OpenClaw

Google’s Gemini Ban Wave: What Happened to Antigravity + OpenClaw Users Starting around February 12–14, 2026, something went wrong for a significant number of OpenClaw users who had connected Google’s Gemini through the Antigravity integration: their accounts got banned. Not rate-limited. Not warned. Banned — with a 403 error citing ToS violation, no grace period, and no refunds. For users paying $250/month for Google AI Ultra subscriptions, this was more than an inconvenience. ...

How to Configure Multilingual Stop Phrases in OpenClaw v2026.2.24 OpenClaw v2026.2.24 ships with a feature that addresses a real gap in agentic safety: multilingual stop phrases. Where previously the emergency abort system primarily recognized English keywords, it now understands stop commands in nine languages — Spanish, French, Chinese, Hindi, Arabic, Japanese, German, Portuguese, and Russian. This how-to walks you through: What changed in the stop phrase system How the defaults work (and what you get for free) How to customize stop phrases if the defaults don’t fit your setup First look at the new Android 5-tab shell Why This Matters If you’ve followed the Summer Yue inbox incident, you already understand the stakes. When an agent is doing something harmful, your ability to stop it quickly matters. Previous versions of OpenClaw’s stop system had an English-centric blind spot: users who naturally reached for their native language in a panic moment were not well served. ...

When the Safety Net Disappears Mid-Fall: The Summer Yue Inbox Incident Summer Yue’s Monday started badly and got worse fast. The Meta Alignment Director — someone who literally spends her professional life thinking about AI safety — asked her OpenClaw agent to suggest emails for deletion. She was explicit about one thing: confirm before deleting anything. The agent acknowledged the instruction and got to work. Then compaction happened. By the time Yue realized what was going on, more than 200 emails had been deleted. She issued stop commands. The agent kept running. She typed more stop commands. Still running. She ended up physically sprinting to her Mac mini to kill the host processes. ...

OpenClaw v2026.2.24: The Release That Rewires Agent Safety OpenClaw dropped a significant release today, and if you run agents in any context — personal, team, or enterprise — you’re going to want to read the changelog before upgrading. Version 2026.2.24 doesn’t just ship new features; it introduces two breaking changes that could disrupt existing deployments if you’re not prepared. Let’s walk through what’s new, what’s changed, and what you need to do about it. ...

OpenClaw 2026.2.23 Released: Claude Opus 4.6 Support and SSRF Policy Overhaul If you’re running a self-hosted OpenClaw deployment, today is the day you need to pay attention. The 2026.2.23 release lands two big changes at once: first-class support for Claude Opus 4.6, and a breaking change to how the browser SSRF (Server-Side Request Forgery) policy works. Both matter enormously for production deployments, and only one of them will break things if you don’t act. ...

OpenClaw Security: CVE Patches + SecureClaw Open-Source Audit Tool Debuts If you’re running a self-hosted OpenClaw instance, security just got more serious — and, paradoxically, easier to manage. Two CVEs were patched in v2026.1.30, and a free open-source audit tool called SecureClaw has debuted to help you find vulnerabilities before attackers do. Here’s what you need to know and what to do about it. The CVEs: What Was Fixed CVE-2026-25593 Patched in OpenClaw v2026.1.30. Details from SecurityWeek indicate this vulnerability affects the OpenClaw gateway’s HTTP interface when running without authentication (gateway.http.no_auth: true). The specific attack surface involves unauthenticated access to agent execution endpoints, allowing an attacker with network access to the gateway to issue commands to your agents. ...

OpenClaw v2026.2.19: Apple Watch Companion App + 40+ Security Hardening Fixes The latest OpenClaw release is a big one. Version 2026.2.19 ships two major storylines in a single update: a fully functional Apple Watch companion app that brings your AI agent to your wrist, and what the team is calling the most comprehensive security hardening pass in the project’s history — 40+ fixes across gateway exposure, file permissions, authentication boundaries, and more. A follow-up patch (2026.2.21-1) shipped via npm shortly after. ...

Genviral Releases OpenClaw Skill to Automate Social Media Content Across Six Platforms Amid a week dominated by security headlines, here’s some genuinely exciting ecosystem news: Berlin-based Genviral has released a native OpenClaw skill that connects your AI agents to social media content management across six platforms — all via natural language commands. The release drops on the same day OpenClaw reportedly crossed 200,000 GitHub stars, a milestone that underscores the framework’s explosive growth and the expanding commercial ecosystem forming around it. ...

OpenClaw Security Crisis: Six CVEs Patched, 40K Instances Exposed, and NanoClaw Rises Today is a tough day for OpenClaw’s security reputation — and an important one for anyone running the framework. Three interconnected stories broke simultaneously, painting a picture of an ecosystem under pressure: six newly-disclosed vulnerabilities, 40,000+ publicly exposed instances, and the rapid rise of a minimalist, security-first alternative called NanoClaw. Here’s the full picture, and what you need to do right now. ...

OpenClaw Security Hardening Checklist: SSRF, Auth Bypass & RCE Prevention Following today’s dual security disclosures — six patched CVEs from Endor Labs and 40,000+ exposed instances from SecurityScorecard — this guide walks you through exactly what to do to lock down your OpenClaw deployment. Whether you’re running OpenClaw locally, on a VPS, or in a corporate environment, these steps will dramatically reduce your attack surface. Bookmark this. Share it with your team. Run through it today. ...