logoalt Hacker News

croesyesterday at 6:29 PM3 repliesview on HN

That’s only half of the problem.

People give OpenClaw access to their online services like mails where it can also do damage.

A hardened environment doesn’t prevent those kind of damage

Replies

ziml77yesterday at 6:36 PM

As people have pointed out in other threads, you don't even need access to these services to cause problems. As long as the AI can send any bytes out, it can leak information. Like you may think of an HTTP GET as read-only, but you can pack any data you want into the URL or headers.

show 2 replies
alt187yesterday at 6:37 PM

There's no hardening against idiocy.

avouticyesterday at 6:46 PM

It does, of you use WardGate [1] and only allow read and archive access and only delete access on your inbox but nothing else for instance.

1 https://github.com/wardgate/wardgate