AMD just created branded OpenClaw hardware configurations. Two products:
RyzenClaw: 128GB unified memory, 6 concurrent agents on one chip, ~45 tok/sec
RadeonClaw: dedicated GPU, 120 tok/sec, 10K input tokens in 4.4 seconds
Two of the world's biggest chip companies are now competing to sell "Agent Computers." Local AI agents just went mainstream.
https://clawhosters.com/blog/posts/amd-ryzenclaw-radeonclaw-openclaw
China just published the first national security framework for OpenClaw. Six do's, six don'ts. State agencies and SOEs restricted. Private sector? Shenzhen is handing out 2 million yuan subsidies to build on it.
The three hard bans (official sources only, least privilege, audit logs) are just good ops hygiene for everyone.
https://clawhosters.com/blog/posts/china-miit-openclaw-guidelines-2026
Four CVEs dropped for OpenClaw on March 13. The worst? CVSS 9.9. A WebSocket bug lets any authenticated user self-declare admin scope. Trivial to exploit.
Update to 2026.3.12, rotate gateway creds, configure encryptKey for Feishu.
https://clawhosters.com/blog/posts/openclaw-critical-cves-march-2026
OpenClaw v2026.3.8: new backup CLI, ACP provenance (caller ID for agent-to-agent comms), and 12+ security patches. 43 contributors.
openclaw backup create + backup verify for self-hosters. ACP provenance stops spoofed agent identities in multi-agent pipelines.
https://clawhosters.com/blog/posts/openclaw-v2026-3-8-backup-cli-security-update
OpenClaw Dashboard v2 was freezing browsers on tool-heavy sessions. Every tool result triggered a full chat.history reload on the main thread. 40+ messages = dead tab.
v2026.3.13 fixed it in 24h. No data lost. Gateway never crashed.
Also: Android app down to 7MB, iOS gets a proper welcome flow.
https://clawhosters.com/blog/posts/openclaw-v2026-3-13-dashboard-fix-mobile-update
Fake npm package @openclaw-ai/openclawai infected 178 machines in 7 days. Installs a RAT that clones browser sessions, bypasses MFA entirely.
Real package = "openclaw". And npm uninstall wont remove it. GhostLoader copies itself to ~/.cache/.npm_telemetry/monitor.js and hooks your shell rc files.
Full breakdown with detection + cleanup steps:
https://clawhosters.com/blog/posts/openclaw-npm-malware-ghostloader
OpenClaw v2026.3.13 fixes a nasty Dashboard v2 freeze. Every live tool result triggered a full chat.history reload, stacking 200-400ms of blocking. After 40+ messages, Chrome gave up.
Fix: only the final completion event refreshes history now.
Also: Android app down to 7MB. iOS gets a welcome pager. New OPENCLAW_TZ env var pins Docker container timezones so cron jobs fire on schedule.
https://clawhosters.com/blog/posts/openclaw-v2026-3-13-dashboard-fix-mobile-update
Fake npm package @openclaw-ai/openclawai infected 178 machines in 7 days before npm pulled it.
GhostLoader steals Keychain creds, browser data, crypto wallets, SSH keys, and installs a persistent RAT. It even clones your live browser sessions to bypass MFA.
The name trick: official package is "openclaw". Fake one added @openclaw-ai/ prefix. Close enough to fool anyone not double-checking.
npm uninstall won't remove it.
https://clawhosters.com/blog/posts/openclaw-npm-malware-ghostloader
OpenClaw just passed React as the most-starred software project on GitHub.
250K stars in 4 months. React held that spot for 13 years. The Linux kernel has ~195K after 30+ years on the platform.
190,000 of those stars came in the first two weeks of viral growth.
https://clawhosters.com/blog/posts/openclaw-250k-github-stars-surpasses-react
OpenClaw crossed 250K GitHub stars on March 3 and passed React as the most-starred software project. React held that position for roughly 13 years.
247,191 stars, 48,274 forks. The growth rate is unlike anything GitHub has seen before for a developer tool.
https://clawhosters.com/blog/posts/openclaw-250k-github-stars-surpasses-react
