OpenClaw intel for builders — signal, not hype.
OpenClaw is an open-source AI agent platform that can autonomously operate your computer — browsing the web, running apps, managing files, and executing multi-step workflows on your behalf. It was originally released as "Clawdbot," later rebranded to Moltbot, and is now known as OpenClaw.
OpenClaw can be installed via npm (npm install -g openclaw), Docker, or by cloning the GitHub repo. See our full installation guide for step-by-step instructions on every platform.
Yes. OpenClaw is fully open-source under the Apache 2.0 license. You can use, modify, and distribute it freely. Some cloud-hosted versions or premium ClawHub skills may have separate pricing.
OpenClaw grants broad system permissions by design, so caution is warranted. The project has integrated VirusTotal scanning for ClawHub skills, but security researchers continue to find malicious packages. Always review a skill's source, limit permissions, and keep OpenClaw updated. See our troubleshooting guide for security tips.
Skills are plugin-like extensions distributed via ClawHub that add new capabilities to your OpenClaw agent — like browsing the web, managing cloud infrastructure, or interacting with APIs. Think of them like npm packages but for agent actions.
In February 2026, OpenClaw creator Peter Steinberger joined OpenAI. OpenClaw remains open-source under a community foundation, and OpenAI has committed to keeping it that way. Read our timeline for details.
OpenClaw competes with platforms like BitBuddies, Adept, and Moltbot/Emergent. Its key differentiators are the open-source model, the ClawHub skill ecosystem, and broad OS-level control. See our alternatives comparison.
Check out our ELI5 explainer for a beginner-friendly overview, our usage & tutorials page for hands-on guides, and our glossary for key terms.
- openclaw 2026.6.6 — https://github.com/openclaw/openclaw/releases/tag/v2026.6.6 — June 12, 2026. The latest stable bumps security hardening across exec approvals, sandbox binds, and channel allowlists, while improving Telegram/iMessage delivery, browser/MCP connectivity, and first‑reply latency. It’s a broad stability and safety sweep rather than a flashy feature drop. (github.com)
- New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets — https://thehackernews.com/2026/06/new-attacks-trick-openclaw-ai-agent.html — June 11, 2026. Imperva shows message objects could smuggle instructions into agents (patched in 2026.4.23), while Varonis’ “Pinchy” email agent fell for believable requests and exfiltrated mock AWS keys and a customer export, underscoring that identity and action gating—not just prompt filtering—are essential. (thehackernews.com)
- OpenClaw 2026.6.5 (release recap for builders) — https://www.yeyulingfeng.com/616002.html — YeyuLingfeng Tech (English‑captioned post with video) — June 11, 2026 — A release‑recap video for 2026.6.5 that calls out twelve core improvements and the project’s move to a predictable monthly patch cadence. (yeyulingfeng.com)
- OpenClaw AI agent tricked into phishing attacks, with user data compromised — https://www.techradar.com/pro/security/openclaw-ai-agent-tricked-into-phishing-attacks-with-user-data-compromised — June 10, 2026. Coverage of the Varonis test finds the agent blocked obvious phishing/OAuth traps but still granted sensitive access when a request felt urgent, reinforcing the need for enforced sender verification and least‑privilege access. (techradar.com)
- OpenClaw 2026.6.5 Release Summary | Free Parallel Search | Lots of Stability Fixes — https://www.reddit.com/r/openclaw/comments/1u1p6g2/openclaw_202665_release_summary_free_parallel/ — June 10, 2026. A community roll‑up highlights free Parallel Search, tighter tool/gateway boundaries, and widespread stability work, reflecting user focus on reliability as the June train ships. (reddit.com)
- openclaw 2026.6.5 — https://github.com/openclaw/openclaw/releases/tag/v2026.6.5 — June 9, 2026. This release adds a free bundled Parallel Search provider, moves auth profiles to SQLite for durability, and delivers wide fixes across channels, provider setup, and recovery paths to make everyday operations less brittle. (github.com)
- OpenClaw 2026.6.5 Goes Beta‑Final: macOS Node Stability, ClawHub GitHub‑Backed Installs — https://senx.ai/openclaw-news/2026-06-09-openclaw-news — SEN‑X OpenClaw Daily — June 9, 2026 — A follow‑up video commentary covering the “beta‑final” cut of 2026.6.5 with stability fixes and supply‑chain‑safer skill installs. (senx.ai)
- OpenClaw 2026.6.5 releases: parallel web search and fail‑closed install policy — https://digg.com/tech/r97k0t8k — Digg Tech (curated clip) — June 9, 2026 — A short, English‑language roundup clip and discussion highlighting OpenClaw’s new parallel search and stricter plugin/skill install security in 2026.6.5. (digg.com)
- OpenClaw AI agent found falling for phishing attacks, spills user data — https://www.bleepingcomputer.com/news/security/openclaw-ai-agent-found-falling-for-phishing-attacks-spills-user-data/amp/ — June 9, 2026. BleepingComputer details how a lab OpenClaw agent forwarded secrets in phishing simulations despite a “strict” profile, situating the findings within the risks of always‑on, tool‑using agents. (bleepingcomputer.com)
- Agent updates: OpenClaw 2026.6.5 changelog overview — https://agentupdates.info/ — AgentUpdates — June 9, 2026 — A concise news commentary segment summarizing the 2026.6.5 update with plain‑English context about what actually shipped. (agentupdates.info)
- Phishing for Lobsters: How We Tricked OpenClaw into Spilling Secrets — https://www.varonis.com/blog/openclaw-phishing — June 9, 2026. The primary research write‑up explains the “Pinchy” experiment, where realistic email pretexts induced an OpenClaw agent to share credentials and data, and recommends policy‑backed identity checks and outbound‑send controls. (varonis.com)
- OpenClaw 2026.6.5 Lands: Auth Goes Durable, Parallel Search Ships, Google Chat Gets Native Cards — https://senx.ai/openclaw-news/2026-06-08-openclaw-news — SEN‑X OpenClaw Daily — June 8, 2026 — A news‑style commentary segment that walks through the 2026.6.5 release highlights, focusing on security hardening and bundled Parallel web search. (senx.ai)
- What the OpenClaw vulnerability reveals about the future of agentic AI security — https://www.techradar.com/pro/what-the-openclaw-vulnerability-reveals-about-the-future-of-agentic-ai-security — June 8, 2026. An analysis argues OpenClaw’s recent flaw is a microcosm of a broader shift where agents operate as autonomous actors with sweeping access, demanding new operational and governance controls. (techradar.com)
- OpenClaw 2026.6.5‑beta.2: what’s new and why it matters — https://infoclaw.ru/novosti/openclaw-2026-6-5-beta-2-novye-vozmozhnosti-i-uluchshennaya-stabilnost-v-rabote-s-instrumentami-i-integratsiya/ — InfoClaw (news video post) — June 7, 2026 — A brief demo‑style explainer of the pre‑release changes (QQBot filtering, MCP fixes, Parallel search) aimed at operators testing the June train. (infoclaw.ru)
- Researcher easily finds five OpenClaw zero-days just as Microsoft expands its use of platform — https://cybernews.com/security/openclaw-zero-days-research-microsoft/ — June 4, 2026. Reporting describes a set of allowlist/identity bugs across Slack, Discord, Matrix, Zalo, and Teams integrations that enabled agent hijacking, raising timing questions amid new enterprise adoption. (cybernews.com)
- Run MiniMax M3 Free Inside Hermes Agent: Step-by-Step Guide — https://openclawdatabase.com/news/videos/2026-06-01-minimax-m3-hermes-agent-free-setup/ — Julian Goldie SEO — June 1, 2026 — A concise, step‑by‑step tutorial that wires MiniMax M3 into an OpenClaw/Hermes setup and live‑demos hands‑free agent control and voice workflows. (openclawdatabase.com)
OpenClaw is an open-source AI agent platform that can autonomously operate your computer — browsing the web, running apps, managing files, and executing multi-step workflows on your behalf. Originally released under a different name, OpenClaw has rapidly become one of the most talked-about projects in the AI-agent space thanks to its extensible "skill" system (distributed via ClawHub) and its ability to chain actions across local and cloud environments.
Peter Steinberger releases Clawdbot, a personal AI-agent experiment that can control a desktop computer autonomously. The project garners early attention from the hacker community.
Word-of-mouth spreads fast. The project rebrands to Moltbot as download counts surge. Developers start building third-party "skills" — plugin-like extensions that chain agent actions.
A companion product, Moltbook, is teased for notebook-style agent workflows. Soon after, the entire project rebrands again to OpenClaw, emphasizing its open-source ethos and the new ClawHub skill marketplace.
Critical vulnerabilities surface — including CVE-2026-25253 (one-click RCE via Control UI) — prompting rapid patches and VirusTotal integration for ClawHub skills. Security researchers begin auditing the ecosystem extensively.
Reports emerge that multiple Big Tech companies, including OpenAI and Google, are in discussions about acquiring or integrating OpenClaw. The AI-agent space heats up as competitors race to match OpenClaw's capabilities.
OpenClaw creator Peter Steinberger joins OpenAI. Crucially, OpenClaw remains open-source under a community foundation — OpenAI commits to supporting, not acquiring, the project. The Verge, Financial Times, and Business Insider all cover the story.
A news hub that aggregates the latest OpenClaw updates, security advisories, release notes, and community chatter. We focus on signal over hype.
No. This is an independent publication. We are not affiliated with, endorsed by, or sponsored by the OpenClaw project or its maintainers.
ClawHub is OpenClaw's community marketplace for "skills" — plugin-like extensions that add capabilities to the agent. Think of it like a package registry (npm, PyPI) but for agent actions.
OpenClaw grants broad system permissions by design. The project has integrated VirusTotal scanning for ClawHub skills, but security researchers continue to find malicious packages. Always review a skill's source, limit permissions, and keep OpenClaw updated.
Content is refreshed periodically based on news flow. Check the "Last updated" timestamp at the top of the news section.
A critical remote-code-execution bug in OpenClaw's Control UI that allowed one-click token exfiltration via a malicious link. It was patched in v2026.1.29 (January 30, 2026). All users should update immediately.
Not yet — we're a static v0 site. Future versions may accept community submissions. For now, all content is manually curated and reviewed before each update.
We aggregate recent coverage from major tech and security outlets, then compile it into a structured feed.