# elizaOS Discord - 2025-03-24 ## Overall Discussion Highlights ### Security Concerns - **Princeton Research Paper**: A research team highlighted potential vulnerabilities in ElizaOS, which competitors like Sentient are using to spread FUD. The team is determining overlap with their known issues and plans to communicate risks more clearly regarding plugin isolation. - **Account Compromise**: Shaw's Twitter account was hacked through a connected app (not device compromise), posting fraudulent presale links. The team quickly responded by deleting malicious content and posting reminders about official links. - **Security Improvements**: An upcoming partnership with Immunefi was mentioned that could help address security issues. DorianD suggested improvements to the plugin registry including ratings, comments/analysis, and monetization to support security/bug bounties. ### Technical Developments - **PDF Integration**: Users discussed PDF ingestion capabilities for Eliza, where users can point to local folders in character files, though some challenges remain with handling large documents. - **Local Model Usage**: Detailed experiences using Ollama with different models (deepseek-r1:14b, deepseek-r1:8b, ph4:14b) were shared, highlighting tradeoffs between context window size and reasoning capabilities based on VRAM limitations. - **Plugin Ecosystem**: Several plugin-related discussions occurred, including issues with Discord client plugin compatibility with beta.7, YouTube integration possibilities, and Twitter plugin configuration. - **Telegram Integration**: Jin tested a powerful Telegram feature for chat summarization without explicitly inviting an agent, but this resulted in account lockout. Alternative approaches were discussed including using Telegram bots, Eliza agents, or services like Beeper. ### Tokenomics & Partnerships - **Token Clarification**: Only ai16z and degenai are official tokens, while the Eliza token is a separate community project. - **DegenAI Buyback**: Confirmation that DegenAI buyback is included in draft tokenomics but requires synchronization with "ai16z". - **Auto.fun Development**: Discussion about auto.fun, a token launchpad central to the tokenomics being developed. Lowes mentioned plans to integrate it with xnomad.fun to enable AI NFT agents to launch other agent tokens. - **Partner Benefits**: Partners gain access to exclusive channels, alpha information, potential airdrops, and possible governance features in the future. ### Community Organization - **Channel Structure**: The team created a new public Discord channel while keeping the current Spartan channel private for holders to receive early information. - **Documentation Improvements**: Jin shared documentation improvements with new buttons for copying markdown and updated LLM documentation files. ## Key Questions & Answers **Q: If anyone has any ideas on how I can ingest a bunch of pdf's into knowledge for eliza please let me know** A: Should be possible, we have pdf integration and I think can point to a local folder in the character file. (Patt) **Q: Is the Eliza token an official ai16z token?** A: No, eliza token is not ours. Only ai16z and degenai. (HoneyBadger) **Q: What perks does being an ai16z partner bring?** A: Join partner channels, access to alpha, potential airdrops, and possible governance features in the future. (Patt) **Q: Does elizaOS specifically have any functionality to make transactions?** A: Yes, our own agent Degen Spartan AI has done trading with his wallet on Solana. (Patt) **Q: Will the DegenAI buyback be included in the tokenomics?** A: It should be, it's in all my drafts but there's the ai16z side too that I need sync with still. (Odilitime) **Q: Can I use Eliza with Ollama?** A: Yes, by setting OLLAMA-related variables in .env file. (mtbc and chris.troutner) **Q: Is the diagram on eliza.how/docs/core/agents correct?** A: Yes, action's handler generates the response using LLM with generateText function. (Jox) **Q: How did the Princeton team's security findings affect ElizaOS?** A: Odilitime explained they're still determining overlap between findings, and that the team reached out directly. (Odilitime) **Q: What happened to Shaw's Twitter account?** A: It was compromised through a connected app, not through root access to his devices. (jin and Rick) ## Community Help & Collaboration - **PDF Integration Help**: Kenk suggested the firecrawl plugin to SecretRecipe for scraping from websites/documents when they were struggling with PDF ingestion. - **Ollama Integration Support**: Chris.troutner provided detailed guidance to marshal about using Eliza with Ollama, explaining the plugin-local-ai package and environment variable setup. - **Security Alert Collaboration**: When Shaw's account was hacked, multiple community members quickly identified the fraudulent posts, warned others not to interact with the links, and coordinated to have the malicious content removed. - **YouTube Integration Assistance**: Jin shared a GitHub link to a youtube-to-text plugin with Ordinal Watches, though noting it only works with v1 currently. - **Documentation Verification**: Jox helped winded4752 verify the accuracy of diagrams in the documentation, explaining the action handler flow. ## Action Items ### Technical Tasks - Fix duplicated message in response for client (cryptoAYA) - Fix docs metadata (jin) - Develop plugin upgrader for v2 compatibility (jin) - Investigate why npx elizaos test throws "Cannot read properties of undefined (reading 'listen')" error (dankvr) - Address unexpected topic bias in Twitter agent replies (dankvr) - Fix Telegram client compatibility with v1.0.0 (Alex) - Resolve Twitter client getting stuck issue (Abderahman) - Fix "@anush008/tokenizers-android-arm64" module error in Termux (marshal) - Create plugin-farcaster for v2-develop (dankvr) - Implement security measures to prevent Twitter account compromises (DorianD) - Develop auto.fun token launchpad for tokenomics (shaw) - Explore multi-sig or split key solutions for agent wallet control (DorianD) - Migrate Degen Spartan AI to V2 (Patt) - Synchronize tokenomics with ai16z team (Odilitime) - Implement separate public and private Discord channels (rhota) - Respond to FUD campaign against ElizaOS with explanations from team members (Zolo) - Implement safer alternatives for chat summarization (jin) - Treat GitHub as the main source of truth and maintain context there (jin) ### Documentation Tasks - Update diagram in eliza.how/docs/core/agents if needed (winded4752) - Create guide for RAG knowledge management (Vladimir) - Clarify the relationship between ElizaOS and the Eliza token (Patt) - Document the upcoming tokenomics for ai16z (HoneyBadger) - Finalize tokenomics documentation including DegenAI buyback details (Odilitime) - Create clear documentation about plugin security isolation (Odilitime) - Determine appropriate location for weekly summaries (jin) ### Feature Requests - Develop authentication plugin for user verification (Newt) - Add option to prevent Discord bot from joining voice channels (CoopyPoopy) - Implement a system to filter spam developer solicitations (Patt) - Create a "Jim Cramer Bot" for trading (Nolan) - Create a secondary gated forum for verified developers (yikesawjeez) - Twitter feed scraping and analysis agent for creating communication frameworks (Kenk) - Expand plugin registry to include ratings, comments/analysis from users and third parties (DorianD) - Add monetization to plugin registry to support security/bug bounties (DorianD) - Integrate auto.fun with xnomad.fun for AI NFT agents to launch tokens (Lowes) - Create a system to scrape messages across platforms and provide summaries (yikesawjeez)