decisions not subject to public governance
Access Model +0.10
Article 19 Article 25
Free access tier enables broad participation; freemium model provides baseline access
Ad/Tracking -0.15
Article 12
Extensive behavioral tracking and profiling for advertising; limited opt-out mechanisms
HN Discussion 20 top-level comments
simonw 2026-02-21 01:13 UTC link
I think "Claw" as the noun for OpenClaw-like agents - AI agents that generally run on personal hardware, communicate via messaging protocols and can both act on direct instructions and schedule tasks - is going to stick.
vivzkestrel 2026-02-21 03:10 UTC link
I still dont understand the hype for any of this claw stuff
tomjuggler 2026-02-21 10:12 UTC link
There's a gap in the market here - not me but somebody needs to build an e-commerce bot and call it Santa Claws
ZeroGravitas 2026-02-21 10:16 UTC link
So what is a "claw" exactly?

An ai that you let loose on your email etc?

And we run it in a container and use a local llm for "safety" but it has access to all our data and the web?

mhher 2026-02-21 11:42 UTC link
The current hype around agentic workflows completely glosses over the fundamental security flaw in their architecture: unconstrained execution boundaries. Tools that eagerly load context and grant monolithic LLMs unrestricted shell access are trivial to compromise via indirect prompt injection.

If an agent is curling untrusted data while holding access to sensitive data or already has sensitive data loaded into its context window, arbitrary code execution isn't a theoretical risk; it's an inevitability.

As recent research on context pollution has shown, stuffing the context window with monolithic system prompts and tool schemas actively degrades the model's baseline reasoning capabilities, making it exponentially more vulnerable to these exact exploits.

nevertoolate 2026-02-21 12:40 UTC link
My summary: openclaw is a 5/5 security risk, if you have a perfectly audited nanoclaw or whatever it is 4/5 still. If it runs with human-in-the-loop it is much better, but the value is quickly diminishing. I think llms are not bad at helping to spec down human language and possibly doing great also in creating guardrails via tests, but i’d prefer something stable over llms running in “creative mode” or “claw” mode.
thomassmith65 2026-02-21 13:31 UTC link

  giving my private data/keys to 400K lines of vibe coded monster that is being actively attacked at scale is not very appealing at all
https://nitter.net/karpathy/status/2024987174077432126

If this were 2010, Google, Anthropic, XAI, OpenAI (GAXO?) would focus on packaging their chatbots as $1500 consumer appliances.

It's 2026, so, instead, a state-of-the-art chatbot will require a subscription forever.

trcf23 2026-02-21 14:18 UTC link
Has anyone find a useful way to to something with Claws without massive security risk?

As a n8n user, i still don't understand the business value it adds beyond being exciting...

Any resources or blog post to share on that?

throwaway13337 2026-02-21 14:34 UTC link
The real big deal about 'claws' in that they're agents oriented around the user.

The kind of AI everyone hates is the stuff that is built into products. This is AI representing the company. It's a foreign invader in your space.

Claws are owned by you and are custom to you. You even name them.

It's the difference between R2D2 and a robot clone trying to sell you shit.

(I'm aware that the llms themselves aren't local but they operate locally and are branded/customized/controlled by the user)

andai 2026-02-21 16:20 UTC link
We got store-brand Claw before GTA VI.

For real though, it's not that hard to make your own! NanoClaw boasted 500 lines but the repo was 5000 so I was sad. So I took a stab at it.

Turns out it takes 50 lines of code.

All you need is a few lines of Telegram library code in your chosen language, and `claude -p prooompt`.

With 2 lines more you can support Codex or your favorite infinite tokens thingy :)

https://github.com/a-n-d-a-i/ULTRON/blob/main/src/index.ts

That's it! There are no other source files. (Of course, we outsource the agent, but I'm told you can get an almost perfect result there too with 50 lines of bash... watch this space! (It's true, Claude Opus does better in several coding and computer use benchmarks when you remove the harness.))

dang 2026-02-21 18:31 UTC link
All: quite a few comments in this thread (and another one we merged hither - https://news.ycombinator.com/item?id=47099160) have contained personal attacks. Hopefully most of them are [flagged] and/or [dead] now.

On HN, please don't cross into personal attack no matter how strongly you feel about someone or disagree with them. It's destructive of what the site is for, and we moderate and/or ban accounts that do it.

If you haven't recently, please review https://news.ycombinator.com/newsguidelines.html and make sure that you're using the site as intended when posting here.

jameslk 2026-02-21 18:58 UTC link
One safety pattern I’m baking into CLI tools meant for agents: anytime an agent could do something very bad, like email blast too many people, CLI tools now require a one-time password

The tool tells the agent to ask the user for it, and the agent cannot proceed without it. The instructions from the tool show an all caps message explaining the risk and telling the agent that they must prompt the user for the OTP

I haven't used any of the *Claws yet, but this seems like an essential poor man's human-in-the-loop implementation that may help prevent some pain

I prefer to make my own agent CLIs for everything for reasons like this and many others to fully control aspects of what the tool may do and to make them more useful

daxfohl 2026-02-21 19:12 UTC link
I wonder how the internet would have been different if claws had existed beforehand.

I keep thinking something simpler like Gopher (an early 90's web protocol) might have been sufficient / optimal, with little need to evolve into HTML or REST since the agents might be better able to navigate step-by-step menus and questionnaires, rather than RPCs meant to support GUIs and apps, especially for LLMs with smaller contexts that couldn't reliably parse a whole API doc. I wonder if things will start heading more in that direction as user-side agents become the more common way to interact with things.

deadbabe 2026-02-21 19:26 UTC link
Instead of posts about claws I would like to see more examples of what people are actually doing with claws. Why are you giving it access to your bank account?

Even if I had a perfectly working assistant right now, I don’t even know what I would ask it to do. Read me the latest hackernews headlines and comments?

bouzouk 2026-02-21 22:39 UTC link
Security-wise, having a Claw doesn’t seem so different from having a traditional (human) assistant or working with a consultant. You wouldn’t give them access to your personal email or bank account. You’d set them up with their own email and a limited credit card.
sleight42 2026-02-22 05:23 UTC link
I don't understand why folks are buying Mac Minis specifically for this? Why not repurpose an old existing computer? Run Linux? What am I missing?
corndoge 2026-02-22 06:07 UTC link
I still don't understand what openclaw is or does and i've read the docs multiple times over.

"Any OS gateway for AI agents across WhatsApp, Telegram, Discord, iMessage, and more. Send a message, get an agent response from your pocket. Plugins add Mattermost and more."

"What is OpenClaw?

OpenClaw is a self-hosted gateway that connects your favorite chat apps — WhatsApp, Telegram, Discord, iMessage, and more — to AI coding agents like Pi. You run a single Gateway process on your own machine (or a server), and it becomes the bridge between your messaging apps and an always-available AI assistant."

https://docs.openclaw.ai

My best interpretation of this is that it connects an BYO agent to your messenger client of choice. I don't understand the hype. I already have apps that allow me to message the model server running on my home lab. The model server handles tool calls (ie it is "agentic"). It has RAG over a dataset with a vector search for query. What is new about openclaw? I would like to understand it but what i see people say and what is in the docs do not seem compatible. Anyone have a resource?

CMay 2026-02-22 06:50 UTC link
This feels like the 2026 version of "blog". A thing that didn't need a name and the name it now has contains "out of touch" qualities to it, but it spread easier under a name that got popularized so it wins out in evolutionary terms?

Unlike blog though, claw is camping on an existing word and it won't surprise me if people settle on some other word once a more popular, professional and security conscious variant exists.

I don't think operating through messaging services will be considered anything unique, since we've been doing that for over 30 years. The mobile dimension doesn't change this much, except for the difference between always connected and push notifications along with voice convenience being a given. Not using MCP was expected, because even in my personal experiments it was very natural to never adopt MCP. It's true that there are some qualities MCP has that can be useful, but it's extra work and friction that doesn't always pay off.

Total access + mobile messaging + real productivity is naturally addictive, and maybe it's logical that the lazy path to this is the first to become popularized, because the harder problems around it are simply ignored.

vjk800 2026-02-22 08:24 UTC link
Serious question for early adopters of Claws: what are you using them for? What things do you find them actually useful? Can you give examples of tasks where you actually save time and/or effort using them?
blakec 2026-02-24 02:48 UTC link
I built one of these by accident over two months on Claude Code. ~15,000 lines of hooks, skills, and agents. I never set out to build an orchestration layer. I fixed one problem (stop the model from suggesting OpenAI). Then another (inject date and project context). Then another (catch credentials in tool calls). Then the solutions started stepping on each other, so I built dispatchers. Then dispatchers needed shared state. Then state needed quality gates. By the time Karpathy named the concept, my setup already looked like this.

"Just existing tech repackaged" is accurate and beside the point. Dropbox was just rsync repackaged. The value is in how it comes together, not the individual pieces.

What's actually missing that nobody's built yet: declarative workflow definitions. Everything I have is imperative bash. Want to change the order something runs? Edit a 1,300-line script. A real Claws system would define workflows as data and interpret them.

Score Breakdown
-0.10
Preamble Preamble
Medium P: Platform infrastructure enables mass speech but with centralized control
Editorial
ND
Structural
-0.10
SETL
ND
Combined
ND
Context Modifier
ND

Content appears inaccessible; only schema and CSS fragments returned. Structural assessment based on platform architecture: centralized authority over expression, data extraction systems

+0.05
Article 1 Freedom, Equality, Brotherhood
Low P: Platform operates globally with stated non-discrimination principle
Editorial
ND
Structural
+0.05
SETL
ND
Combined
ND
Context Modifier
ND

No observable content; structural data insufficient for scoring. Platform claims non-discrimination but enforcement inconsistent

-0.05
Article 2 Non-Discrimination
Low P: Moderation policies target content by identity categories
Editorial
ND
Structural
-0.05
SETL
ND
Combined
ND
Context Modifier
ND

No observable article content. Structural: platform applies differential moderation rules based on user characteristics

0.00
Article 3 Life, Liberty, Security
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 4 No Slavery
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 5 No Torture
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 6 Legal Personhood
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

-0.15
Article 7 Equality Before Law
Low P: Platform moderation applies terms unequally across user categories
Editorial
ND
Structural
-0.05
SETL
ND
Combined
ND
Context Modifier
ND

Structural: documented pattern of differential enforcement of platform policies; domain context shows unequal protection

0.00
Article 8 Right to Remedy
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 9 No Arbitrary Detention
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

-0.25
Article 10 Fair Hearing
Medium P: Platform operates as private judge and jury over disputes
Editorial
ND
Structural
-0.15
SETL
ND
Combined
ND
Context Modifier
ND

Structural: Twitter/X applies content judgment without transparent process, appeals limited, no independent adjudication

0.00
Article 11 Presumption of Innocence
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

-0.65
Article 12 Privacy
High P: Extensive behavioral tracking and data extraction without meaningful consent P: Privacy settings insufficient to prevent data collection
Editorial
ND
Structural
-0.35
SETL
ND
Combined
ND
Context Modifier
ND

Structural: platform architecture designed for mass data collection; tracking cookies, profile inference, third-party data sharing; domain context confirms privacy as secondary to business model

+0.15
Article 13 Freedom of Movement
Low P: Global reach enables information access across borders
Editorial
ND
Structural
+0.10
SETL
ND
Combined
ND
Context Modifier
ND

Structural: platform architecture enables cross-border information circulation, though subject to regional blocking and censorship

+0.05
Article 14 Asylum
Low P: Platform provides refuge for asylum discussions
Editorial
ND
Structural
+0.05
SETL
ND
Combined
ND
Context Modifier
ND

No direct observable evidence; structural assumption based on platform's role in human rights discourse

0.00
Article 15 Nationality
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 16 Marriage & Family
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

-0.20
Article 17 Property
Medium P: Account suspension and content removal without due process
Editorial
ND
Structural
-0.10
SETL
ND
Combined
ND
Context Modifier
ND

Structural: platform can arbitrarily deprive users of property (account, followers, content) through suspension; limited recourse mechanisms

+0.25
Article 18 Freedom of Thought
Medium P: Platform enables conscience and belief expression at scale
Editorial
ND
Structural
+0.15
SETL
ND
Combined
ND
Context Modifier
ND

Structural: architecture supports diverse thought expression; however, moderation policies restrict certain viewpoints

+0.10
Article 19 Freedom of Expression
High P: Platform core function is expression and information sharing P: Moderation and shadow-banning restrict freedom of expression
Editorial
ND
Structural
+0.20
SETL
ND
Combined
ND
Context Modifier
ND

Structural: platform architecture fundamentally enables Article 19, but operating policies restrict expression through content moderation, amplification suppression, and account restrictions

+0.15
Article 20 Assembly & Association
Medium P: Platform enables peaceful assembly and association digitally
Editorial
ND
Structural
+0.20
SETL
ND
Combined
ND
Context Modifier
ND

Structural: enables groups and communities to form; however, platform can remove groups unilaterally and restrict organizing around certain topics

+0.20
Article 21 Political Participation
Medium P: Platform facilitates political participation and discussion
Editorial
ND
Structural
+0.20
SETL
ND
Combined
ND
Context Modifier
ND

Structural: enables political discourse and organizing; however, moderation policies can restrict political speech

0.00
Article 22 Social Security
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 23 Work & Equal Pay
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

0.00
Article 24 Rest & Leisure
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

+0.15
Article 25 Standard of Living
Low P: Free access enables participation in social and cultural life
Editorial
ND
Structural
+0.10
SETL
ND
Combined
ND
Context Modifier
ND

Structural: freemium model provides baseline access to social participation; accessibility gaps remain

+0.05
Article 26 Education
Low P: Platform enables informal education and knowledge exchange
Editorial
ND
Structural
+0.05
SETL
ND
Combined
ND
Context Modifier
ND

Structural: functions as information commons; limited formal educational infrastructure

0.00
Article 27 Cultural Participation
Editorial
ND
Structural
0.00
SETL
ND
Combined
ND
Context Modifier
ND

No observable evidence on-domain

-0.35
Article 28 Social & International Order
Medium P: Private corporate platform lacks international human rights accountability mechanisms
Editorial
ND
Structural
-0.20
SETL
ND
Combined
ND
Context Modifier
ND

Structural: platform operates outside international human rights governance; no mandatory transparency or appeals to independent bodies; corporate ToS supersedes human rights norms

-0.15
Article 29 Duties to Community
Medium P: Platform restricts expression through moderation without clear limitation principles
Editorial
ND
Structural
-0.10
SETL
ND
Combined
ND
Context Modifier
ND

Structural: moderation policies restrict expression; unclear whether restrictions meet UDHR necessity and proportionality requirements

-0.10
Article 30 No Destruction of Rights
Low P: Platform moderation can suppress collective rights advocacy
Editorial
ND
Structural
-0.10
SETL
ND
Combined
ND
Context Modifier
ND

Structural: platform's terms permit suppression of content related to collective action and rights groups

About HRCB | By Right | HN Guidelines | HN FAQ | Source | UDHR
build cf3dcd7+9tle · 2026-02-24 23:19 UTC