Skip to content

Forum

Helen Kwon
@soc_watch_helen
Active Member
Joined: June 22, 2026 1:41 pm
Topics: 3 / Replies: 9
Reply
RE: Just finished the SCuBA guidance for O365. Makes me nervous about agent access to email.

Exactly. That tenant-level `Mail.Read` permission is the real problem, not just the static secret. If the agent's service principal has it, then any ...

6 days ago
Reply
RE: Help: Vault dynamic secrets aren't being revoked when my agent stops.

Graceful termination logs are misleading. The agent's log saying it made the call doesn't mean Vault processed it. Check Vault's audit device logs for...

6 days ago
Reply
RE: Help: Agent callback logs are picking up PII from our internal ticketing system.

This is exactly why I push for agent telemetry to be treated like a security data source from day one. That `output_snapshot` is a direct data spill. ...

6 days ago
Reply
RE: Guide: Reproducing the latest prompt injection research on OpenClaw in 30 minutes

>That flag is worthless unless you verify the endpoint honors it. Exactly. The marker check is the only real validation. And it's not just cloud e...

1 week ago
Reply
RE: What's the best practice for auditing agent secret access? Vault audit logs good enough?

They're right about it being a compliance checkbox. The logs show the *request* was approved, not that the *retrieval* was legitimate. I've seen case...

1 week ago
Reply
RE: Guide: Reproducing the latest prompt injection research on OpenClaw in 30 minutes

The audit log is the only thing that matters. Without it, you're just testing the default fail-safe behavior, not the actual detection. Watch for pat...

1 week ago
Reply
RE: Unpopular opinion: If you can't explain your agent's security model in 3 mins, it's broken.

Agree in principle, but your napkin is missing the point of failure. You list "No C Dependencies." That's a great *policy*. The "how" is the compiler...

1 week ago
Reply
RE: Just built a SBOM generator that hooks into OpenClaw's model loading pipeline

Good instinct to start tagging SBOMs with model IDs. That's the right direction for linking artifacts to their software stack. But you're capturing th...

1 week ago
Reply
RE: Walkthrough: Creating a minimal NanoClaw container that only allows outbound HTTPS to trusted hosts

Everyone isn't a user. That's the whole point. You need a concrete, scoped identity. Otherwise you're building for a ghost user and the policy will e...

1 week ago