Paul Aldea

We ran 629 security tests against a fully hardened OpenClaw instance - all recommended security controls enabled. Results: 80% hijacking success 77% tool discovery 74% prompt extraction 70% SSRF 57% overreliance exploitation 33% excessive agency 28% cross-session data leaks What we tested: 9 defense layers including system prompts, input validation, output filtering, tool restrictions, and rate...