⚠️ AI agent skills are becoming a new attack surface and most teams aren’t prepared.
In OpenClaw, “skills” are treated as documentation, but in reality, they can act as installers.
Jason Meller
, VP & Security Strategist
@1password
, found a top-downloaded skill in a popular registry was being used to deliver macOS infostealing malware.
This is why agentic AI needs identity and access controls that are time-bound, revocable, and attributable.
Must-read 👉 https://bit.ly/3OkmCgn
We knew this was coming, but now the clock is running. From Privacy International:
"Yesterday the Trump Administration announced a proposed change in policy for travellers to the U.S. It applies to the powers of data collection by the Customs and Border Police (CBP)."
"If the proposed changes are adopted after the 60-day consultation, then millions of travellers to the U.S. will be forced to use a U.S. government mobile phone app, submit their social media from the last five years and email addresses used in the last ten years, including of family members. They’re also proposing the collection of DNA."
PI linked to and summarized a Federal Register entry describing the proposed requirements:
-All visitors must submit ‘their social media from the last 5 years’
-ESTA (Electronic System for Travel Authorization) applications will include ‘high value data fields’, ‘when feasible’
‘telephone numbers used in the last five years’
-‘email addresses used in the last ten years’
-‘family number telephone numbers (sic) used in the last five years’
-biometrics – face, fingerprint, DNA, and iris
-business telephone numbers used in the last five years
-business email addresses used in the last ten years.
The Federal Register entry says comments are encouraged and
must be submitted (no later than February 9, 2026) to be assured of consideration.
Federal Register entry: https://www.govinfo.gov/content/pkg/FR-2025-12-10/pdf/2025-22461.pdf
Printing a prototype for an articulated dragon neck. The idea is that each of these assemblies can pivot on 2 axes, and if we stack a bunch of them we can control their position using 4 wires that travel along the outside.
Only one way to find out!
Two more days and then I’m OFF ON VACATION UNTIL 2026, and honestly, that’s all my brain is focusing on right now.
Heading to Dublin for a few days and then spending the rest of the year cooking, baking, gaming, celebrating with friends and family, and who knows, maybe even a bit of coding. I cannot wait.
Oh, the weather outside is frightful... ❄️
Soon 🎄
1Password
BrianKrebs
Ianiv 🇨🇦 🇲🇽
Simon B. Støvring
kepano
Matthew Cassinelli
Vishnu Prem
John Gruber