psykeeper 𐁉

Despite being a popular buzzword on Twitter and The Most Hyped Thing Lately, AI agents seem to be suffering some declining statistics and *gasp* charts going down and to the right. What explains this glaring discrepancy? The most valuable thing an agent can do is anything you could do yourself. In that case, why haven't we seen payments taking off in the agent space? Agents are still too hard to use securely. To make an agent secure enough to handle payments, a lot of upfront logistics and programming work is required. This requires both spare time and specialized expertise. The agent needs its own account on every service that you use, and in many cases needs its own credit card for each service. Agents are still largely experimental; there isn't a lot of structure given to them when they're granted access to accounts with a payment system. This can easily lead to runway spending, paid services getting silently canceled, or payments for products that are not needed. Incorrect decisions by the LLM can lead to real loss of funds, which is unacceptable, yet unavoidable given the current state of agentic AI. In my own experience, I've only found some services like Cloudflare, DynaDot, and a few others with granular access controls. This feature restricts agents to using actions from a list they're constrained to, and as a result they don't have full control over your account. You can go one level above this access control list and spin up a new Privacy Dot Com debit card with daily/monthly limits and a spending cap, or in some cases you can preload cash into your account (depending on the service, cloudflare for example does not have this). In most cases there needs to be an attached credit card. Many times the temporary or restricted cards get declined or are incompatible with the service due to payment gateways, regional restrictions, or another unknown reason due to tradfi being old and stupid. True story: my Venmo account stopped working because it says my "ZIP Code is invalid" (???). TL;DR, most websites and service providers online haven't built their payment systems and payment rails in a way that's agent friendly, and AI agents still don't come out-of-the-box with a reasonably secure structure to avoid making costly mistakes. If you yololog your agent into an Amazon account with no guardrails then you will inevitably find that it made the wrong decision or was able to do too much with the access that it was given in an insecure and unrestricted way, leading to financial loss. It's still early, and one thing is abundantly clear to me, agents are the future for a lot of tasks. They just need to grow past this experimental stage into usable products for normal people who don't have finance or tech expertise.

Zillions or Zero? The most shocking thing about the zcash:native exploit is the human element. It took a person to prompt "hey check that codebase rq" for it to be exploited. At this stage of the game I would have expected an agent to find something like this weeks before a human.

My openclaw lives on its own VPS, which means it can do stuff using installed programs that Codex can't do unless it's got access to install programs on your computer, which is a security concern. It also creates a new website for each thing it does. My agent has been building an organized site with new pages for all of the knowledge it has accumulated over the weeks I've used it, including a few apps it's one-shot. People have found these apps useful for solving niche problems, and I can easily share hours of agent research with my peers to review it. This isn't really possible with an LLM harness alone, you need always-on filesystem access, and a webserver.