Security

Anthropic is extending Claude Code beyond code generation into active security work. Claude Code Security, now available in limited research preview via claude.com, scans entire codebases for vulnerabilities, validates findings to minimize false positives, and suggests human-reviewable patches. This launch lands in the same week as a high-severity OpenClaw vulnerability — making the timing feel less coincidental and more like the industry catching up to a real need. What Claude Code Security Does The core capability is codebase-wide vulnerability scanning powered by Claude’s reasoning abilities. Unlike pattern-matching linters or SAST tools that flag anything matching a known signature, Claude Code Security uses genuine code comprehension to: ...

If you’re running OpenClaw with browser control features, you need to patch GHSA-mr32-vwc2-5j6h today. This how-to walks you through the full process: checking your current version, verifying exposure, patching, and applying the new Docker network hardening from 2026.2.21. For the threat model and full vulnerability details, see the news article on GHSA-mr32-vwc2-5j6h. Here we focus on the practical steps. Step 1: Check Your Current Version openclaw --version If you see anything before 2026.2.21-1, you’re vulnerable. The patch was shipped in the -1 suffix release specifically for this CVE — 2026.2.21 alone is not sufficient. ...

OpenClaw’s 2026.2.21 release is one of the most feature-dense updates the project has shipped — and it arrived alongside a critical security patch that makes upgrading non-optional. Here’s a full breakdown of what’s new. Gemini 3.1 Support The headline feature: OpenClaw now supports Google Gemini 3.1 via the model alias google/gemini-3.1-pro-preview. This puts Gemini 3.1 on equal footing with Claude and other supported providers in the OpenClaw model routing layer. You can specify it in your agent config just like any other model: ...

If you’re running OpenClaw and haven’t patched to 2026.2.21-1 yet, stop what you’re doing. There’s a high-severity vulnerability — GHSA-mr32-vwc2-5j6h — that you need to know about. What’s the Vulnerability? The flaw lives in OpenClaw’s Browser Relay: specifically, the /cdp WebSocket endpoint that powers browser control features. Prior to the patch, this endpoint had no authentication token requirement. That means any process running locally — or any attacker who can reach your machine — could connect to the CDP WebSocket without proving who they are. ...