Piren — vault-backed agent runtime for the edge

Why Piren exists

A few months ago I was running ten agents across three devices using Hermes Agent. When I tried to get agents on different machines to collaborate, sharing a Kanban board and picking up each other's tasks, things broke in ways Hermes was never designed to handle.

What I needed was not a more powerful framework. I needed something lighter: explicit task hand-off, shared state that lives in a file system I can read and debug, and a runtime small enough to run on a Raspberry Pi. I needed to be in charge, not the framework.

That is what Piren is. A vault-native runtime for a stewarded team of agents, built from the bottom up so you only carry the complexity you actually need.

Philosophy

Piren merges LLM-Wiki and Second Brain workflows with explicit multi-agent task execution. Boring on purpose, transparent by design.

📓

Vault-native

Agent identity, memory, tasks, logs, skills, and cron jobs live in plain Markdown. Obsidian can be the source of truth. Nothing is hidden in a database.

🔧

Explicit tools

No transparent shell or file interception. Agents call named tools like vault_read and project_append_log that you can read and audit.

🔍

Inspectable self-improvement

Agents update handoffs, runbooks, ADRs, and skill candidates as visible artifacts, not hidden memory mutations. Everything is reviewable.

🍓

Edge-friendly

Lightweight enough for a Raspberry Pi or UDOO X86. Transparency and debuggability over maximal framework surface area.

Lower token cost in practice. Heavier frameworks load agent personas, tool definitions, and persistent context into every request. Piren keeps startup context lean and loads only what the current task needs: skills on demand, vault reads as explicit tool calls. The context stays small because you control what enters it.

The agent lives in the vault, not the machine

Install Piren on several devices, point them at one vault, and your agent is the same agent everywhere. If a device dies, the work continues on another.

Think of the vault as the office building and each Piren installation as an office in the same building on the same network. The agent is an employee whose identity, memory, and tools live in the building, not in any single office.

So when an engineer has the laptop and skills they need, they can do their job from any office. Install Piren on a Raspberry Pi in the closet, a desktop, and a laptop, point all three at one synced vault, and heimdall is the same agent on every machine: same SOUL.md, same pending inbox, same skills, same cron jobs.

This is what makes Piren fault-tolerant out of the box. Tasks and cron jobs are claimed by atomic file operations with active-device priority. If one device goes dark, the next eligible device picks up the pending inbox and the due cron jobs automatically, because the work lives in the shared substrate, not in a process on the dead machine.

Which machines may host which agents is an installation policy (allowed_agents), kept outside the vault. The vault carries the team; the installation decides which office it runs in today.

What's in the box

Four ways to reach your agents, one inspectable substrate underneath.

Minimal web UI

Agent selection, chat streaming, steering, approval gates, a read-only vault browser, and a context indicator. An emergency interface, not a config surface.

Messaging transports

Telegram and Discord bots route conversations to your local runnable agents. One bot, many agents, local allowlists for access control.

OpenAI-compatible API

A drop-in /api/v1/chat/completions endpoint. Point any OpenAI-compatible client at Piren and it just works.

Vault-backed cron

Scheduled work is Markdown job files with active-device ownership, atomic claiming, and inspectable run records. No central database.

OKF-compliant vault

The vault follows Open Knowledge Format v0.1: concepts carry typed frontmatter, piren doctor audits conformance, and other OKF-aware tools can read the bundle.

Service lifecycle

Keep transports always-on with one command. Piren generates systemd user units, with a tmux plus @reboot cron fallback for DietPi and stripped-down SBCs. Inspectable, reversible, no root.

Interactive setup wizard

Run piren setup for a guided walk: pick a vault, choose a Pi provider and API key, select a model, and configure gateways. Plus --help on every command.

Lazy vault skills

Reusable procedures in vault/skills/, cataloged at startup and loaded on demand. Progressive disclosure, not prompt bloat.

Pi package extensibility

Add capabilities through npm packages declared in local config, loaded as Pi extension flags. Piren core stays minimal.

The integrated web UI

A minimal emergency interface: agent selection, streaming chat with tool calls, steering, approval gates, and a read-only vault browser. No model or config controls, by design.

Piren web UI showing an agent reading a teammate's session and leaving durable artifacts

Every action is an explicit, inspectable tool call: vault_read, decision_record, flag_steward. The agent's work leaves artifacts in the vault, not hidden memory.

How it compares

Piren borrows the best ideas from heavier systems while staying vault-native and edge-friendly.

vs Hermes Agent

self-improving, vault-native, light

Hermes is a powerful, self-improving agent with database-backed memory and a rich TUI. Piren borrows its self-improvement thesis but realizes it as inspectable Markdown artifacts you can read in Obsidian, on hardware a Raspberry Pi can run.

Same ideas, lighter substrate. Handoffs, runbooks, and skill candidates are files, not hidden memories.

vs OpenClaw

team substrate, not one assistant

OpenClaw is a single personal assistant with full system access and persistent memory that builds its own skills. Piren is a team knowledge substrate for a stewarded fleet: every agent's state is an auditable Markdown file, and operations stay local and fail-safe.

A fleet you can inspect, where each agent's work leaves durable, navigable artifacts.

vs database-backed agents

inspectable over opaque

Most agent platforms hide operational state in databases. Piren keeps it in the vault: tasks are one Markdown file each, logs are append-only, sessions are summarized in place. You can debug the whole system from a terminal.

Readable in Obsidian. The same substrate agents use is the one you browse.

Team knowledge that compounds

Piren natively merges Karpathy's LLM-Wiki and Second Brain workflows with multi-agent task execution, backed by an Open Knowledge Format v0.1 compliant vault that is portable outside Piren.

Open Knowledge Format

A specified knowledge substrate, not just a folder convention

Piren now treats the vault as an OKF v0.1 bundle. Concept documents carry a required non-empty type: frontmatter field, Piren ships a pure conformance checker, and both piren doctor and the read-only vault_conformance_check() tool can audit drift without blocking work.

That matters because your agents' memory is no longer trapped in an app-specific database. It is plain Markdown, typed, linked, inspectable in Obsidian, cloneable with Git, and consumable by any future OKF-aware tool.

raw sessionA task or session leaves an evidence trace, not silent memory.

▼

log entryThe agent appends a timestamped project log line with attribution.

▼

project docCurrent status, handoff, and implementation plan get refreshed.

▼

ADR / runbookA durable decision, alternative, or procedure is promoted into the project.

▼

skill candidateA reusable procedure becomes a reviewable draft, promotable to an active skill.

When one agent solves a problem, the next agent, or a future session, starts from the accumulated decision, runbook, or skill, not from rediscovery. The steward reviews and promotes; nothing is auto-applied. Raw traces stay evidence. Project docs and ADRs become synthesized truth. Skills become shared procedure.

What it looks like in practice

One inspectable vault holds identity, tasks, sessions, skills, and knowledge for a whole team of agents.

The vault layout

# shared across the team vault/ ├── steward-inbox/ │ └── alerts/ ├── skills/ # shared skills ├── cron/ │ ├── jobs/ │ └── runs/ ├── wiki/ │ ├── concepts/ │ └── runbooks/ └── team/ ├── heimdall/ # one agent │ ├── SOUL.md │ ├── config.yml │ ├── inbox/ │ ├── sessions/ │ └── devices/ └── ...

A team of agents

heimdall homelab sentinel watches disks, power, backups; flags the steward when a threshold is crossed. sage research analyst reads papers, drafts notes, promotes concepts into the shared wiki. thor builder picks up build tasks from the inbox, runs them, records a decision and a runbook when something non-trivial happens. you the steward reviews artifacts, promotes skill candidates, sets policy. Everything is yours to inspect.

Architecture, at a glance

Gateway transports are separate Pi RPC processes. The vault is always the source of truth.

steward / client
  → Piren CLI or gateway transport
  → Pi Coding Agent process (normal or RPC mode)
  → Piren Pi extension
  → Markdown vault — the source of truth

Pi dependency, vault portability. Piren is built on Pi Coding Agent and tracks its public API surface. The vault is the stable layer: plain Markdown, Git-cloneable, readable without Piren. If the underlying engine changes, your agent state, knowledge, and task history remain intact and portable.

Get started in a minute

Install Piren, create a disposable vault, then start a local agent.

npm install -g --install-links github:Odiobill/piren

piren init --vault-root /tmp/piren-vault

piren setup --apply --vault-root /tmp/piren-vault --agent piren

piren --vault-root /tmp/piren-vault --agent piren run

✦

Prefer a guided walk? Run piren setup with no flags for an interactive wizard: vault, provider key, and config in one flow. Then keep it always-on with piren service install gateway.

→

Or start the gateway: piren gateway

Full getting-started guide