OpenClaw patches ClawJacked vulnerability in latest update

OpenClaw has recently addressed a critical vulnerability known as ClawJacked, which could have allowed malicious websites to hijack local AI agents via WebSocket connections. This flaw was identified by Oasis Security and is particularly concerning as it resides within the core system of OpenClaw, without reliance on plugins or user-installed extensions. The patch aims to enhance security for developers who utilize OpenClaw in their agent workflows, ensuring that their local environments remain protected against potential exploits.

The update highlights the importance of robust security measures in AI automation and developer tooling, especially as integrations with various APIs become more common. OpenClaw's swift response to the ClawJacked vulnerability underscores the need for continuous model updates and vigilance against emerging threats. Developers are encouraged to review the release notes for this update to understand the implications and ensure their systems are secure against similar vulnerabilities in the future.