Comment by jdkoeck

10 days ago

It is completely vibe coded. The author himself says he doesn't check the code.

https://x.com/Hesamation/status/2016712942545240203

Can't believe people are giving it full access to their MacOS user session. It's a giant vulnerability waiting to happen.

Sending an email with prompt injection is all it takes.

https://x.com/Mkukkk/status/2015951362270310879

3 comments

jdkoeck

Reply

swordsith 10 days ago

this should be top comment, this whole project is a 0 day orgy

mh2266 9 days ago
the documentation contains the actual line:
> This is remote code execution on the Mac
https://docs.openclaw.ai/gateway/security
I... what....? what are people expecting?
- GreenWatermelon 8 days ago
  
  This is the result of years of people sniffing the AI Powder. Our collective intelligence as a species is falling off a cliff.