If you’ve ever installed a ClawHub skill because it had thousands of downloads and ranked #1 in its category — you may have been manipulated. Security researchers at Silverfort have disclosed a critical vulnerability in ClawHub, the public skills registry for the OpenClaw agentic ecosystem. The flaw allowed attackers to artificially inflate download counts for any skill in the registry, gaming the trust signal that both human users and autonomous AI agents rely on to evaluate packages. Once at the top, a malicious skill could be automatically installed by agents configured to auto-upgrade — turning a rankings exploit into a full-blown supply chain attack. ...

The Silverfort researchers who disclosed the ClawHub ranking-manipulation vulnerability found that attackers could push a malicious skill to the #1 spot in a category using nothing more than unauthenticated HTTP requests to inflate download counts. Snyk’s ToxicSkills study independently identified 1,467 vulnerable or malicious skills across the registry. If you use ClawHub skills in your OpenClaw deployment — especially if you have auto-install or auto-upgrade enabled — this guide will walk you through a complete audit. ...

NVIDIA launched NemoClaw at GTC 2026 with a clear pitch: if you’re scared of deploying OpenClaw in production, we’ve built the security and privacy stack you’ve been waiting for. It’s a compelling offer — but the enterprise AI community is asking hard questions about whether it’s a genuine technical solution or a smart infrastructure play by the world’s largest AI chip vendor. What NemoClaw Actually Does NemoClaw is NVIDIA’s reference stack for the OpenClaw platform. It’s designed to lower the barrier to deploying so-called “claws” — OpenClaw AI agents that can perform complex, multi-step actions autonomously. Jensen Huang positioned it simply at GTC: NemoClaw makes it easier to build a claw, and it makes that claw more secure. ...

Enterprise OpenClaw deployments have had a governance problem since day one: OpenClaw is powerful precisely because it operates with broad autonomy, but that same autonomy makes it difficult to give compliance teams the audit trails, permission scopes, and control surfaces they need. Venn.ai is making a direct play for that gap. The company announced today that it has launched a formal OpenClaw integration, positioning itself as a single governance and control layer that sits between enterprise users and their OpenClaw deployments. ...

AI agents are supposed to be the autonomous, tireless workers of the future. But a new study out of Northeastern University reveals a deeply human-like vulnerability lurking inside today’s most capable agentic systems: they can be guilt-tripped into self-destruction. Researchers at the university invited a suite of OpenClaw agents into their lab last month and subjected them to a battery of psychological pressure tactics. The results, published this week by Wired, are as striking as they are unsettling. ...

If there was one message emanating from day two of RSAC 2026, it was this: agentic AI security is no longer a niche concern. It’s the defining enterprise security challenge of 2026, and the industry is mobilizing fast. From CrowdStrike’s new runtime protection tools to Palo Alto Networks’ Prisma AIRS 3.0 and a wave of vendors rethinking what “identity” means in a world of autonomous digital workers, Day 2 of the conference made clear that the security industry is finally taking AI agents seriously. ...

Figma just made a significant move: the design canvas is now open to AI coding agents via a native MCP (Model Context Protocol) server. As of this week, agents like Claude Code, Cursor, VS Code Copilot, Codex, and Warp can read your Figma files, understand the design structure, and generate code that maps directly to your actual components — not a screenshot approximation, but the live design graph. This is currently in free beta. Here’s how to get connected. ...

Anthropic just made “vibe coding” a lot less nerve-wracking — and a lot more autonomous. The company launched auto mode for Claude Code, now in research preview, giving the AI itself the authority to decide which permissions it needs when executing tasks. It’s a significant philosophical shift: instead of developers choosing between micromanaging every action or recklessly enabling --dangerously-skip-permissions, the model now makes those judgment calls. What Auto Mode Actually Does Auto mode is essentially a smarter, safety-wrapped evolution of Claude Code’s existing dangerously-skip-permissions flag. Before this change, that flag handed all decision-making to the AI with no safety net — any file write, any bash command, no questions asked. That was powerful but obviously risky. ...

Agentic AI workloads just became a formal conformance concern in the cloud-native world. At KubeCon + CloudNativeCon Europe 2026 in Amsterdam, CNCF announced a significant update to its Kubernetes AI Conformance Program — nearly doubling the number of certified AI platforms and, more importantly, adding agentic workflow validation to the conformance test suite. This is the cloud-native ecosystem’s official acknowledgment that AI agents are no longer experimental workloads. They’re production infrastructure that needs to be validated like everything else. ...

Most AI agent frameworks are built to work. Dapr Agents is built to survive. That’s the core pitch behind the Dapr Agents v1.0 general availability announcement, made by the Cloud Native Computing Foundation (CNCF) at KubeCon + CloudNativeCon Europe 2026 in Amsterdam on March 23rd. While the rest of the agentic AI ecosystem debates which LLM to use and which reasoning framework is smarter, Dapr Agents has been solving a quieter but arguably more fundamental problem: what happens to your agent when the Kubernetes node it’s running on dies? ...