HybridClaw — Enterprise AI Digital Coworker

HybridAI Advantage

Enterprise platform advantage built in

HybridAI gives HybridClaw a strong enterprise foundation: security, compliance alignment, and document-grounded intelligence.

Select your bot. Unlock its knowledge.

Each bot can have its own focus, tone, and knowledge. Use one for deep research, one for support, and one for day-to-day team productivity.

🔒

Security

Built for teams that need trustworthy controls and secure operations by default.

🏢

Enterprise-Ready Stack

Designed for real business workflows, team governance, and operational reliability.

🇪🇺

EU Stack

Strong fit for organizations prioritizing EU-centric infrastructure and data posture.

🛡️

GDPR Alignment

Supports privacy-conscious deployment strategies and compliance-driven teams.

🔍

RAG Retrieval

Ground answers in your organization’s knowledge for higher relevance and confidence.

📄

Document Intelligence

Turn internal documents into practical, searchable context your digital coworker can use.

What it does

High-impact work, handled end-to-end

Core actions are grouped into six outcomes so teams can scan value quickly without feature overload.

📚

Answer with context

Use workspace memory and knowledge grounding to produce responses your team can act on immediately.

🔒

Execute safely

Run useful actions behind trust acceptance, runtime guardrails, and instruction approval checks so automation stays controlled.

🔄

Stay consistent across channels

Share one assistant behavior across Discord, web, and terminal without managing separate bot personalities.

🧠

Remember what matters

Persist and compact long-running conversations so quality stays high even as sessions grow.

⏰

Follow through automatically

Schedule recurring or one-shot tasks so your assistant continues work without manual reminders.

📊

Operate with visibility

Track status, sessions, tamper-evident audit history, approval decisions, and observability export health from one runtime surface.

Comparison

Comparison & USPs

Area	HybridClaw	OpenClaw	NanoClaw	PicoClaw
Onboarding	Explicit trust acceptance	Strong default flow	Quick startup flow	Minimal setup path
Security & Trust	Trust-first policy posture	Solid baseline controls	Lean safeguards	Minimal guardrails
Runtime Control	Live config updates	Setup-dependent tuning	Simple control surface	Minimal controls
Digital Coworker Feel	Memory + proactive follow-up	Strong continuity model	Lightweight continuity	Short-turn focus
Enterprise Readiness	Hash-chained audit plus local instruction approval controls	Strong base, extended per team	Lean core + add-ons	Minimal footprint strategy
Cross-Channel Consistency	One assistant brain across channels	Often one primary channel	Light multi-channel support	Mostly single-channel simplicity

Architecture

Built for reliability at scale

HybridClaw keeps one shared assistant brain across channels while running actions with safety guardrails.

Where people work

Discord / Web / Terminal

One shared user experience

→

HybridClaw Core

Shared Assistant Brain

Context, memory, and orchestration

→

Action Layer

Safe Execution

Useful actions with guardrails

→

Result

Back to your team

Fast, consistent responses

Fast by Design

HybridClaw is optimized for quick responses, even when your team uses it all day.

Reliable Operations

Clear runtime surfaces make it easier to monitor, maintain, and trust in production.

Safety by Default

Guardrails are built in so teams can unlock automation without sacrificing control.

Consistent Assistant Quality

Structured prompting keeps behavior stable, reliable, and aligned with your standards.

Technical Details

Engineering view

For technical teams who want to understand how HybridClaw is built and operated.

Core Runtime

Node.js gateway with persistent session state, scheduling, and HTTP endpoints for status, chat, and commands.

Audit Trail

Append-only wire logs are SHA-256 hash-chained for tamper-evident immutability, with searchable events, verification, and approval history.

Safety Model

Trust-model acceptance is required during onboarding, execution uses runtime guardrails by default, user-directed browser auth-flow testing is supported, and TUI blocks on unapproved instruction changes.

Prompt Orchestration

Structured hook pipeline: bootstrap, memory, safety, and proactivity, plus history/token budgets and prompt-mode tiers for predictable context size control.

Configuration

Typed config.json with defaults, validation, and hot reload. Secrets remain in .env.

Memory Continuity

Persistent workspace memory plus long-session compaction keeps conversations responsive without losing important context.

Skills Engine

OpenClaw/CLAUDE-compatible SKILL.md support with multi-tier discovery, prompt embedding modes (always/summary/hidden), eligibility checks, and trust-aware security scanning.

Web Routing Intelligence

Read-first routing prefers web_fetch for static retrieval, emits escalation hints on JS/app-shell/bot-blocked pages, and guides browser extraction with full snapshots for dynamic content.

Interfaces & Integrations

Shared assistant behavior across Discord, web, and terminal, powered by HybridAI bots and model selection.

Observability Export

Structured audit events are pushed to HybridAI observability ingest with cursor-based delivery, auto-managed bot-scoped ingest tokens, and per-turn token usage metrics.

Gateway Lifecycle

Runtime supports start, stop, and restart flows with graceful shutdown handling for both managed and unmanaged gateway processes.

Toolbox

13 built-in capabilities

From reading content to taking action, HybridClaw can complete real workflows end-to-end.

📄

read

Read file contents

✏️

write

Create or overwrite files

🔧

edit

Surgical string replace

🗑️

delete

Remove files safely

🔍

glob

Pattern-match file paths

🔎

grep

Regex search file contents

💻

bash

Shell commands (guarded)

🧠

memory

Durable workspace memory

🔍

session_search

Search past sessions

🌐

web_fetch

Static/read-only URL fetch & extraction

🖥️

browser_*

JS-rendered + interactive automation (auth, click, type, screenshot, PDF)

🧰

delegate

Push-based subagent orchestration (single/parallel/chain)

🕑

cron

Schedule recurring tasks

Personality

A workspace that shapes your agent

Bootstrap files give your agent identity, memory, and purpose. Each bot gets its own persistent workspace.

File	Purpose
SOUL.md	Personality and behavior
IDENTITY.md	Name, avatar, style
USER.md	Info about the user
MEMORY.md	Persistent memory across sessions
TOOLS.md	Tool usage notes and tips
HEARTBEAT.md	Tasks to check during heartbeat
BOOT.md	Startup instructions
AGENTS.md	Conventions and guidelines

Get Started

Get started in 60 seconds

Install, initialize trust, start the runtime, then connect your preferred interface.

1. Install CLI

npm install -g @hybridaione/hybridclaw

2. Initialize workspace

hybridclaw onboarding to accept trust model and generate config.json.

3. Start runtime

hybridclaw gateway to launch the core service with your configured bot/model.

4. Connect interface

Use Discord or run hybridclaw tui for a terminal-native chat experience. If core instructions changed, TUI asks you to approve first.

5. Restart safely

Use hybridclaw gateway restart when config or runtime behavior changes and keep observability export aligned.

# 60-second flow
npm install -g @hybridaione/hybridclaw
hybridclaw onboarding
hybridclaw gateway
hybridclaw tui

FAQ

Common questions

Why does onboarding ask me to accept TRUST_MODEL.md?

HybridClaw enforces explicit trust-model acceptance before runtime starts. Acceptance is recorded in config.json with policy version and timestamp so operators can prove security acknowledgement. Technical runtime controls are documented separately in SECURITY.md.

Do I still configure everything through .env?

No. Runtime behavior now lives in typed config.json (with defaults, validation, and hot reload). Keep .env for secrets like API tokens and credentials.

Is it safe to let the agent run shell commands?

Yes. All tools execute inside ephemeral Docker containers with read-only filesystems, memory caps, and a deny-list of 28+ dangerous command patterns. The host machine is never exposed.

Can browser tools test real login flows?

Yes, when explicitly requested by the user for the intended site. Runtime guidance allows authenticated browser-flow testing, while sensitive credential values are redacted from structured audit tool-argument logs.

How does HybridClaw choose web_fetch vs browser tools?

Default is web_fetch for static/read-only retrieval. HybridClaw escalates to browser automation for JavaScript-heavy apps, auth-gated flows, interaction steps, or when web_fetch reports hints like javascript_required, spa_shell_only, empty_extraction, boilerplate_only, or bot_blocked.

Is the audit trail immutable?

Audit logs are append-only and hash-chained per session, so modifications are tamper-evident. Use hybridclaw audit verify <sessionId> to validate integrity, and hybridclaw audit approvals --denied to review denied actions.

What happens if instruction files are changed?

HybridClaw checks core instruction files before TUI startup. If they changed, you must approve them first. Use hybridclaw audit instructions to review status and hybridclaw audit instructions --approve to approve updates. Approval decisions are audit logged.

Can I use it without Discord?

Absolutely. Run hybridclaw tui for the terminal UI. The same assistant behavior and context model is shared across supported interfaces.

What is the heartbeat system?

A configurable periodic poll (default every 30 minutes) where the agent wakes up, checks its HEARTBEAT.md file for tasks, and proactively reaches out if something needs attention. Silent acknowledgments are discarded to avoid noise.

Can different Discord channels use different bots?

Yes. Each channel can be independently configured with its own HybridAI chatbot, model, and RAG setting using the bot set and model set commands.

How does scheduling work?

Three modes: cron expressions for recurring tasks, ISO-8601 timestamps for one-shot execution, and simple intervals (minimum 10 seconds). All tasks persist in SQLite and one-shot tasks auto-delete after running.

What is HybridAI?

HybridAI is the bot platform that powers HybridClaw. It provides managed chatbots with document knowledge bases, retrieval-augmented generation (RAG), and multi-model support through an OpenAI-compatible API. You create and configure bots on the HybridAI platform, then connect them to HybridClaw.

What AI models does it support?

HybridClaw works with any model available through the HybridAI API. You can list available models with model list and switch per channel at any time.

Does the agent remember things between conversations?

Yes. The agent writes daily memory files (memory/YYYY-MM-DD.md) and curates long-term insights into MEMORY.md. Before session compaction, a dedicated flush turn ensures durable notes are persisted. These files plus SOUL.md are injected into every request, giving the agent continuous, growing context.

Can I use skills from CLAUDE.md or OpenClaw?

Yes. HybridClaw supports OpenClaw/CLAUDE-compatible SKILL.md frontmatter, including always, requires, and metadata fields. Skills can be loaded from workspace, project .agents/skills, personal (~/.codex/~/.claude/~/.agents), bundled, or enterprise extra directories; higher-priority tiers override lower ones. Trust-aware scanning blocks risky personal/community skills while allowing vetted bundled skills.