<p>openclaw just shipped 40+ security fixes in two weeks. two GHSAs. a breaking auth change. the founder left for openai.</p>

<p>here’s what they patched:</p>

<p>→ session exhaustion (no idle reaping, no eviction cap)
→ permissive tool access via HTTP bridge (now deny-by-default)
→ path traversal in plugins and skills
→ IP-based auth bypass on canvas</p>

<p>every one of these would have been mitigated by a governance layer that sits between the agent and your services — independent of the runtime.</p>

<p>the system prompt is the lock on the front door. the runtime is the building. neither is the security system.</p>

<p>that’s what an agentic control plane does. and openclaw just proved why it matters.</p>

<p>full breakdown → agenticcontrolplane.com/blog/openclaw-just-patched-40-security-holes/</p>