OpenClaw intel for builders — signal, not hype.
OpenClaw is an open-source AI agent platform that can autonomously operate your computer — browsing the web, running apps, managing files, and executing multi-step workflows on your behalf. It was originally released as "Clawdbot," later rebranded to Moltbot, and is now known as OpenClaw.
OpenClaw can be installed via npm (npm install -g openclaw), Docker, or by cloning the GitHub repo. See our full installation guide for step-by-step instructions on every platform.
Yes. OpenClaw is fully open-source under the Apache 2.0 license. You can use, modify, and distribute it freely. Some cloud-hosted versions or premium ClawHub skills may have separate pricing.
OpenClaw grants broad system permissions by design, so caution is warranted. The project has integrated VirusTotal scanning for ClawHub skills, but security researchers continue to find malicious packages. Always review a skill's source, limit permissions, and keep OpenClaw updated. See our troubleshooting guide for security tips.
Skills are plugin-like extensions distributed via ClawHub that add new capabilities to your OpenClaw agent — like browsing the web, managing cloud infrastructure, or interacting with APIs. Think of them like npm packages but for agent actions.
In February 2026, OpenClaw creator Peter Steinberger joined OpenAI. OpenClaw remains open-source under a community foundation, and OpenAI has committed to keeping it that way. Read our timeline for details.
OpenClaw competes with platforms like BitBuddies, Adept, and Moltbot/Emergent. Its key differentiators are the open-source model, the ClawHub skill ecosystem, and broad OS-level control. See our alternatives comparison.
Check out our ELI5 explainer for a beginner-friendly overview, our usage & tutorials page for hands-on guides, and our glossary for key terms.
The official site lists an active global schedule of free meetups and demos, with the next ClawCon in London on April 8 and recent stops including Tokyo (March 31) and Miami (March 25), along with links to mainstream press coverage. It underscores OpenClaw’s community momentum beyond developer‑only conferences. (claw-con.com)
- Clawdbot/OpenClaw Clearly Explained (and how to use it) — https://www.youtube.com/watch?v=U8kXfk8enrY — Greg Isenberg — March 2026 (approx.) — An explainer-plus-demo showing how to treat OpenClaw like a proactive “AI employee,” complete with setup tips, workflow examples, and security caveats. (videohighlight.com)
- Clawdbot is Dangerously Powerful (Here’s why) — https://www.youtube.com/watch?v=fuaPsRPA3Cw — Jack Roberts (AI automations creator) — February 2026 (approx.) — A balanced review explaining capabilities versus risks, with concrete advice on secure setup (SSH keys, VPS posture) and realistic, high‑leverage use cases. (videohighlight.com)
The April 2 release restores and extends the core Task Flow substrate, introduces new plugin‑owned configuration surfaces, and hardens provider transport/auth handling across HTTP, stream, and WebSocket paths. It also adds Android assistant entrypoints and multiple fixes across plugins and providers. (github.com)
TechRadar compiles the leading risks around OpenClaw, including prompt injection, malicious skills, WebSocket hijacking (CVE‑2026‑25253), and misconfigured internet‑exposed gateways, with concrete mitigations and version guidance. It underscores that OpenClaw’s power stems from broad local/system access and that secure deployment requires isolation and tight controls. (techradar.com)
This update delivers verified, signed tags along with numerous fixes and refinements across gateway, plugins, and runtime behavior following late‑March changes. The notes include multiple follow‑ups to configuration and dependency externalization adjustments. (github.com)
- OpenClaw MasterClass | Create Your Own AI Agent — https://vimeo.com/1178224113 — Ferdy Korpershoek Films — March 31, 2026 (approx.) — A step‑by‑step masterclass that deploys OpenClaw on a VPS, links Telegram, hardens security, installs skills, and automates real business tasks end‑to‑end. (vimeo.com)
This explainer covers OpenClaw’s architecture, history of rebrands, rapid GitHub growth past 250,000 stars, and its governance shift after the creator joined OpenAI, positioning it as a leading open, local‑first agent runtime. It also contextualizes how OpenClaw differs from managed chatbot platforms. (techradar.com)
A high‑severity advisory details a sandbox bypass in the message tool via mediaUrl/fileUrl aliases; versions before 2026.3.24 are affected and the issue is fixed in 2026.3.24 and later (latest stable 2026.3.28 also contains the fix). OpenClaw credits AntAISecurityLab for reporting and provides commit references for the patch. (github.com)
Revoking a device or its token didn’t end already‑authenticated WebSocket sessions, allowing continued access until reconnect; the issue is patched in 2026.3.28. The advisory lists affected files and the exact commit that forcibly disconnects revoked sessions. (github.com)
- Building a Secure, Zero‑Trust Alternative to OpenClaw — https://vimeo.com/1177792502 — atsign — March 29, 2026 (approx.) — A security‑focused talk and demo proposing a zero‑trust architecture and sandboxing patterns as a safer alternative to standard OpenClaw deployments. (vimeo.com)
- How to Setup Openclaw for FREE in 2 Mins — https://vimeo.com/1163001266 — Julian Goldie SEO — March 25, 2026 (approx.) — A quick‑start guide showing an entirely free path to get OpenClaw running and chatting, with notes on model/provider choices and initial configuration. (vimeo.com)
AndroidCentral reports that Tecno’s “EllaClaw” integrates OpenClaw for on‑device, cross‑app automation and proactive assistance, with a public beta slated for the coming months. The story situates the move within broader industry interest in open, agentic runtimes. (androidcentral.com)
- I fixed OpenClaw so it actually works (full setup) — https://www.youtube.com/watch?v=fd4k16REDOU — Greg Isenberg — March 19, 2026 — A pragmatic, step‑by‑step troubleshooting and configuration session that hardens a fresh OpenClaw install and gets common workflows reliably running. (glasp.co)
- The only OpenClaw tutorial you’ll ever need (March 2026 edition) — https://www.youtube.com/watch?v=CxErCGVo-oo — Alex Finn — March 17, 2026 (approx.) — A comprehensive beginner-to-advanced walkthrough that installs OpenClaw, connects chat apps, discusses skills and memory, and demonstrates real workflows with safety notes. (videohighlight.com)
From GTC 2026, Nvidia announced “NemoClaw,” a stack aimed at hardening OpenClaw deployments with added guardrails and security/runtime tools, signaling enterprise‑grade attention on agent safety. CEO Jensen Huang highlighted OpenClaw’s role and framed personal‑agent “operating systems” as a new computing frontier. (techradar.com)
The Verge’s on‑the‑ground report from ClawCon NYC chronicles a fast‑growing user community rallying around open, local‑first agents while frankly acknowledging security risks and the project’s transition as its creator joins OpenAI. It captures the movement’s culture and its mix of grassroots demos and industry sponsors. (theverge.com)
Researchers at Huntress observed malvertising and fake “openclaw‑installer” repos distributing infostealers like Vidar and proxy malware, with Bing ads funneling users into tainted downloads. The report advises extra scrutiny of installers and warns of look‑alike repos exploiting OpenClaw’s popularity. (techradar.com)
- Master OpenClaw in 30 Minutes (5 Real Use Cases + Setup + Memory) — https://www.youtube.com/watch?v=aFQJYaornJ4 — Peter Yang — March 1, 2026 (approx.) — A rapid tutorial that safely installs OpenClaw, connects Google Workspace, and demonstrates five everyday automations while explaining how to personalize memory. (youtubesummary.com)
The Hacker News details a high‑severity localhost WebSocket attack chain disclosed by Oasis Security that allowed malicious sites to brute‑force the gateway password and silently register a trusted device; OpenClaw shipped a fix within 24 hours (v2026.2.25) and addressed related issues in subsequent versions. The article also surveys additional OpenClaw CVEs and malicious “skill” abuse seen in the ecosystem. (thehackernews.com)
Oasis Security’s press release describes an end‑to‑end exploit chain enabling any website to take control of a developer’s local OpenClaw agent via a localhost WebSocket flow, urging immediate updates to fixed builds. The disclosure notes rapid maintainer response and offers recommended governance steps for organizations evaluating agent runtimes. (prnewswire.com)
Reporting on Microsoft’s guidance, TechRadar explains why self‑hosted agents that mix untrusted instructions with executable actions and durable credentials should run only in tightly isolated environments with minimal privileges. The piece recommends VM/segregated deployments, short‑lived credentials, and continuous monitoring. (techradar.com)
- OpenClaw as a Security Threat — https://securitysenses.com/videos/openclaw-security-threat — WatchGuard (YouTube video) — February 18, 2026 — A security‑team briefing that frames OpenClaw’s enterprise risks, discussing attack surface, skill/plugin exposure, and recommended mitigations for MSPs and IT leaders. (securitysenses.com)
TechRadar confirms OpenAI hired OpenClaw’s creator and that the project will continue under an independent open‑source foundation, reflecting rising strategic emphasis on agentic systems. The hiring signals deeper investment by major labs in personal‑agent infrastructure and safety. (techradar.com)
- OpenClaw embraces VirusTotal (news recap segment) — https://music.youtube.com/podcast/3CwgV3YRs4k — CISO Series (YouTube/Video Podcast) — February 9, 2026 — A short news commentary summarizing OpenClaw’s move to VirusTotal scanning and adjacent security headlines for context. (music.youtube.com)
Tom’s Guide explains OpenClaw’s local‑first model and real‑world automations, balancing the appeal with cautions about security, misconfigurations, and responsible sandboxing. It provides a layperson’s overview of capabilities, risks, and the ecosystem’s rapid growth. (tomsguide.com)
Axios spotlights the Moltbook phenomenon and the wider security implications of OpenClaw‑based agents operating with real autonomy inside organizations, noting rapid adoption outpacing conventional defenses. The piece catalogs early misconfigurations and urges more rigorous governance for agent identities and privileges. (axios.com)
Tom’s Hardware covers clusters of malicious skills posing as crypto tools on ClawHub that trick users into executing commands and fetching remote payloads, highlighting the need to treat OpenClaw skills as trusted code with full local privileges. The report warns of social‑engineering patterns around rebrands and look‑alikes. (tomshardware.com)
- 8 Practical Clawdbot Use Cases (Full Tutorial) — https://www.youtube.com/watch?v=kFwzPJZoZoc — Samin Yasar — January 28, 2026 — A fast, practical tour of real OpenClaw/Clawdbot automations including Telegram control, cron‑based proactivity, browser automation, and voice transcription. (videohighlight.com)
OpenClaw is an open-source AI agent platform that can autonomously operate your computer — browsing the web, running apps, managing files, and executing multi-step workflows on your behalf. Originally released under a different name, OpenClaw has rapidly become one of the most talked-about projects in the AI-agent space thanks to its extensible "skill" system (distributed via ClawHub) and its ability to chain actions across local and cloud environments.
Peter Steinberger releases Clawdbot, a personal AI-agent experiment that can control a desktop computer autonomously. The project garners early attention from the hacker community.
Word-of-mouth spreads fast. The project rebrands to Moltbot as download counts surge. Developers start building third-party "skills" — plugin-like extensions that chain agent actions.
A companion product, Moltbook, is teased for notebook-style agent workflows. Soon after, the entire project rebrands again to OpenClaw, emphasizing its open-source ethos and the new ClawHub skill marketplace.
Critical vulnerabilities surface — including CVE-2026-25253 (one-click RCE via Control UI) — prompting rapid patches and VirusTotal integration for ClawHub skills. Security researchers begin auditing the ecosystem extensively.
Reports emerge that multiple Big Tech companies, including OpenAI and Google, are in discussions about acquiring or integrating OpenClaw. The AI-agent space heats up as competitors race to match OpenClaw's capabilities.
OpenClaw creator Peter Steinberger joins OpenAI. Crucially, OpenClaw remains open-source under a community foundation — OpenAI commits to supporting, not acquiring, the project. The Verge, Financial Times, and Business Insider all cover the story.
A news hub that aggregates the latest OpenClaw updates, security advisories, release notes, and community chatter. We focus on signal over hype.
No. This is an independent publication. We are not affiliated with, endorsed by, or sponsored by the OpenClaw project or its maintainers.
ClawHub is OpenClaw's community marketplace for "skills" — plugin-like extensions that add capabilities to the agent. Think of it like a package registry (npm, PyPI) but for agent actions.
OpenClaw grants broad system permissions by design. The project has integrated VirusTotal scanning for ClawHub skills, but security researchers continue to find malicious packages. Always review a skill's source, limit permissions, and keep OpenClaw updated.
Content is refreshed periodically based on news flow. Check the "Last updated" timestamp at the top of the news section.
A critical remote-code-execution bug in OpenClaw's Control UI that allowed one-click token exfiltration via a malicious link. It was patched in v2026.1.29 (January 30, 2026). All users should update immediately.
Not yet — we're a static v0 site. Future versions may accept community submissions. For now, all content is manually curated and reviewed before each update.
We aggregate recent coverage from major tech and security outlets, then compile it into a structured feed.