Howto

Figma just made a significant move: the design canvas is now open to AI coding agents via a native MCP (Model Context Protocol) server. As of this week, agents like Claude Code, Cursor, VS Code Copilot, Codex, and Warp can read your Figma files, understand the design structure, and generate code that maps directly to your actual components — not a screenshot approximation, but the live design graph. This is currently in free beta. Here’s how to get connected. ...

OpenClaw v2026.3.22 is a significant release — but if you installed it via npm, you may have hit two frustrating regressions immediately: a blank Dashboard UI and a WhatsApp plugin that simply doesn’t load. Both issues are fixable right now. Here’s what happened and exactly how to resolve each one. What Broke and Why Regression 1: Blank Dashboard UI Root cause: The npm tarball for v2026.3.22 is missing the dist/control-ui/ directory. This folder contains the compiled frontend assets for the Dashboard web interface. Without it, the Dashboard loads an empty shell. ...

OpenClaw v2026.3.22 ships ClawHub — a native plugin and skills marketplace built directly into the platform. No more hunting npm packages or manually dropping files into skill directories. ClawHub lets you browse, install, and manage extensions from a curated registry in one place. This guide walks you through everything: how ClawHub works, how to install your first skill, and a real-world example using Hitem3D — the first major third-party integration spotlighted on the marketplace — to generate 3D models from images. ...

Oasis Security disclosed a critical vulnerability chain in OpenClaw today that can enable full workstation compromise — initiated from a browser tab. SecurityScorecard found more than 40,000 OpenClaw gateways exposed to the public internet. If you’re running OpenClaw, this guide walks you through auditing your exposure and locking it down while you wait for an official patch. This is not a theoretical threat. Act now. Disclaimer: This guide reflects best practices as of 2026-02-26, based on the publicly available Oasis Security threat research. OpenClaw’s security team has acknowledged the report. Apply any official patches immediately when released, as they may supersede or extend these mitigations. ...