21 articles connected to this topic.
AI agent hook policies need to survive plugin composition, retries, and channel handoffs. OpenClaw 2026.6.10 keeps trusted tool policies attached to approval-sensitive flows.
AI agent update safety means treating version checks, release tags and dependency patches as control-plane decisions, not background maintenance noise.
Gemini CLI auth isolation keeps AI agents on the intended Google login, preventing ambient machine credentials from silently changing model access or audit trails.
AI agent browser sessions get safer in OpenClaw 2026.6.6 with CDP session attach, WebSocket validation, browser-output boundaries and loopback MCP transport checks.
AI agent configuration management fails when patches widen silently. OpenClaw 2026.6.6 uses explicit array replacement and consent-bound paths to reduce config drift.
AI agent transcript redaction keeps screenshots, data URLs and repaired image payloads out of durable logs before they become memory, export data or prompt context.
AI agent install policy turns skill and plugin installs into governed supply-chain events: resolved commits, policy checks, trusted pins and auditable install state.
Chain-of-thought leakage is a production risk for AI agents. Learn where reasoning traces escape, why channel adapters matter, and how OpenClaw reduces exposure.
AI agent security boundaries in OpenClaw 2026.5.27 separate untrusted prompts, tool execution, network exposure and approvals so agent failures stay contained.
AI agent auth profiles separate model credentials by provider, runtime, and operator so self-hosted agents can migrate logins, recover cleanly, and reduce credential blast radius.
xAI device code OAuth lets headless AI agents authorize from SSH, containers, and remote hosts without a localhost browser callback or pasted API key.
AI agent policy checks in OpenClaw 2026.5.20 add a practical control layer for channels, approvals, sandbox visibility, and workspace repair.
AI agent tool policies should vary by sender, channel, and action risk. OpenClaw 2026.5.12 adds sender-scoped controls for safer self-hosted agents.
A practical 2026 guide to sandboxing AI agent code execution on your own hardware. Compares Docker, gVisor, Firecracker microVMs, and ephemeral containers, with a recommended setup for self-hosted agents.
Microsoft's Semantic Kernel RCE research shows how prompt injection becomes code execution when agents can influence tool parameters. Here's how to reduce the blast radius.
A practical checklist for reviewing OpenClaw skills and MCP servers before they get access to your files, accounts, shell, or APIs.
AI agent audit logs need identity, authority, prompts, tool calls, policy checks, and outcomes. Use this checklist before autonomous workflows go live.
OpenAI now says prompt injection may never be fully solved for browser agents like ChatGPT Atlas. Here is what that means for chat-channel agents and self-hosted setups.
Vet AI agent skills before installing them with this 6-step security checklist: source trust, permissions, prompt injection, scripts, sandbox testing, and updates.
Arctic Wolf's Aurora Agentic SOC deploys hundreds of specialized AI agents to handle security operations, powered by a 'Swarm of Experts' framework. It's agent-led, human-supervised — and available at no extra cost to existing customers.
Geordie AI, a security and governance platform built specifically for AI agents, was named 'Most Innovative Startup' at RSAC 2026's Innovation Sandbox contest. The win signals that agent governance is now the hottest problem in cybersecurity.