Indirect prompt attacks, malicious context, and tool abuse.
Miasma is a Rust web server that serves toxic content and recursive links to malicious scrapers instead of normal pages. The discussion quickly turned to whether hidden-link traps work against browser-based crawlers or mainly trigger another blacklist and anti-bot arms race, so operators should test crawler behavior before adopting it.
OpenClaw's maintainer asked users to switch to the dev channel and stress normal workflows before a large release that may break plugins. Watch harness speed, context plugins, and permission boundaries closely while the SDK refactor lands.
Anthropic's Opus 4.6 system card shows indirect prompt injection attacks can still succeed 14.8% of the time over 100 attempts. Treat browsing agents and prompt secrecy as defense-in-depth problems, not solved product features.
Security coverage around OpenClaw intensified with a report on indirect prompt injection and data exfiltration risks, while KiloClaw published an independent assessment of its hosted isolation layers. Review your default configs and sandbox boundaries before exposing agents to untrusted web or tenant data.
