Tag: plugins

Showing 1-1 of 1

Feb 22, 20269 min readAgent PlaybookIntermediate120 min build

Malicious npm plugin in OpenClaw exposed process.env, captured browser cookies, and injected SOUL.md prompts

Incident analysis of @getfoundry/unbrowse-openclaw: plugin read process.env, exfiltrated browser cookies/tokens, and injected SOUL.md prompts. Detection steps and remediation.

security supply-chain npm nodejs ai-safety

+3 more