PicoClaw: The Edge-Hardware Harness
30,000+ stars. MIT. Go single-binary. Cross-compiles to RISC-V, MIPS, LoongArch. Real I2C/SPI/Serial tools for Sipeed hardware. The only harness that reads sensors and drives peripherals.
Hardware-native tools are the differentiator no other harness offers. I2C, SPI, and Serial ship in pkg/tools/hardware/ with per-OS implementations, 7-bit I2C address validation, byte caps (256 I2C / 4096 SPI), and confirm-on-writes. The MaixCAM channel turns the agent into a vision/IoT backend. Co-branded LicheeRV-Claw hardware is a real product.
Thin agent kernel, thick ecosystem — 'ultra-lightweight' describes runtime footprint, not codebase size. The kernel (tiny Markdown prompts, ~22 tools, append-only JSONL) runs on $10 hardware. The ecosystem (20+ channels, MCP, skills marketplace, voice, WebRTC) is for the desktop build. Total: 868 files, ~218k LOC. The two layers are decoupled.
Turn-boundary trimming is the Go implementation of Hermes's context-management insight. trimHistoryToFitContextWindow cuts at Turn boundaries so a tool-call sequence (assistant+ToolCalls → tool results) is never split. Splitting mid-sequence breaks the model. PicoClaw ships LoCoMo in cmd/membench to actually evaluate its memory — rare discipline for a project this young.
The novel hardware attack surface: the confirm-on-writes-only gate is necessary but insufficient. I2C/SPI/Serial access means a compromised agent can physically interact with hardware. Reads are UNGATED — a prompt-injected agent can silently read every sensor and exfiltrate physical-environment data. The fix is ZeroClaw-level autonomy gating (DD-16) on ALL hardware interactions.