Skip to content
Homelab Infrastructure

AI & Autonomous Management

This pillar focuses on integrating agentic AI (OpenClaw and OpenCode) to manage both the digital homelab and the physical house intelligently, privately, and securely.

1. NixOS Guardian (Admin Agent)

Section titled “1. NixOS Guardian (Admin Agent)”

Goal: Create a secure, natural-language interface for remote system management.

  • Capabilities:
    • Real-time monitoring of service health and status (systemctl).
    • Advanced troubleshooting by querying recent error logs.
    • Instant notifications for critical failures, such as Restic backup errors or storage capacity alerts.
  • Security Architecture:
    • Isolation: Deployment within dedicated NixOS Containers or MicroVMs.
    • Periscope Access: Read-only filesystem mounts for system journals and logs, preventing any unauthorized modification.
    • Least Privilege: Restricted sudo permissions limited to non-destructive status commands.

2. Smart Home Butler (Home Assistant Bridge)

Section titled “2. Smart Home Butler (Home Assistant Bridge)”

Goal: A context-aware natural language interface for property-wide automation.

  • Capabilities:
    • Intelligent execution of Home Assistant scripts based on intent (“Prepare the house for a movie”).
    • Spatial sensor data interpretation (e.g., “Analyze the humidity trends in the basement”).
  • Security Architecture:
    • Tool-based Constraints: The agent is restricted to a predefined “toolbox” of functions. It cannot invent new API calls or delete entities it hasn’t been explicitly granted access to.
    • Scoped Identity: Uses a dedicated “AI Agent” user in Home Assistant with strictly defined permissions.

3. Self-Healing Infrastructure (OpenCode Integration)

Section titled “3. Self-Healing Infrastructure (OpenCode Integration)”

Goal: Autonomous maintenance and optimization of the “Docs as Code” and NixOS repositories.

  • Capabilities:
    • Automated log analysis followed by configuration fix proposals via Pull Requests.
    • Continuous optimization of NixOS expressions, flake inputs, and documentation structures.
  • Security Architecture:
    • Git-based Workflow: The agent works on isolated branches and cannot push directly to main.
    • Human-in-the-Loop: All proposed changes require manual review and approval before being applied to the production environment.

4. Private Brain (Local LLM Infrastructure)

Section titled “4. Private Brain (Local LLM Infrastructure)”

Goal: Ensure 100% data privacy, zero latency, and offline capability.

  • Implementation:
    • Declarative Backend: Resource-optimized deployment of Ollama via NixOS modules.
    • Local Inference: All agentic reasoning (Llama 3, Mistral, etc.) stays within the local network, with no external API dependencies or data leakage.
Section titled “🛠️ Recommended Hardware (Voice Satellites)”

To interact with the AI agents via voice, the following ESP32-based hardware is recommended for seamless integration with ESPHome and Home Assistant:

1. M5Stack Atom Echo (The “Simple Square”)

Section titled “1. M5Stack Atom Echo (The “Simple Square”)”
  • Cost: ~$12 - $15
  • Best for: Discretion and low-cost deployment in every room.
  • Features: Tiny form factor (2.4cm cube), built-in push-button, and multi-color LED for status feedback.
  • Pros: Extremely affordable and easy to flash.

2. ESP32-S3-BOX-3 / Generic Screen Satellites

Section titled “2. ESP32-S3-BOX-3 / Generic Screen Satellites”
  • Cost: ~$18 - $50
  • Best for: Living rooms or kitchens where visual feedback is useful.
  • Features: Integrated touch screen, high-quality microphone array (noise cancellation), and better speakers.
  • Pros: Provides visual cues (e.g., “Listening”, “Thinking” icons) and better wake-word detection accuracy.

Why ESP32-S3?

Section titled “Why ESP32-S3?”

The ESP32-S3 chipset is the preferred choice over older ESP32 models because it includes native AI instructions (NPU) that accelerate wake-word detection and audio processing, enabling a more responsive “Jarvis-like” experience locally.