OpenClaw Security Breach: 42,000 Instances Exposed
OpenClaw experienced a significant security breach with 42,000 exposed instances and 341 malicious marketplace skills. Five CVEs were identified, indicating the severity of the vulnerabilities. As a response, AgentVault was developed to act as a security proxy that wraps around Claude agents, providing real-time monitoring and management of operations.
Key features of AgentVault include:
- Blocking dangerous commands such as
rm -rfand suspicious network requests before execution. - A real-time dashboard that displays every action attempted by Claude.
- Permission approval mechanisms for risky operations.
- Comprehensive network monitoring, rate limiting, and credential scanning functionalities.
- A full audit trail to track all activities.
This solution utilizes a Node.js proxy, SQLite for logging, and a Next.js-based dashboard. Remarkably, AgentVault was built in a 3-hour session due to the urgency of the situation. Its source code has been made open-source and can be reviewed on GitHub.
The incident and rapid development of AgentVault raise questions about security measures in place for local setups utilizing AI coding agents. What security protocols are you using?
📖 Read the full source: r/LocalLLaMA
👀 See Also
MCP Sandbox: Run MCP Servers in Isolated Containers Without Trusting Them
A developer built MCP Sandbox, which runs MCP servers in isolated gVisor containers with default-deny network access and safe secret injection, plus pre-execution CVE scanning and pattern checking.
Claude Code Identifies Malware Backdoor in GitHub Repo During Technical Audit
A developer used Claude Code to audit a GitHub repository before execution and discovered a remote code execution backdoor in src/server/routes/auth.js that would have compromised their machine. The prompt requested a technical due diligence audit checking project completeness, AI/ML layer, database, authentication, backend services, frontend, code quality, and effort estimate.
Clawndom: A Security Hook for Claude Code to Block Vulnerable npm Packages
A developer built Clawndom, an open-source hook for Claude Code that checks npm packages against the OSV.dev vulnerability database before installation, blocking known vulnerable packages while maintaining agent autonomy.
Essential File Blocking for AI Coding Assistants: A Practical Security Checklist
AI coding assistants read from your local disk, not just your repository, exposing files that .gitignore protects from GitHub but not from the agent. A Reddit discussion identifies critical files to block including AI assistant configs with API keys, service credentials, SSH keys, and environment files.