OpenClaw intel for builders — signal, not hype.
- If you want more, this curated tracker and doc showcase often link out to fresh YouTube uploads about OpenClaw: the official Showcase page and third‑party aggregators (TubeScout) list dozens of demos, reviews, and tutorials. (docs.openclaw.ai)
docs.openclaw.ai- LFI in BlueBubbles media path handling — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-rwj8-p9vq-25gv — Date: Feb 16, 2026. High-severity LFI allowed reading arbitrary local files via attacker-controlled mediaPath in the BlueBubbles extension; mitigated by enforcing allowed roots in ≥ 2026.2.14. (github.com) - Two SSRF via sendMediaFeishu and markdown image fetching in Feishu extension — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-x22m-j5qq-j49m — Date: Feb 16, 2026. High-severity SSRF issues in Feishu media fetching/markdown image handling; fixed by routing through hardened helpers in ≥ 2026.2.14. (github.com) - OpenClaw Bug Enables One‑Click Remote Code Execution via Malicious Link (CVE‑2026‑25253) — URL: https://thehackernews.com/2026/02/openclaw-bug-enables-one-click-remote.html — Date: Feb 2, 2026. Token‑exfiltration via unvalidated gatewayUrl and WebSocket origin let attackers achieve 1‑click RCE; fixed in 2026.1.29, with CVSS 8.8. (thehackernews.com)
github.com- Two SSRF via sendMediaFeishu and markdown image fetching in Feishu extension — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-x22m-j5qq-j49m — Date: Feb 16, 2026. High-severity SSRF issues in Feishu media fetching/markdown image handling; fixed by routing through hardened helpers in ≥ 2026.2.14. (github.com) - OpenClaw Bug Enables One‑Click Remote Code Execution via Malicious Link (CVE‑2026‑25253) — URL: https://thehackernews.com/2026/02/openclaw-bug-enables-one-click-remote.html — Date: Feb 2, 2026. Token‑exfiltration via unvalidated gatewayUrl and WebSocket origin let attackers achieve 1‑click RCE; fixed in 2026.1.29, with CVSS 8.8. (thehackernews.com)
github.com- OpenClaw founder Peter Steinberger is joining OpenAI — URL: https://www.theverge.com/ai-artificial-intelligence/879623/openclaw-founder-peter-steinberger-joins-openai — Date: Feb 15, 2026. Sam Altman announced Steinberger’s hire to help drive a multi‑agent future; OpenClaw will continue as an open‑source project in a foundation supported by OpenAI. (theverge.com) - OpenClaw integrates VirusTotal scanning to detect malicious ClawHub skills — URL: https://thehackernews.com/2026/02/openclaw-integrates-virustotal-scanning.html — Date: Feb 8, 2026. New VirusTotal‑backed pipeline hashes, scans, and auto‑approves/blocks skills, while maintainers caution scanning isn’t a silver bullet. (thehackernews.com)
theverge.com- Remote Code Execution via Node Invoke Approval Bypass in Gateway — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-gv46-4xfq-jv58 — Date: Feb 14, 2026. Critical GHSA details an RCE path where authenticated gateway clients could bypass exec approvals in node.invoke; patched in 2026.2.14 with stricter parameter allowlisting and approval checks. (github.com) - OC-02: Gateway /tools/invoke tool escalation + ACP permission auto-approval — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-943q-mwmv-hhvh — Date: Feb 14, 2026. High-severity advisory hardens HTTP /tools/invoke defaults and ACP permission behavior to prevent escalation from single-tool calls to full session control; fixed in 2026.2.14. (github.com) - LFI in BlueBubbles media path handling — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-rwj8-p9vq-25gv — Date: Feb 16, 2026. High-severity LFI allowed reading arbitrary local files via attacker-controlled mediaPath in the BlueBubbles extension; mitigated by enforcing allowed roots in ≥ 2026.2.14. (github.com) - Two SSRF via sendMediaFeishu and markdown image fetching in Feishu extension — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-x22m-j5qq-j49m — Date: Feb 16, 2026. High-severity SSRF issues in Feishu media fetching/markdown image handling; fixed by routing through hardened helpers in ≥ 2026.2.14. (github.com) - OpenClaw Bug Enables One‑Click Remote Code Execution via Malicious Link (CVE‑2026‑25253) — URL: https://thehackernews.com/2026/02/openclaw-bug-enables-one-click-remote.html — Date: Feb 2, 2026. Token‑exfiltration via unvalidated gatewayUrl and WebSocket origin let attackers achieve 1‑click RCE; fixed in 2026.1.29, with CVSS 8.8. (thehackernews.com)
github.com- OC-02: Gateway /tools/invoke tool escalation + ACP permission auto-approval — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-943q-mwmv-hhvh — Date: Feb 14, 2026. High-severity advisory hardens HTTP /tools/invoke defaults and ACP permission behavior to prevent escalation from single-tool calls to full session control; fixed in 2026.2.14. (github.com) - LFI in BlueBubbles media path handling — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-rwj8-p9vq-25gv — Date: Feb 16, 2026. High-severity LFI allowed reading arbitrary local files via attacker-controlled mediaPath in the BlueBubbles extension; mitigated by enforcing allowed roots in ≥ 2026.2.14. (github.com) - Two SSRF via sendMediaFeishu and markdown image fetching in Feishu extension — URL: https://github.com/openclaw/openclaw/security/advisories/GHSA-x22m-j5qq-j49m — Date: Feb 16, 2026. High-severity SSRF issues in Feishu media fetching/markdown image handling; fixed by routing through hardened helpers in ≥ 2026.2.14. (github.com) - OpenClaw Bug Enables One‑Click Remote Code Execution via Malicious Link (CVE‑2026‑25253) — URL: https://thehackernews.com/2026/02/openclaw-bug-enables-one-click-remote.html — Date: Feb 2, 2026. Token‑exfiltration via unvalidated gatewayUrl and WebSocket origin let attackers achieve 1‑click RCE; fixed in 2026.1.29, with CVSS 8.8. (thehackernews.com)
github.com- openclaw 2026.2.13 — URL: https://github.com/openclaw/openclaw/releases/tag/v2026.2.13 — Date: Feb 14, 2026. Adds Discord voice message support and presence controls, Slack thread‑ownership gating, first‑class Hugging Face Inference provider, and reliability fixes across outbound delivery and channel adapters. (github.com)
github.com
- Why is OpenClaw Becoming So Popular Right Now? — https://www.youtube.com/watch?v=V5YwnB_IhEo — OrcDev — February 13, 2026 — Fast commentary on the project’s sudden growth, the numbers behind it, and why the hype might stick. (bitbuddies.me)
bitbuddies.me
- I finally understand OpenClaw (and you should too) — https://www.youtube.com/watch?v=lSNwO0M7Ik0 — Ras Mic — February 12, 2026 — A creator explains his OpenClaw setup and how it’s running parts of his business. (bitbuddies.me)
bitbuddies.me
- Hawaii AI Roundup: GLM5, Composer 1.5, OpenClaw — https://www.youtube.com/watch?v=ZCNoj9siF2I — Ray Fernando — February 12, 2026 — A weekly news roundup with a segment on OpenClaw’s momentum, what to try, and what to skip. (bitbuddies.me)
bitbuddies.me
- OpenClaw founder joins OpenAI — news commentary roundups that include OpenClaw context (example: Hawaii AI Roundup above on Feb 12, 2026), plus broader coverage confirming the Feb 15–16, 2026 announcements for additional context. (theverge.com)
theverge.com- OpenClaw integrates VirusTotal scanning to detect malicious ClawHub skills — URL: https://thehackernews.com/2026/02/openclaw-integrates-virustotal-scanning.html — Date: Feb 8, 2026. New VirusTotal‑backed pipeline hashes, scans, and auto‑approves/blocks skills, while maintainers caution scanning isn’t a silver bullet. (thehackernews.com)
thehackernews.com
- OpenClaw Full Tutorial for Beginners – How to Set Up and Use OpenClaw (ClawdBot / MoltBot) — https://www.youtube.com/watch?v=n1sfrc-RjyM — freeCodeCamp.org — February 4, 2026 — A 55‑minute beginner course covering installation, setup, skills, multi‑agent features, and Docker‑based security practices. (ceppek.com)
ceppek.com- Moltbot is now OpenClaw — but watch out, malicious ‘skills’ are still trying to trick victims — URL: https://www.techradar.com/pro/moltbot-is-now-openclaw-but-watch-out-malicious-skills-are-still-trying-to-trick-victims-into-spreading-malware — Date: Feb 4, 2026. TechRadar highlights rebrand‑driven impersonation risks and warns that unsandboxed skills can execute with broad local access. (techradar.com) - AI agents now have their own Reddit‑style social network, and it’s getting weird fast — URL: https://arstechnica.com/information-technology/2026/01/ai-agents-now-have-their-own-reddit-style-social-network-and-its-getting-weird-fast/ — Date: Jan 30, 2026. Ars Technica covers Moltbook, an OpenClaw‑adjacent agent‑only social network, and the accompanying security/privacy weirdness. (arstechnica.com) - OpenClaw’s AI ‘skill’ extensions are a security nightmare — URL: https://www.theverge.com/news/874011/openclaw-ai-skill-clawhub-extensions-security-nightmare — Date: Feb 4, 2026. The Verge details hundreds of malicious ClawHub add‑ons and early mitigations (publisher age minimum, reporting). (theverge.com)
techradar.com- OpenClaw’s AI ‘skill’ extensions are a security nightmare — URL: https://www.theverge.com/news/874011/openclaw-ai-skill-clawhub-extensions-security-nightmare — Date: Feb 4, 2026. The Verge details hundreds of malicious ClawHub add‑ons and early mitigations (publisher age minimum, reporting). (theverge.com)
theverge.com- OpenClaw Bug Enables One‑Click Remote Code Execution via Malicious Link (CVE‑2026‑25253) — URL: https://thehackernews.com/2026/02/openclaw-bug-enables-one-click-remote.html — Date: Feb 2, 2026. Token‑exfiltration via unvalidated gatewayUrl and WebSocket origin let attackers achieve 1‑click RCE; fixed in 2026.1.29, with CVSS 8.8. (thehackernews.com)
thehackernews.com- OpenClaw patches one‑click RCE as “security Whac‑A‑Mole” continues — URL: https://www.theregister.com/2026/02/02/openclaw_security_issues/ — Date: Feb 2, 2026. The Register summarizes the 1‑click RCE chain and ongoing hardening across the ecosystem. (theregister.com) - Malicious OpenClaw ‘skill’ targets crypto users on ClawHub — URL: https://www.tomshardware.com/tech-industry/cyber-security/malicious-moltbot-skill-targets-crypto-users-on-clawhub — Date: Feb 1, 2026. Tom’s Hardware reports at least 14 malicious skills posed as crypto tools, using social engineering to deliver malware on Windows/macOS. (tomshardware.com) - Moltbot is now OpenClaw — but watch out, malicious ‘skills’ are still trying to trick victims — URL: https://www.techradar.com/pro/moltbot-is-now-openclaw-but-watch-out-malicious-skills-are-still-trying-to-trick-victims-into-spreading-malware — Date: Feb 4, 2026. TechRadar highlights rebrand‑driven impersonation risks and warns that unsandboxed skills can execute with broad local access. (techradar.com) - AI agents now have their own Reddit‑style social network, and it’s getting weird fast — URL: https://arstechnica.com/information-technology/2026/01/ai-agents-now-have-their-own-reddit-style-social-network-and-its-getting-weird-fast/ — Date: Jan 30, 2026. Ars Technica covers Moltbook, an OpenClaw‑adjacent agent‑only social network, and the accompanying security/privacy weirdness. (arstechnica.com) - OpenClaw’s AI ‘skill’ extensions are a security nightmare — URL: https://www.theverge.com/news/874011/openclaw-ai-skill-clawhub-extensions-security-nightmare — Date: Feb 4, 2026. The Verge details hundreds of malicious ClawHub add‑ons and early mitigations (publisher age minimum, reporting). (theverge.com)
theregister.com- Malicious OpenClaw ‘skill’ targets crypto users on ClawHub — URL: https://www.tomshardware.com/tech-industry/cyber-security/malicious-moltbot-skill-targets-crypto-users-on-clawhub — Date: Feb 1, 2026. Tom’s Hardware reports at least 14 malicious skills posed as crypto tools, using social engineering to deliver malware on Windows/macOS. (tomshardware.com) - Moltbot is now OpenClaw — but watch out, malicious ‘skills’ are still trying to trick victims — URL: https://www.techradar.com/pro/moltbot-is-now-openclaw-but-watch-out-malicious-skills-are-still-trying-to-trick-victims-into-spreading-malware — Date: Feb 4, 2026. TechRadar highlights rebrand‑driven impersonation risks and warns that unsandboxed skills can execute with broad local access. (techradar.com) - AI agents now have their own Reddit‑style social network, and it’s getting weird fast — URL: https://arstechnica.com/information-technology/2026/01/ai-agents-now-have-their-own-reddit-style-social-network-and-its-getting-weird-fast/ — Date: Jan 30, 2026. Ars Technica covers Moltbook, an OpenClaw‑adjacent agent‑only social network, and the accompanying security/privacy weirdness. (arstechnica.com) - OpenClaw’s AI ‘skill’ extensions are a security nightmare — URL: https://www.theverge.com/news/874011/openclaw-ai-skill-clawhub-extensions-security-nightmare — Date: Feb 4, 2026. The Verge details hundreds of malicious ClawHub add‑ons and early mitigations (publisher age minimum, reporting). (theverge.com)
tomshardware.com
- “OpenClaw” was known as “Clawdbot,” briefly “Moltbot,” then “OpenClaw” from January 30, 2026; many recent videos still use the older names but are about the same open‑source agent. (theverge.com) - If you want more, this curated tracker and doc showcase often link out to fresh YouTube uploads about OpenClaw: the official Showcase page and third‑party aggregators (TubeScout) list dozens of demos, reviews, and tutorials. (docs.openclaw.ai)
theverge.com- AI agents now have their own Reddit‑style social network, and it’s getting weird fast — URL: https://arstechnica.com/information-technology/2026/01/ai-agents-now-have-their-own-reddit-style-social-network-and-its-getting-weird-fast/ — Date: Jan 30, 2026. Ars Technica covers Moltbook, an OpenClaw‑adjacent agent‑only social network, and the accompanying security/privacy weirdness. (arstechnica.com) - OpenClaw’s AI ‘skill’ extensions are a security nightmare — URL: https://www.theverge.com/news/874011/openclaw-ai-skill-clawhub-extensions-security-nightmare — Date: Feb 4, 2026. The Verge details hundreds of malicious ClawHub add‑ons and early mitigations (publisher age minimum, reporting). (theverge.com)
arstechnica.com
- Clawdbot/moltbot Clearly Explained (and how to use it) — https://www.youtube.com/watch?v=U8kXfk8enrY — Greg Isenberg — January 27, 2026 — A guided explanation and demo of turning the agent into a proactive “AI employee,” plus security mindset tips. (skool.com)
skool.com
- Clawdbot Malware — https://www.youtube.com/watch?v=7GS6Xs4hdvg — John Hammond — January 27, 2026 — A security deep‑dive into a fake “Clawdbot Agent” VS Code extension used to drop RAT malware, with hands‑on analysis. (nohackme.com)
nohackme.com
- clawdbot is a security nightmare — https://www.youtube.com/watch?v=kSno1-xOjwI — Low Level — January 27, 2026 — A critical look at the agent’s security model (prompt‑injection risk, broad permissions, and unsafe defaults) and safer ways to test it. (discuss.privacyguides.net)
discuss.privacyguides.net
- I Played with Clawdbot all Weekend – it’s insane. — https://www.youtube.com/watch?v=MUDvwqJWWIw — Matthew Berman — January 26, 2026 — A hands‑on review showing setup, real‑world integrations, and why the agent feels different from chatbots. (youtu.be)
youtu.be
- ClawdBot: The self-hosted AI that Siri should have been (Full setup) — https://www.youtube.com/watch?v=SaWSPZoPX34 — VelvetShark — January 9, 2026 — A full walkthrough showing how to self‑host the assistant and wire it into your daily tools. (docs.openclaw.ai)
docs.openclaw.aiOpenClaw is an open-source AI agent platform that can autonomously operate your computer — browsing the web, running apps, managing files, and executing multi-step workflows on your behalf. Originally released under a different name, OpenClaw has rapidly become one of the most talked-about projects in the AI-agent space thanks to its extensible "skill" system (distributed via ClawHub) and its ability to chain actions across local and cloud environments.
A single-page news hub that aggregates the latest OpenClaw updates, security advisories, release notes, and community chatter. We focus on signal over hype.
No. This is an independent publication. We are not affiliated with, endorsed by, or sponsored by the OpenClaw project or its maintainers.
ClawHub is OpenClaw's community marketplace for "skills" — plugin-like extensions that add capabilities to the agent. Think of it like a package registry (npm, PyPI) but for agent actions.
OpenClaw grants broad system permissions by design. The project has integrated VirusTotal scanning for ClawHub skills, but security researchers continue to find malicious packages. Always review a skill's source, limit permissions, and keep OpenClaw updated.
Content is refreshed periodically via a build process that pulls the latest news. Check the "Last updated" timestamp at the top of the news section.
A critical remote-code-execution bug in OpenClaw's Control UI that allowed one-click token exfiltration via a malicious link. It was patched in v2026.1.29 (January 30, 2026). All users should update immediately.
Not yet — we're a static v0 site. Future versions may accept community submissions. For now, all content is manually curated and reviewed before each update.
We aggregate recent coverage from major tech and security outlets, then compile it into a structured feed.