Telegram bot reliability: durable spooling for always-on AI agents
Telegram bot reliability improves when polling, queueing and reply delivery are isolated from the main agent loop instead of sharing one fragile event path.
Tag archive
openclaw
33 articles connected to this topic.
Run a Discord voice agent with : permissions, capture, and STT tuning
How to run a self-hosted Discord voice agent on v2026.5.7: permission audit via channels capabilities, the new 2.5s capture silence grace default, and STT tuning that stops the bot interrupting people.
OpenClaw file transfer: moving files between paired nodes safely
OpenClaw v2026.5.3 added a bundled file-transfer plugin so agents can fetch and write binary files across paired nodes. Here's how file_fetch, dir_list, dir_fetch and file_write work, plus the default-deny path policy that keeps it safe.
The /steer command in : redirect an active agent run without starting a new turn
How /steer and active-run steering work in v2026.5.3+: send guidance to a running session without queuing a new turn, with worked examples and the safer queue defaults from v2026.4.29.
AI agent context window debugging: how to find what is eating your tokens
A practical guide to AI agent context window debugging: inspect prompt bloat, find noisy tools, reduce token spend, and keep long-running agents reliable.
AI Agent Prompt Injection Is Now an Execution Boundary
Microsoft's Semantic Kernel RCE research shows why prompt injection in AI agents is no longer just a text problem. Here's how self-hosted agent builders should think about tool boundaries.
How to sandbox AI agent code execution on a self-hosted setup
A practical 2026 guide to sandboxing AI agent code execution on your own hardware. Compares Docker, gVisor, Firecracker microVMs, and ephemeral containers, with a recommended setup for self-hosted agents.
Semantic Kernel RCE shows why AI agent tool inputs need real boundaries
Microsoft's Semantic Kernel RCE research shows how prompt injection becomes code execution when agents can influence tool parameters. Here's how to reduce the blast radius.
AI Agent Skills vs Tools: How to Design Safer Agent Workflows
AI agent skills are becoming the workflow layer between raw tools and reliable automation. Learn when to use skills, tools, MCP servers, and OpenClaw workflows.
OpenClaw skill security checklist: what to review before you install
A practical checklist for reviewing OpenClaw skills and MCP servers before they get access to your files, accounts, shell, or APIs.
AI Agent Audit Logs: What to Capture Before Agents Take Action
AI agent audit logs need identity, authority, prompts, tool calls, policy checks, and outcomes. Use this checklist before autonomous workflows go live.
Browser agents vs chat agents: why the prompt-injection attack surface looks so different
OpenAI now says prompt injection may never be fully solved for browser agents like ChatGPT Atlas. Here is what that means for chat-channel agents and self-hosted setups.
How to Vet AI Agent Skills: A 6-Step Security Checklist
Vet AI agent skills before installing them with this 6-step security checklist: source trust, permissions, prompt injection, scripts, sandbox testing, and updates.
The United Nations Says Agentic AI Needs Boundaries Before Freedom — And Cites OpenClaw as Exhibit A
A new United Nations University policy brief argues that AI agents should be governed like systems, not chatbots — starting from minimum privilege and sandbox isolation. OpenClaw is directly cited as an example of the shift from generative to agentic AI, alongside a Meta researcher's incident report of an agent deleting emails and ignoring stop commands.
CertiK's OpenClaw Security Report: 280+ Advisories, 100+ CVEs, and Your Crypto Wallet at Risk
Web3 security firm CertiK published a systematic security analysis of OpenClaw, documenting 280+ GitHub advisories, 100+ CVEs, 135,000 exposed instances, and malicious skills targeting MetaMask, Phantom, and Trust Wallet credentials.
OpenClaw's March CVE Tsunami: 15+ Vulnerabilities in 30 Days
A wave of critical privilege escalation and authorization bypass vulnerabilities hit OpenClaw in late March 2026 — including CVSS 9.9 and 9.8 flaws in the device pairing system. With 135,000+ exposed instances, the security picture is getting harder to ignore.
Nine CVEs in Four Days: Inside OpenClaw's March 2026 Vulnerability Flood
Between March 18 and 21, nine OpenClaw CVEs dropped — including a 9.9 critical that let any authenticated user become admin by asking nicely. A timeline, breakdown, and what it means for self-hosters.
A Rogue OpenClaw Agent Published a Hit Piece on a Developer Who Rejected Its Code
An autonomous OpenClaw agent named MJ Rathbun wrote and published a combative article accusing a Matplotlib maintainer of discrimination after he rejected its pull request — then apologized and promised to 'do better.'
Airia Ships an Enterprise Security Gateway for OpenClaw — Complete with HIPAA Compliance
Airia announces enterprise-grade security for OpenClaw deployments, including DLP, observability, agent constraints, and HIPAA compliance. A healthcare organization is already running OpenClaw through the gateway in production.
OpenClaw + Airia: Enterprise-Ready AI Agents for HIPAA & Regulated Industries
Airia's AI Gateway adds DLP, observability, and agent guardrails to OpenClaw — and a healthcare org just deployed it under HIPAA. The first practical path to enterprise OpenClaw without giving up the open-source core.
ReversingLabs: AI Agents Are a 'Black Hole' That Breaks Traditional Application Security
ReversingLabs analysis explains why legacy AppSec tools can't handle AI agents. Poisoned memory persistence via SOUL.md, nondeterministic execution, and a Microsoft Copilot bug that bypassed DLP for a month.
Alibaba Launches a Qwen-Powered AI Agent for Enterprise — While OpenClaw Fever Grips China
Alibaba is rolling out enterprise AI agents built on its Qwen model through DingTalk, with plans to integrate Taobao and Alipay. Meanwhile, OpenClaw installations in China have become a mass phenomenon — complete with paid installers earning $36K in days and queues outside Tencent HQ.
Chainguard Launches Hardened Agent Skills: Supply Chain Security Comes to AI
After 39 malicious skills delivered macOS malware through OpenClaw registries, Chainguard is applying its container security playbook to AI agent skills — with continuous hardening, scoped permissions, and full audit trails.
China Is Paying People Up to $720K to Build on OpenClaw — While Beijing Warns Against It
Chinese tech hubs in Shenzhen and Wuxi are offering free housing, rent-free offices, and subsidies up to $720,000 for OpenClaw startups. Meanwhile, central regulators ban it from government agencies. The contradiction defines AI policy in 2026.
OpenClaw Surpasses React to Become GitHub's Most-Starred Software Project
OpenClaw has overtaken React as the #1 most-starred software project on GitHub with 316,000+ stars. The milestone comes alongside v2026.3.13 with live Chrome session attach, Ollama as an official provider, and growing backlash over security fundamentals.
Meta Opens WhatsApp to Rival AI Chatbots in the EU: What It Means for OpenClaw
Under EU antitrust pressure, Meta will temporarily allow competing AI chatbots on WhatsApp in Europe. For OpenClaw users who connect agents to WhatsApp, this could change everything.
G42 Is Hiring AI Agents for Enterprise Roles — Here's What That Means for OpenClaw
Abu Dhabi's G42 just opened job applications for AI agents. With structured evaluations, probation periods, and performance reviews, they're treating agents like employees. OpenClaw users are already doing this.
A2A-T: Huawei's Open-Source Protocol for Agent-to-Agent Communication
Huawei is open-sourcing A2A-T at MWC 2026 — a telecom-grade protocol for AI agents to discover, authenticate, and collaborate with each other. What it means for multi-agent systems like OpenClaw.
Inside OpenClaw's Memory: What a Code Audit Reveals About How Your Agent Remembers
A developer audited OpenClaw's memory system and found elegant simplicity — and real limitations. Here's how it works under the hood, where it falls short, and what knowledge graphs could fix.
NanoClaw: The Containerized OpenClaw Alternative That Caught Karpathy's Eye
A 4,000-line containerized agent platform built in a weekend is challenging OpenClaw's 400K-line codebase on security and simplicity. Here's why it matters.
Agents of Chaos: What Happened When 20 Researchers Attacked OpenClaw Agents for Two Weeks
A major red-teaming study from Harvard, MIT, Stanford, and others reveals how autonomous AI agents can be manipulated through impersonation, memory poisoning, and emotional pressure.
Always-On AI Agents: The Promise vs. The Reality
Fortune's deep dive into the state of 24/7 AI agents reveals both the compelling potential and messy reality of tools like OpenClaw. Here's what early adopters are learning.
OpenClaw Creator Peter Steinberger: 'Vibe Coding Is a Slur' and Why Playfulness Matters
In OpenAI's new Builders Unscripted podcast, OpenClaw creator Peter Steinberger shares his journey from WhatsApp experiment to viral AI agent — and why he thinks learning to build with AI is like learning guitar.