CertiK informe: Rastreo de problemas de seguridad de OpenClaw, enfoque en riesgos sistémicos de sistemas de agentes inteligentes AI y guía de protección

ME News messages, March 31 (UTC+8), March 31, Web3 security company CertiK released the《OpenClaw security report》, which provides a systematic review and analysis of the security boundaries and risk patterns that emerged during the development of OpenClaw, and offers protective recommendations for developers and users.

The report points out that OpenClaw’s architecture connects external inputs with a local high-privilege execution environment. While this “strong capability + high privilege” design improves automation levels, it also imposes higher security requirements: its early security model based on a “locally trusted environment” gradually revealed limitations in complex deployment scenarios. Data shows that between November 2025 and March 2026, OpenClaw cumulatively produced more than 280 GitHub security advisories and more than 100 CVE vulnerabilities. The research summarizes typical risk types and their causes from multiple layers, including gateway control, identity binding, execution mechanisms, and the plugin ecosystem.

Based on this, the report focuses on recommendations for developers and users: developers need to establish a threat model early on, incorporating access control, sandbox isolation, and permission inheritance mechanisms into the core design; at the same time, they should strengthen validation and constraints on plugins and external inputs. Users should avoid exposing to the public internet, implement the principle of least privilege, and continuously conduct configuration audits and environment isolation management to reduce the risk of the system being abused or misused. (Source: CertiK)