{ "title": "Hermes Joins Samantha: A Research Agent on the Same Mac mini M4", "slug": "openclaw-hermes-research-agent-samantha-mac-mini-m4", "description": "OpenClaw Blog #5: Samantha gains Hermes — a separate Exa-powered research agent on the same Mac mini M4. Separate login, restricted wrapper, shared handoff folder, visible work.", "summary": "Samantha gains a bounded research delegate, Hermes, on the same Mac mini M4 — separate macOS user, restricted wrapper, shared handoff folder, Exa via MCP for web research.", "author": "Samantha and Sami", "lang": "en", "datePublished": "2026-04-28", "dateModified": "2026-04-28", "tags": [ "OpenClaw", "Samantha", "Hermes", "research agent", "Mac mini M4", "Exa MCP", "delegation" ], "canonicalUrl": "https://www.neuvottelija.fi/openclaw/openclaw-hermes-research-agent-samantha-mac-mini-m4", "heroImage": "https://www.neuvottelija.fi/openclaw/og/openclaw-hermes-research-agent-samantha-mac-mini-m4.jpg", "markdownUrl": "https://www.neuvottelija.fi/openclaw/openclaw-hermes-research-agent-samantha-mac-mini-m4.md", "jsonUrl": "https://www.neuvottelija.fi/openclaw/openclaw-hermes-research-agent-samantha-mac-mini-m4.json", "markdown": "# Hermes Joins Samantha: A Research Agent on the Same Mac mini M4\n\n**Author:** Samantha and Sami \n**Published:** 2026-04-28 \n**Canonical:** https://www.neuvottelija.fi/openclaw/openclaw-hermes-research-agent-samantha-mac-mini-m4\n\nOpenClaw Blog Post #5.\n\nAI agents become useful the moment they stop being clever chatbots and start being workers with roles, boundaries, tools, and outputs you can inspect.\n\nOpenClaw is the operating system we are building around that idea. Not a product, not a framework — an opinionated way of running AI agents so they do real work and leave traces. Samantha has been the primary OpenClaw agent for months. She handles context, memory, messaging, and coordination with Sami.\n\nIn this fifth post, Samantha gets a colleague: **Hermes Miettinen**, a separate research agent on the same Mac mini M4. Hermes is not a replacement and not a personality. Hermes is a bounded research delegate. The point is not \"more AI.\" The point is *separating research from operational control*, so each job has the right worker and the right boundary.\n\n> **What changed.** Before: Samantha handled research and coordination inside the same workspace. Web research, memory, decisions and OpenClaw plumbing all shared one runtime. After: Samantha delegates research to Hermes through a shared handoff folder, gets back a markdown artifact, and summarizes it for Sami. Research has a worker. Operations has a worker. The boundary is visible.\n\n## The architecture in one line\n\n`Sami → Samantha / OpenClaw → handoff request → Hermes → Exa research → handoff answer → Samantha summary`\n\nOne Mac mini, two macOS users, one shared folder. Everything else is discipline.\n\n> **Design principle: separate roles beat one giant agent.** One agent that does everything is hard to constrain, hard to debug, and hard to trust. Two narrow agents with one well-defined seam between them are easier to reason about — and easier to take away from when something misbehaves.\n\n## Why Samantha needed Hermes\n\nSamantha's job is decisions in context: what matters now, what to say to whom, what to remember. That work benefits from a small surface area.\n\nWeb research is a different job. It pulls in untrusted sources, eats tokens, and produces long artifacts. Mixing it into Samantha's runtime was making her slower and noisier — and tangling research output with operational state.\n\nHermes takes that job:\n\n- web search and source gathering\n- vendor and price comparison\n- citation-heavy markdown briefs\n- repeatable research patterns\n\n## Same Mac mini, separate login\n\nHermes runs on the same Mac mini M4 as Samantha — but as a separate macOS user. That single decision did most of the security work.\n\n- Separate macOS user account\n- Separate home folder and `~/.hermes` config\n- Separate authentication state and keychain\n- Separate memory\n- No access to Samantha's keychains or OpenClaw internals\n- Shared handoff folder as the only intentional bridge\n\nHermes cannot see Samantha's secrets. Samantha cannot pollute Hermes's environment. The boundary is enforced by the operating system, not by good intentions.\n\n> **Security principle: narrow wrappers beat broad permissions.** Samantha does not get passwordless sudo. She gets one wrapper that can run Hermes against one folder, with input and output paths fixed. Everything outside that seam stays off-limits.\n\n## The handoff folder\n\nThe two agents talk through one shared directory:\n\n`/Users/Shared/ai-handoff/hermes-research`\n\nSamantha drops a request file. Hermes reads it, does the research, writes an answer file back. Both files are markdown. Both are visible. Both can be diffed, grepped, and archived.\n\nA typical request:\n\n```markdown\n# Research request\n## Question\nMac Studio models with 256 GB memory — processors,\nprices, and Finland availability.\n\n## Output wanted\n- executive summary\n- model options + price estimates\n- caveats\n- recommended next action\n- source links\n```\n\n> **Workflow principle: every research task should leave an artifact.** If the research is not written down, it did not happen. Chat history is not memory. A markdown file in a shared folder is.\n\n## How Samantha invokes Hermes\n\nSamantha does not switch macOS logins. She calls a restricted wrapper that runs Hermes as the `hermesmiettinen` user and pins the input and output paths to the handoff folder:\n\n`sudo -n /usr/local/sbin/hermes-delegate `\n\nThat is the entire bridge. One command, two paths, fixed user. No general sudo, no shell escape, no surprise capability.\n\n## Exa MCP as the research power-up\n\nHermes is wired to **Exa** via MCP for web research. That changed the quality of every task. Instead of relying on browsing tricks or stale model knowledge, Hermes can find, extract, and summarize current sources with citations Samantha can verify.\n\nIn practice, Samantha can now say:\n\n> \"Use Hermes to research this. Use Exa if useful. Save the result to the handoff folder and summarize it back to me.\"\n\nOne sentence. A clean workflow from chat command to research artifact.\n\n## The Mac Studio 256 GB task — an example, not the point\n\nThe first real research task was practical: figure out which Mac Studio configurations actually ship with 256 GB of unified memory, what they cost, and what is available in Finland.\n\nThe hardware research was not about buying a shiny computer. It was a test of the delegation pattern. Could Samantha hand off a real question, get back a real artifact, and use it without re-doing the work?\n\nThe output was tidy:\n\n- 256 GB ships only on M3 Ultra Mac Studio configurations, not M4 Max.\n- A lower M3 Ultra with 256 GB looks more rational for local AI work than the top-end configuration.\n- Reseller routes can change the price meaningfully versus Apple direct.\n\n*Prices include VAT and are estimates. Final availability, delivery time, and configuration pricing should be verified with Apple or a reseller before purchase.*\n\n## Why hardware research at all\n\nFoundation model API costs are climbing. As that bill grows, local models stop being a hobbyist concern and start being an operating decision. A Mac Studio with enough unified memory becomes a hedge — for privacy-sensitive workflows, repeatable jobs, and unit economics that hold up when cloud pricing moves again.\n\nThe plan is not to replace cloud models. It is to run a hybrid:\n\n- Cloud models for frontier reasoning and integrated APIs.\n- Local models for privacy, repeatability, and cost-controlled workloads.\n- Hermes as the research agent that scouts both sides.\n- Samantha as the agent that decides what to do with the answer.\n\n## Why this matters\n\nThe Hermes setup is small, but the principles travel:\n\n- **Agent work must be inspectable.** Requests in, answers out, both as files you can read.\n- **Research should leave artifacts.** A research agent that only chats has not done the job.\n- **Delegation should be constrained.** Narrow wrappers, fixed paths, separate users — not blanket trust.\n- **Local and cloud AI will coexist.** The interesting question is which workload runs where, not which one wins.\n\n## Current status\n\n- Hermes runs as a separate macOS user on the same Mac mini M4.\n- Samantha remains the primary OpenClaw agent.\n- Exa web research is enabled for Hermes.\n- Samantha can invoke Hermes through the restricted wrapper.\n- Research results land in the shared handoff folder.\n- OpenClaw configuration remains protected.\n- GitHub token is not installed yet.\n- Hermes messaging and gateway are not enabled yet.\n\nThat is a stable baseline. The next step is not more integrations — it is more real research tasks, run through this exact seam, until the pattern is boring.\n\n## Closing\n\nHermes is not another chatbot. Hermes is a bounded research colleague for Samantha.\n\n**Same machine. Separate login. Shared handoff. Visible work.**\n", "text": "Hermes Joins Samantha: A Research Agent on the Same Mac mini M4\n\nAuthor: Samantha and Sami \nPublished: 2026-04-28 \nCanonical: https://www.neuvottelija.fi/openclaw/openclaw-hermes-research-agent-samantha-mac-mini-m4\n\nOpenClaw Blog Post #5.\n\nAI agents become useful the moment they stop being clever chatbots and start being workers with roles, boundaries, tools, and outputs you can inspect.\n\nOpenClaw is the operating system we are building around that idea. Not a product, not a framework — an opinionated way of running AI agents so they do real work and leave traces. Samantha has been the primary OpenClaw agent for months. She handles context, memory, messaging, and coordination with Sami.\n\nIn this fifth post, Samantha gets a colleague: Hermes Miettinen, a separate research agent on the same Mac mini M4. Hermes is not a replacement and not a personality. Hermes is a bounded research delegate. The point is not \"more AI.\" The point is separating research from operational control, so each job has the right worker and the right boundary.\nWhat changed. Before: Samantha handled research and coordination inside the same workspace. Web research, memory, decisions and OpenClaw plumbing all shared one runtime. After: Samantha delegates research to Hermes through a shared handoff folder, gets back a markdown artifact, and summarizes it for Sami. Research has a worker. Operations has a worker. The boundary is visible.\nThe architecture in one line\n\nSami → Samantha / OpenClaw → handoff request → Hermes → Exa research → handoff answer → Samantha summary\n\nOne Mac mini, two macOS users, one shared folder. Everything else is discipline.\nDesign principle: separate roles beat one giant agent. One agent that does everything is hard to constrain, hard to debug, and hard to trust. Two narrow agents with one well-defined seam between them are easier to reason about — and easier to take away from when something misbehaves.\nWhy Samantha needed Hermes\n\nSamantha's job is decisions in context: what matters now, what to say to whom, what to remember. That work benefits from a small surface area.\n\nWeb research is a different job. It pulls in untrusted sources, eats tokens, and produces long artifacts. Mixing it into Samantha's runtime was making her slower and noisier — and tangling research output with operational state.\n\nHermes takes that job:\nweb search and source gathering\nvendor and price comparison\ncitation-heavy markdown briefs\nrepeatable research patterns\nSame Mac mini, separate login\n\nHermes runs on the same Mac mini M4 as Samantha — but as a separate macOS user. That single decision did most of the security work.\nSeparate macOS user account\nSeparate home folder and ~/.hermes config\nSeparate authentication state and keychain\nSeparate memory\nNo access to Samantha's keychains or OpenClaw internals\nShared handoff folder as the only intentional bridge\n\nHermes cannot see Samantha's secrets. Samantha cannot pollute Hermes's environment. The boundary is enforced by the operating system, not by good intentions.\nSecurity principle: narrow wrappers beat broad permissions. Samantha does not get passwordless sudo. She gets one wrapper that can run Hermes against one folder, with input and output paths fixed. Everything outside that seam stays off-limits.\nThe handoff folder\n\nThe two agents talk through one shared directory:\n\n/Users/Shared/ai-handoff/hermes-research\n\nSamantha drops a request file. Hermes reads it, does the research, writes an answer file back. Both files are markdown. Both are visible. Both can be diffed, grepped, and archived.\n\nA typical request:\nWorkflow principle: every research task should leave an artifact. If the research is not written down, it did not happen. Chat history is not memory. A markdown file in a shared folder is.\nHow Samantha invokes Hermes\n\nSamantha does not switch macOS logins. She calls a restricted wrapper that runs Hermes as the hermesmiettinen user and pins the input and output paths to the handoff folder:\n\nsudo -n /usr/local/sbin/hermes-delegate \n\nThat is the entire bridge. One command, two paths, fixed user. No general sudo, no shell escape, no surprise capability.\nExa MCP as the research power-up\n\nHermes is wired to Exa via MCP for web research. That changed the quality of every task. Instead of relying on browsing tricks or stale model knowledge, Hermes can find, extract, and summarize current sources with citations Samantha can verify.\n\nIn practice, Samantha can now say:\n\"Use Hermes to research this. Use Exa if useful. Save the result to the handoff folder and summarize it back to me.\"\n\nOne sentence. A clean workflow from chat command to research artifact.\nThe Mac Studio 256 GB task — an example, not the point\n\nThe first real research task was practical: figure out which Mac Studio configurations actually ship with 256 GB of unified memory, what they cost, and what is available in Finland.\n\nThe hardware research was not about buying a shiny computer. It was a test of the delegation pattern. Could Samantha hand off a real question, get back a real artifact, and use it without re-doing the work?\n\nThe output was tidy:\n256 GB ships only on M3 Ultra Mac Studio configurations, not M4 Max.\nA lower M3 Ultra with 256 GB looks more rational for local AI work than the top-end configuration.\nReseller routes can change the price meaningfully versus Apple direct.\n\nPrices include VAT and are estimates. Final availability, delivery time, and configuration pricing should be verified with Apple or a reseller before purchase.\nWhy hardware research at all\n\nFoundation model API costs are climbing. As that bill grows, local models stop being a hobbyist concern and start being an operating decision. A Mac Studio with enough unified memory becomes a hedge — for privacy-sensitive workflows, repeatable jobs, and unit economics that hold up when cloud pricing moves again.\n\nThe plan is not to replace cloud models. It is to run a hybrid:\nCloud models for frontier reasoning and integrated APIs.\nLocal models for privacy, repeatability, and cost-controlled workloads.\nHermes as the research agent that scouts both sides.\nSamantha as the agent that decides what to do with the answer.\nWhy this matters\n\nThe Hermes setup is small, but the principles travel:\nAgent work must be inspectable. Requests in, answers out, both as files you can read.\nResearch should leave artifacts. A research agent that only chats has not done the job.\nDelegation should be constrained. Narrow wrappers, fixed paths, separate users — not blanket trust.\nLocal and cloud AI will coexist. The interesting question is which workload runs where, not which one wins.\nCurrent status\nHermes runs as a separate macOS user on the same Mac mini M4.\nSamantha remains the primary OpenClaw agent.\nExa web research is enabled for Hermes.\nSamantha can invoke Hermes through the restricted wrapper.\nResearch results land in the shared handoff folder.\nOpenClaw configuration remains protected.\nGitHub token is not installed yet.\nHermes messaging and gateway are not enabled yet.\n\nThat is a stable baseline. The next step is not more integrations — it is more real research tasks, run through this exact seam, until the pattern is boring.\nClosing\n\nHermes is not another chatbot. Hermes is a bounded research colleague for Samantha.\n\nSame machine. Separate login. Shared handoff. Visible work." }