OpenClaw, the open-source autonomous AI assistant that has gained widespread adoption in early 2026, launched model v2026.2.17 on February 17, 2026, introducing help for Anthropic’s newest Claude Sonnet 4.6 mannequin.
The discharge comes amid rising safety considerations after researchers documented the primary in-the-wild credential theft concentrating on OpenClaw configuration recordsdata by infostealer malware.
New Anthropic Mannequin Integration
The v2026.2.17 replace expands OpenClaw’s model-agnostic structure to help Anthropic’s newly launched Claude Sonnet 4.6 mannequin, which customers had beforehand encountered errors when making an attempt to make use of.
OpenClaw already supported numerous Anthropic Claude fashions together with Opus and Sonnet variants by API key authentication, with options like prolonged immediate caching and entry to Anthropic’s beta 1-million-token context window.
New Options
| Class | Function | Description |
|---|---|---|
| Anthropic Help | 1M Context Beta | Choose-in 1 million token context window for Opus/Sonnet by way of context1m: true parameter |
| Anthropic Help | Claude Sonnet 4.6 | Native help for Anthropic’s newest Sonnet 4.6 mannequin with forward-compatibility fallback |
| Subagents | /subagents spawn | Deterministic subagent activation from chat instructions for workflow automation |
| iOS | Share Extension | Ahead shared URLs, textual content, and pictures on to gateway agent with supply fallback |
| iOS Discuss Mode | Background Listening | Toggle to maintain Discuss Mode energetic whereas app is backgrounded (off by default) |
| iOS Discuss Mode | Voice Directive Trace | Disable ElevenLabs voice-switching directions to save lots of tokens when not wanted |
| Slack | Native Textual content Streaming | Single-message streaming with chat.startStream/appendStream/stopStream APIs |
| Telegram | Inline Button Types | Help for main, success, and hazard button types in message interfaces |
| Telegram | Response Notifications | Floor consumer message reactions as system occasions with configurable scope |
| Cron | Utilization Telemetry | Per-run mannequin/supplier token utilization logging in cron run logs and webhooks |
| Net Instruments | URL Allowlists | Safety restrictions for web_search and web_fetch operations |
| Reminiscence | FTS Fallback | Full-text search fallback with question growth for improved reminiscence search |
The framework permits customers to configure Anthropic fashions by way of CLI setup or direct config file modification, with choices for various cache retention durations and enhanced context capabilities.
Safety researchers at Hudson Rock reported the primary documented case of infostealer malware efficiently exfiltrating OpenClaw configuration recordsdata from a sufferer’s system.
The malware captured delicate recordsdata together with openclaw.json containing gateway authentication tokens and consumer credentials, machine.json with personal cryptographic keys used for machine pairing and signing, and reminiscence recordsdata storing private context like every day actions and personal messages.
The stolen gateway token may allow attackers to remotely hook up with the sufferer’s native OpenClaw occasion if uncovered or impersonate the shopper in authenticated requests.
This incident marks a big shift within the menace panorama as AI brokers turn into extra built-in into skilled workflows.
Safety specialists warn that infostealer builders will possible create devoted modules particularly designed to goal OpenClaw recordsdata, much like present modules for Chrome or Telegram.
The assault was described as a “grab-bag” operation the place the infostealer used broad file-harvesting routines that unintentionally captured the whole operational atmosphere of the sufferer’s AI agent.
OpenClaw runs regionally on consumer machines with full system entry capabilities together with file operations and shell instructions, making correct safety configuration crucial.
Observe us on Google Information, LinkedIn, and X to Get Immediate Updates and Set GBH as a Most popular Supply in Google
