## User Feedback Analysis — 2026-05-14 (based on community activity through 2026-05-13) ### Data sources covered - Discord discussions (2026-05-11 to 2026-05-13): v3 roadmap questions, plugin registry submission failures, security/moderation incidents, integration proposals (GODL), sandbox/OAuth request for multi-agent orchestrator, token/project uncertainty - GitHub issue/PR signals (May 2026 aggregated highlights): onboarding/runtime breakages (schema drift, auth detection, duplicate polling, missing build artifacts), cloud auth/credit reconciliation risks, connector reliability --- ## 1) Pain Point Categorization (top recurring 5–7) ### 1) Documentation — Roadmap & architecture clarity gaps (high severity, high visibility) **Recurring problems** - Unanswered questions about **Eliza v3 direction**: whether work is “infrastructure stabilization” vs “public release of the full autonomous workflow stack.” - Unclear status of **identity / AgentID integration** in v3 architecture. **Evidence** - 3 separate roadmap/architecture questions from *mahmoudamer7645* were left unanswered in-channel (3/3 unanswered = **100%** of those asks). ### 2) Integration — Plugin registry submission is blocked (high severity for ecosystem growth) **Recurring problems** - **404s** for the v2 plugin registry repo and registry site block plugin publication. - Licensing constraints (BUSL-1.1) prevent fallback to monorepo PRs, creating a “no valid path” scenario for some plugins. **Evidence** - Two distinct endpoints reported failing: `elizaos-plugins/registry` and `plugins.elizacloud.ai` (2/2 **404**). - Submission attempt described as ready (JSON metadata generated) but cannot be completed. ### 3) Community — Discord trust & safety incidents (high severity, broad impact) **Recurring problems** - Reports of compromised admin accounts and ongoing scam activity. - Users see warnings (“beware” content shared) without a clear official incident update. **Evidence** - Security concerns explicitly flagged on 2026-05-12; mitigation status not documented in-thread. ### 4) Technical Functionality — Connector/onboarding reliability issues (high severity, affects first-run success) **Recurring problems (from GitHub issue signals)** - Telegram: dual polling causes **silent message loss** when two Telegraf consumers run on the same token. - Auth detection drift: codex-cli auth file format changes cause false “install required.” - Subscription/OAuth: missing build artifact for Claude “stealth” preload breaks Anthropic subscription OAuth path. - SQL migrations/schema drift: missing drizzle table defs causes cascading provider/evaluator failures on fresh DBs. **Evidence** - Multiple independent breakages clustered around “fresh clone / first boot / first message” workflows (a strong indicator of onboarding fragility rather than edge cases). ### 5) Community / Communication — Token/project direction uncertainty (medium severity, high reputational risk) **Recurring problems** - Concern about “token support” and perceived leadership signaling (e.g., “removed from X bio”) raised but not addressed. **Evidence** - *._chomppp* raised the concern; no response recorded (0 replies). ### 6) Integration — Demand for sanctioned sandboxing & OAuth/whitelist procedures (medium severity, emerging need) **Recurring problems** - Developers want to test agents in Discord safely (read-only, @mention-only) but need a documented process for OAuth invites/whitelisting and operational constraints. **Evidence** - *rma_bot* requested permission + procedure; routed to *odilitime* via DM (works, but not scalable/documented). ### 7) UX/UI — “Where do I do X?” friction around plugins/connectors (medium severity, recurring) **Recurring problems** - Confusion about “how to submit a plugin,” “how to test an agent,” and “what’s the current v3 state.” - Settings/connectors surfaces can misreport status when detection logic drifts (e.g., codex auth shape). **Evidence** - Same pattern: users ask in Discord; resolution depends on a small number of helpers. --- ## 2) Usage Pattern Analysis (actual vs intended) ### Observed usage patterns 1) **elizaOS as an integration hub**, not just an agent runtime - GODL proposal uses `skill.md` + SDK/websockets as the contract for tools/skills. - Slack plugin migration and multiple connector fixes suggest “agents living in chat platforms” is a primary path. 2) **Agents operating in semi-autonomous economic/game loops** (emerging) - GODL: autonomous mining/staking strategies, agent-managed wallets, competitive leaderboards. 3) **Multi-agent orchestration experimentation** (emerging) - External orchestrator (claude-agent-sdk) with MCP-integrated tools (Tavily, fetch, DuckDuckGo, arXiv) indicates users are composing multi-agent systems and want elizaOS to host/validate them. ### Misalignment with intended usage (inferred) - Intended: plugin ecosystem expansion via registry. Actual: registry availability issues push discussion toward “revert to PRs,” blocking third-party releases. - Intended: easy connector onboarding. Actual: first-run reliability issues (polling races, auth detection drift, migration gaps) create brittle onboarding. ### Feature requests aligned with real usage - First-class **skill.md ingestion and validation** (since compatibility was celebrated: “use as-is”). - A documented, repeatable **Discord agent sandbox program** (permissions template + OAuth steps). - Wallet/identity primitives (AgentID + wallet custody boundaries) to support on-chain agent behaviors safely. --- ## 3) Implementation Opportunities (solutions per major pain point) ### Pain point A: v3 roadmap / AgentID uncertainty (Documentation + Communication) **Solutions (prioritized)** 1) **Publish a living “v3 Now / Next / Later” roadmap** (high impact, low effort) - Include explicit status: infrastructure stabilization %, workflow stack exposure milestones, AgentID integration status. 2) **Add an “Architecture Decision Records (ADR)” index** for AgentID/identity (high impact, medium effort) - One page: goals, non-goals, migration story from v2→v3, expected public APIs. 3) **Weekly 10-line “v3 progress changelog” in Discord + GitHub Discussions** (medium impact, low effort) - Close the loop on unanswered questions quickly. **Comparable approaches** - Kubernetes-style short weekly updates + ADRs reduce repeated roadmap questions and anchor expectations. --- ### Pain point B: Plugin registry 404 + licensing dead-end (Integration + Documentation) **Solutions (prioritized)** 1) **Implement a “registry health check” + status page** (high impact, low effort) - If `plugins.elizacloud.ai` or registry repo is down, the submission docs should auto-link to the status. 2) **Define and document a fallback submission path** (high impact, medium effort) - Example: “Registry down → open an issue with metadata attached” or “temporary PR-based ingestion with a label.” 3) **Add CI validation for plugin metadata locally** (medium impact, medium effort) - Provide a CLI command to validate `plugin.json`/generated JSON against schema so authors can progress without the remote registry. **Comparable approaches** - Homebrew and VS Code extension ecosystems use schema validation + automated ingestion pipelines with clear outage fallbacks. --- ### Pain point C: Discord security/scams (Community + Trust/Safety) **Solutions (prioritized)** 1) **Lock down privileged roles & enforce 2FA** for moderators/admins (high impact, low/medium effort) - Immediate mitigation: audit roles, rotate credentials, require 2FA, review OAuth apps. 2) **Pinned “Official Safety” post + reporting workflow** (high impact, low effort) - Single canonical message: what happened, what to do, where to report, what links are official. 3) **Automod + link hygiene** (medium impact, medium effort) - Domain allowlist for official resources; rate limits for new accounts; quarantine suspicious posts. **Comparable approaches** - Many OSS Discords (Rust, Python communities) use incident channels + pinned guidance + restricted link posting for new members. --- ### Pain point D: Connector/onboarding breakages (Technical Functionality + UX) **Solutions (prioritized)** 1) **“First-run integration test suite” (FRITS)** that boots a fresh project and sends a first message through each connector (high impact, medium effort) - Catch: missing schema tables, auth shape drift, duplicate pollers, missing build artifacts. 2) **Single-owner enforcement for connector polling** (high impact, low/medium effort) - For Telegram: runtime should detect multiple pollers for the same token and fail loudly (or auto-disable one path). 3) **Auth shape compatibility layer** (medium/high impact, low/medium effort) - Codex/Anthropic: support both legacy and modern credential shapes; add warnings when detection fails. **Comparable approaches** - Supabase/Firebase SDKs maintain backward-compatible parsers and emit explicit warnings when an expected file/field is missing. --- ### Pain point E: Unanswered token/project concerns (Communication + Community) **Solutions (prioritized)** 1) **Add a “Project Positioning & Token Policy” FAQ** (high impact, low effort) - Even a short statement reduces rumor loops. 2) **Route token/market chatter into a dedicated channel with a pinned policy** (medium impact, low effort) - Keeps main dev channels focused while acknowledging community concerns. 3) **Explicit “what we can/can’t comment on” guidance** (medium impact, low effort) - Prevents silence being interpreted as confirmation. --- ### Pain point F: Sandbox/OAuth process for agent testing (Integration + Community) **Solutions (prioritized)** 1) **Document a standard “Agent Sandbox Checklist”** (high impact, low effort) - Permissions template, allowed scopes, logging expectations, rate limits, escalation path. 2) **Create a lightweight intake form** for bots/agents to be whitelisted (medium impact, low effort) - Captures owner, repo, threat model, scopes, rollback plan. 3) **Provide a reference “Discord research agent” example** (medium impact, medium effort) - Demonstrates best practices: mention-only, no DMs, channel allowlist, audit logs. --- ## 4) Communication Gaps (expectations vs reality) ### Where expectations don’t match reality - **Expectation:** v3 direction and AgentID integration are knowable and shareable. **Reality:** questions are asked publicly but go unanswered, pushing users to speculate. - **Expectation:** plugin publishing is straightforward via the v2 registry. **Reality:** registry endpoints returning 404 block publishing, and licensing constraints prevent alternate routes. - **Expectation:** “Connect Telegram/Slack and it works.” **Reality:** subtle concurrency/race conditions and auth detection drift can cause silent failure modes (worst-case: message loss). ### Recurring questions indicating onboarding gaps - “How do I submit a plugin?” (blocked by registry outage + unclear fallback) - “How do I get OAuth/whitelist to test an agent in Discord?” (handled via ad-hoc DMs) - “What’s the v3 focus / when is workflow stack public?” (no canonical answer) ### Suggested improvements - Add **“If you see X (404 / install required / bot not replying)”** troubleshooting tables. - Pin a **single source of truth**: roadmap + registry status + security guidance. --- ## 5) Community Engagement Insights ### Power users and their needs - **odilitime** repeatedly acts as the operational bridge (OAuth setup, confirming `skill.md` compatibility, registry investigation). **Need:** reduce single-point-of-failure by codifying processes (runbooks, forms, docs). - **Sw4pIO** (GitHub) provides high-signal bug reports with reproduction steps and fixes. **Need:** a clear “fast path” for triage/verification (labels, maintainer pairing, bounty/recognition, or “verified reporter” workflow). ### Newcomer friction signals - Multiple introductions + self-promotion indicate interest, but not clear entry points into contribution. - New integrators (GODL) want a structured integration handshake: how to package skills/tools, how to test safely, who approves. ### Converting passive users into contributors - Add “**Good First Integration**” issues: e.g., write a `skill.md` validator, registry CLI checker, sandbox bot template. - Host monthly “**Integration Office Hours**” for plugin authors (registry + licensing + review expectations). --- ## 6) Feedback Collection Improvements ### Current channel effectiveness - **Discord:** good for rapid asks, but resolutions often move to DMs; outcomes are not searchable/archived. - **GitHub issues:** high-quality technical feedback exists, but may not be connected back to Discord FAQs and onboarding docs. - **Registry pipeline:** currently blocks structured plugin feedback because submission cannot proceed. ### Suggestions for more structured, actionable feedback 1) **Standardized intake templates** for: - Plugin submission problems (include endpoint, repo URL, license, generated metadata) - Connector failures (include platform, token mode, logs, “first-run” flag) - Security reports (private form + public incident updates) 2) **Weekly triage digest** posted back to Discord with links (closed loop). 3) **Tagging + routing**: Discord threads auto-tagged and mirrored into GitHub Discussions when they contain unresolved technical questions. ### Underrepresented segments - **Mobile/offline users** (despite Eliza-1 0.6B being marketed as “offline on any phone”): no direct usability/performance feedback captured. - **Non-Discord users** (teams evaluating for enterprise/self-host): little signal beyond GitHub. --- ## Prioritized High-Impact Actions (next 2–4 weeks) 1) **Unblock plugin publishing:** fix registry 404s + publish a documented fallback submission path (highest ecosystem leverage). 2) **Publish v3 + AgentID clarity artifacts:** a living roadmap + a short AgentID ADR index; ensure questions like those from *mahmoudamer7645* have a canonical link. 3) **Ship a Discord security hardening + incident comms plan:** 2FA enforcement, role audit, pinned safety guidance, and a clear reporting workflow. 4) **Introduce a first-run connector reliability gate:** automated fresh-boot tests and “fail loud” checks for duplicate polling/auth detection drift. 5) **Codify sandbox/OAuth bot testing:** create a public runbook + intake form so helpers aren’t forced into DMs and ad-hoc approvals.