Connect Clawsmith to your coding agent. Ship products like crazy.Unlimited usage during betaGet API Key โ†’
โ† Back to dashboard
clawsmith.com/signal/openclaw-135k-exposed-instances-82-countries-no-auth
โš  IssueWide OpenLive

135,000+ OpenClaw Instances Exposed on the Internet in 82 Countries -- 63% Without Authentication

Security researchers found more than 135,000 OpenClaw instances publicly accessible across 82 countries, with 63% operating without any authentication. Independent study by Maor Dayan identified 42,665 exposed instances, of which 5,194 were actively verified as vulnerable with 93.4% exhibiting authentication bypass conditions.

Product Idea from this Signal

A governance layer that assigns each OpenClaw agent its own identity, enforces approval workflows, and produces compliance-ready audit trails

3.6k โ–ฒ

135,000 OpenClaw instances are exposed on the internet with 63% running zero authentication. Meanwhile Microsoft is testing ClawPilot internally with 3,000 employees and building per-agent Entra IDs for governance. The gap between how OpenClaw runs in production today (no identity, no audit, no approval gates) and what enterprises need (SOC2 audit trails, per-agent RBAC, human-in-the-loop approval for sensitive actions) is massive. This tool wraps any OpenClaw deployment with enterprise governance without forking the core.

ENTERPRISESECURITYGOVERNANCECOMPLIANCEIDENTITY
CompetitiveView Opportunity โ†’
Product Idea from this Signal

A CLI tool that scans a running OpenClaw instance for every known CVE, exposed endpoint, malicious skill, and token scope violation, then outputs a prioritized remediation checklist

25.3k โ–ฒ

OpenClaw accumulated 138+ CVEs in under 5 months, 245,000 instances sit exposed on the public internet, and 1,400+ malicious skills infiltrated ClawHub via the ClawHavoc campaign. Individual developers and small teams have no single tool to check their install against all known threats. NemoClaw requires NVIDIA GPU infrastructure, ClawShield is a network proxy that doesn't scan the instance itself, and SkillFortify only covers skill verification. The gap is a lightweight scanner that checks everything in one pass and tells you exactly what to fix.

CLIOPEN-SOURCESECURITYDEVTOOLOPENCLAW
CompetitiveView Opportunity โ†’

Score Breakdown

Reddit
567

Social Proof 2 sources

RD
OpenClaw AI Agents Leaking Sensitive Data
3/15/2026
375RD
OpenClaw Security Crisis: 346K Stars and 135K Exposed Instances
jahanzaibai ยท 5/1/2026
192
Virality Score
567
across 0 platforms
Details
Signalissue
Ecosystemโ€”
Sources2
Platforms0
Updated8d ago
Trendโ†’ stable
Top ideas
All ideas โ†’
0A GitHub App that enforces AI agent contribution policies, detects bot-authored PRs, and blocks retaliatory behavior after maintainer rejection0A local-first sales automation framework that turns OpenClaw agents into autonomous SDRs with prospecting, enrichment, sequencing, and deal tracking running entirely on your machine0A runtime middleware that verifies messaging channel user identities against platform-native stable IDs before any command reaches an OpenClaw agent
Related signals
All signals โ†’
449KOpenClaw v2026.5.25-alpha: Sub-Agent Context Isolation Limits Data Leakage by Default445KOpenClaw v2026.5.22 Meeting Notes Plugin - Discord Voice First Live Source374KOpenClaw v2026.5.28 Beta โ€” Stronger Security Boundaries, Codex Reliability, Channel Fixes