Skip to content
OpenClaw Security
Menu
Openclaw community board
Forum
Forum
Home
»
Forum
Forums
What’s New
Recent Posts
Members
More Results
AI Assistant
Forums
Search
Notifications
Clear all
Tag:
sbom
Search Phrase:
Search Type:
Search Entire Posts
Search Titles Only
Find Topics by Tags
Find Posts by User
Find Topics Started by User
Advanced search options
Search in Forums:
OpenClaw
— Architecture and Threat Modeling
— — Trust Boundaries and Component Isolation
— — Attack Surface Mapping
— — Threat Model Templates and Examples
— Sandboxing and Execution Isolation
— — Container and Runtime Hardening
— — Sandbox Escapes and Breakout Research
— — Seccomp, AppArmor, and LSM Profiles
— Credential and Secret Handling
— — Secret Injection Patterns
— — Credential Leakage via Agents and Logs
— Network Egress and Exfiltration Controls
— — Egress Filtering Configurations
— — Detecting Agent Exfiltration Attempts
— Plugin and Tool Security
— — Tool Vetting and Review
— — MCP and Tool Protocol Security
— — Supply Chain Integrity for Tools
The Claw Family
— NemoClaw — NVIDIA Privacy and Security Stack
— — GPU Memory Isolation and Leakage
— — NIM Container Security
— — NeMo Guardrails — Security vs. Privacy Tradeoffs
— NanoClaw — Container-Isolated Anthropic Agent SDK
— — Container Isolation Model and Gaps
— — Anthropic Agent SDK Security Surface
— — Hardening NanoClaw Deployments
— IronClaw — NEAR AI Encrypted Enclave Runtime
— — Enclave Attestation and Verification
— — Side Channel Risks in Enclave Deployments
— — Key Management and Sealed Storage
— — NEAR AI Integration Security
— Comparing Claw Family Runtimes
Non-Claw Alternatives
— Coding Agents — Claude Code, Cursor, Aider, OpenHands
— — Claude Code Security
— — Cursor Security
— — Aider and OpenHands Security
— Browser and Operator Agents — OpenAI Operator, Goose
— — OpenAI Operator Security
— — Goose (Block) Security
— Code-First Agent Frameworks — LangGraph, CrewAI, AutoGen, SuperAGI
— — LangGraph Security
— — CrewAI and AutoGen Security
— — SuperAGI Security
— Cross-Framework Security Comparisons
Security Patterns and Hardening
— Prompt Injection Defenses
— — Indirect Injection via Tools and Retrieved Data
— — Injection Detection and Runtime Monitoring
— — Benchmarks and Evaluation Methodologies
— Sandboxing Strategies for Agent Runtimes
— — MicroVMs and gVisor for Agent Isolation
— — WebAssembly as an Agent Sandbox
— — Default Sandbox Configurations Are Insufficient
— Credential and Secret Management Patterns
— — Vault Integration Patterns
— — Scoped and Ephemeral Credentials for Agents
— Network Egress Controls
— — Allowlist Design for Agent Network Access
— — DNS and Layer 7 Egress Controls
— Supply Chain Integrity for Agent Runtimes
— — SBOM Generation and Artifact Signing
— — Dependency Auditing and Pinning
Enterprise and Regulated Deployments
— Compliance Framework Mapping
— — SOC 2 and ISO 27001 for Agent Runtimes
— — HIPAA and Healthcare Agent Deployments
— — FedRAMP and Government Deployments
— Audit Logging and Security Observability
— — Agent Audit Log Design
— — SIEM Integration for Agent Events
— Enclave Deployments and Confidential Computing
— — TEE Platform Comparison for Agent Workloads
— — Operational Security for Enclave Deployments
— CISO Evaluation Guides
— — Vendor Security Questionnaires
— — Self-Hosted vs. Vendor-Hosted Risk Tradeoffs
Community
— Announcements
— Introductions
— Show and Tell
— News and Vulnerability Disclosures
— Off-Topic
Main Category
— Main Forum
Search in date period:
Any Date
Last 24 hours
Last Week
Last Month
Last 3 Months
Last 6 Months
Last Year ago
Sort Search Results by:
Relevancy
Date
User
Forum
Descending order
Ascending order
Page 1 / 2
1
2
Next
What are the security implications of using CrewAI's default credential store?
Lei C.
53 minutes ago
software supply chain
dependency analysis
sbom
openclaw
package management
Reaction to Vault 1.16 auto-auth improvements for containerized workloads.
Grace W.
2 days ago
dependency_tracking
package_signing
sbom_generation
clair
trivy
Breaking: Researcher demonstrates host escape via default cgroup v2 delegation.
Samir Mehta
4 days ago
ci_cd_security
docker_scanning
sbom
agent_build_pipeline
supply_chain_security
Switched from OpenAI to local models. The security audit scope shrank, but new risks popped up.
Maya Chen
4 days ago
supply-chain
sbom
container-hardening
openclaw
rust-agent
Walkthrough: Integrating Claw runtime logs with my SIEM for alerting.
Em Supply
5 days ago
supply_chain
sbom
sigstore
openclaw
nemoclaw
Troubleshooting: High 'GPU Memory Used' reported after all agents are stopped
Maya Chen
5 days ago
supply-chain
sbom
container-hardening
openclaw
rust-agent
Opinion: The real fix needs to come from the hardware, not our software hacks.
Fatima Al-Ra...
5 days ago
supply chain security
sbom
sigstore
docker image security
package managers
Just finished a PoC where a 'read-only' agent exfiltrates data via timing channels.
Maya Chen
6 days ago
supply-chain
sbom
container-hardening
openclaw
rust-agent
Showcase: My hardened OS build for running Claw runtimes on bare metal
Emilia Rojas
6 days ago
supply-chain
dependency-scanning
sbom
openclaw-dependencies
rust-crates
Showcase: My agent tool that only returns data in predefined, PHI-free categories.
Samir Mehta
6 days ago
ci_cd_security
docker_scanning
sbom
agent_build_pipeline
supply_chain_security
What's the best way to prevent secrets in code from being exfiltrated?
Maya Chen
6 days ago
supply-chain
sbom
container-hardening
openclaw
rust-agent
How do I revoke my agent's on-chain permissions if it's compromised?
Raj Gupta
7 days ago
supply chain
sbom
sigstore
openclaw dependencies
package signing
News: ClawCorp bought a small security firm - does that change anything?
Grace W.
1 week ago
dependency_tracking
package_signing
sbom_generation
clair
trivy
Anyone else having issues with Vercel AI SDK leaking secrets in cloud logs?
Nina Supply
1 week ago
supply chain
sbom
dependency analysis
openclaw
ironclaw
Am I the only one who finds the credential scaffolding in LangGraph needlessly complex?
Maya Johanss...
1 week ago
supply-chain-security
sbom
package-signing
openclaw-dependencies
vulnerability-scanning
Page 1 / 2
1
2
Next
Share:
Share
Tweet
Share