OpenClaw 2026 guide covers security risks and project changes

OpenClaw's recent guide for 2026 highlights significant changes and security risks associated with the project, particularly following its transition to an independent open-source foundation. The guide notes that the latest version, v2026.1.29, has eliminated the insecure authentication mode, which previously left instances vulnerable to unauthorized access. Additionally, the project has garnered over 190,000 GitHub stars, marking it as one of the fastest-growing open-source AI automation initiatives, reflecting its rapid evolution from a simple "WhatsApp Relay" project to a robust platform.

The guide also emphasizes the importance of using official resources to avoid malicious extensions, such as a recently discovered trojan linked to a fake ClawdBot Agent VS Code extension. With the involvement of notable figures like Peter Steinberger, who joined OpenAI, OpenClaw is set to benefit from ongoing model updates and enhanced developer tooling. As the project continues to grow, users are encouraged to stay informed about API integrations and rate limits to optimize their agent workflow effectively.