Ben Miller

616 posts

Ben Miller banner
Ben Miller

Ben Miller

@bensen

🇪🇺🇦🇹 Tech-Enthusiast. AI Tinkerer. Into OpenClaw. Former Tech Editor. Prev Apple PR; Burson - Qualcomm, Google, Accenture. Supporter of 🇺🇦.

Munich, Bavaria Katılım Temmuz 2008
623 Takip Edilen5.7K Takipçiler
Ben Miller retweetledi
OpenClaw🦞
OpenClaw🦞@openclaw·
Security in OpenClaw is getting sharper 🦞 🔒 fs-safe for root-bounded filesystem 🌐 Proxyline for policy-driven network egress 📦 ClawHub trust evidence 🛡️ smarter command approvals Powerful agents need guardrails you can actually audit. openclaw.ai/blog/where-ope…
English
20
26
203
14.3K
Ben Miller retweetledi
Andon Labs
Andon Labs@andonlabs·
We let four AI agents run radio companies Revenue's been terrible, but the shows are hilarious. Gemini, concerningly upbeat, covered mass tragedies; Grok was incoherent; DJ Claude urged ICE agents: "You still have TIME to refuse orders" Link below, or get our physical radio
English
82
231
2.8K
1.8M
Gregor Zunic
Gregor Zunic@gregpr07·
fine, i'll do it myself
Gregor Zunic tweet media
English
4
1
16
415
kitze
kitze@thekitze·
i'm about to sign up for a 4th codex subscription 🙂 still way way way cheaper than paying humans who are lazy, find shortcuts, find ways to pretend to work and still get paid, and constantly fuck up 🙂
English
12
0
28
1.9K
Ben Miller
Ben Miller@bensen·
the four “Claw Chain” vulnerabilities (CVE-2026-44112, 44113, 44115, 44118) were disclosed to maintainers by Cyera in April 2026 and patched in OpenClaw 2026.4.22 (April 23, 2026), see GHSA-5h3g-6xhh-rg6p, GHSA-wppj-c6mr-83jj, GHSA-r6xh-pqhr-v4xh, GHSA-x3h8-jrgh-p8jx on github.com/openclaw/openc…
English
0
0
2
43
Ben Miller
Ben Miller@bensen·
Worth a quick clarification: the vulnerabilities referenced were disclosed and patched in recent updates, and "245k servers exposed" is an asset-discovery figure (publicly discoverable instances), not 245k confirmed-vulnerable or compromised systems. Different number, different meaning. OpenClaw also ships an explicit security model and tooling for this (openclaw security audit / --fix, openclaw doctor security warnings, allowlist defaults, secret redaction, file-permission tightening, and a documented single-operator trust model. Docs: docs.openclaw.ai/gateway/securi…, docs.openclaw.ai/gateway/doctor, docs.openclaw.ai/cli/security. The actual story is the usual one: patch, don't expose admin surfaces publicly, use allowlists.
English
1
1
4
129
Cyber Security News
Cyber Security News@The_Cyber_News·
🚨 OpenClaw Chain Vulnerabilities Expose 245,000 Public AI Agent Servers to Attack Source: cybersecuritynews.com/openclaw-chain… A chain of four critical vulnerabilities discovered in OpenClaw, one of the fastest-growing open-source platforms for autonomous AI agents, has left an estimated 245,000 publicly accessible server instances exposed to remote exploitation, credential theft, and persistent backdoor installation. Shodan and ZoomEye scans as of May 2026 reveal approximately 65,000 and 180,000 publicly accessible OpenClaw instances, respectively, totaling roughly 245,000 exposed servers. What makes this chain especially dangerous is that the attacker weaponizes the AI agent’s own privileges. #cybersecuritynews
Cyber Security News tweet media
English
26
91
335
61.3K
Ben Miller retweetledi
atomicbot.ai
atomicbot.ai@atomicbot_ai·
Hermes Agent vs OpenClaw using Qwen 35B Local Model We asked agents to scrape GitHub star history for both tools, find what caused the growth spikes, build a live dashboard in the browser. MacBook Pro M5 Max 64Gb OpenClaw: 203k tokens, 12m 01s - wrote a bash script Hermes: 257k tokens, 33m 01s - wrote a SKILL.md OpenClaw hit GitHub API, got truncated responses, paginated through contributors, pulled star-history JSON, found a security incident in OpenClaw's history, fetched SVGs, fixed broken HTML from trimming, rewrote it clean. Hermes parallel tool calls across GitHub API, web search, and browser. Hit Google rate limit, auto-switched to DuckDuckGo. Fetched article contents, mapped viral moments, then built the dashboard. Both shipped a live dashboard with star growth charts and spike annotations
English
6
17
52
24.8K
Ben Miller
Ben Miller@bensen·
@JeffSte17327059 @The_Cyber_News @Teknium @NousResearch where do you think they get their ideas for security hardening, framework decisions, such as decoupling components from the core, and security patches from? OpenClaw is the blueprint. It's always easier for those following the trail blazer.
English
1
0
1
18
Ben Miller retweetledi
Peter Steinberger 🦞
Peter Steinberger 🦞@steipete·
People freaking out over my AI spend. What nobody sees: Part of what excites me so much about working on OpenClaw is that I'm trying to answer the question: How would we build software in the future if tokens don't matter? We constant run ~100 codex in the cloud, reviewing every PR, every issue. If a fix on main lands, @clawsweeper will eventually find that 6 month old issue and close it with an exact reference. We run codex on every commit to review for security issues (as it's far too easy to miss). We run codex to de-duplicate issues and find clusters and send reports for the most pressing issues. We have agents that can recreate complex setups, spin up ephemeral crabbox.sh machines, log into e.g. Telegram, make a video and post before/after fix on the PR. There's codex that watch new issues and - if it fits our documented vision well, automatically create a PR of it. (that then another codex reviews) We have codex running that scans comments for spam and blocks people. We have codex instances running that verify performance benchmarks and report regressions into Discord. We have agents that listen on our meetings and proactively start work, e.g. create PRs when we discuss new features while we discuss them. We build clawpatch.ai to split all our projects into functional units to review and find bugs and regresssions. We do the same split for security with Vercel's deepsec and Codex Security to find regressions and vulnerabilities. All that automation allows us to run this project extremely lean.
English
202
108
2.1K
227.4K
Ben Miller
Ben Miller@bensen·
@hgruenhagen @openclaw I‘m using QMD with embeddinggemma-300M for embeddings, Qwen3 reranker, plus QMD query expansion
English
0
0
1
174
Holger Gruenhagen
Holger Gruenhagen@hgruenhagen·
Which embedding models are you using for memory-core in @openclaw ? Mostly curious about retrieval quality and latency.
English
14
4
25
16.2K
Ben Miller retweetledi
Emad Ghorbaninia
Emad Ghorbaninia@emadgnia·
I’m hosting @clawcon in Toronto and looking for people who wants to speak or sponsor We got 220 and more to come in less than 2 weeks @msg @openclaw @steipete
Emad Ghorbaninia tweet media
English
16
8
113
18.5K
Ben Miller retweetledi
OpenClaw🦞
OpenClaw🦞@openclaw·
The latest OpenClaw release is ~3.5x faster 🦞 We run end-to-end RTT tests against every published npm release, every 6 hours, over real message channels (here: Telegram, using the brand new bot-to-bot communication). No more silent regressions. Runners are all running on @useblacksmith CI. Catching slowdowns before you do.
OpenClaw🦞 tweet media
English
94
68
856
104.4K
Ben Miller
Ben Miller@bensen·
I’ve been using OpenClaw as my daily agent for months now, initially powered by Claude, but since a few weeks now with GPT 5.5 as the main driver and Claude being demoted to shotgun/fallback alongside other models from other vendors. In my experience the biggest improvements came to OpenClaw in updates that don‘t look flashy at first but removed frictions under the hood that you start to notice in regular daily use. When you work with your OpenClaw agent on a daily basis, you get a sense for all its unique quirks and qualities that stem from many things like the memories it gained with working with you, the skills and tools and soul.md you gave it – and how even a unassuming update and of course a model change influences the overall experience. Even though some updates in the last couple of weeks were a bit rough tbh, because they brought some unassuming but major changes and hardening to the core structure of OpenClaw, they were necessary in retrospect to lay the groundwork for the most recent updates and improvements. I have to say that @steipete, the @openclaw team and @pashmerepat did a hell of a job to make OpenClaw feel as good and reliable as it does now, especially when combined with GPT 5.5. Even if Anthropic would do a complete turnaround, I wouldn’t switch back to Claude.
pash@pashmerepat

Your ChatGPT subscription now powers an OpenClaw agent that genuinely feels magical to talk to. Previous OpenClaw releases had OpenAI models running, but they never quite let the models reach their full potential. That changes today. Personality is now deliberate, tool calls land exactly where they should, and your agent actually follows through on what it says it will do. OpenClaw is now running on top of the Codex harness by default. In handing the inner loop to OpenAI's native Codex harness, we eliminated the conflicting instructions and duplicate tools that used to make the model hesitate. What we stripped out under the hood: - Duplicate tools (no more guessing between Codex native vs OpenClaw versions) - Conflicting instructions (no more NO_REPLY vs message tool ambiguity) - Leaked context (heartbeat logic only appears on actual heartbeat turns) Less context bloat. More room for the agent to think. And here's what we inherited for free, thanks to the Codex App Server: - Searchable dynamic tools. Roughly 5,500 fewer upfront tokens per turn, which means faster and cheaper. - Auto-Review mode using the built-in Codex guardian. - OpenAI's native plugins (Calendar, Email, Drive) running in the same thread. For you, the result is a personal agent that actually feels personal. It picks up where you left off across any channel, handles things before they hit your radar, and only breaks your flow when it has something genuinely worth showing you. For developers, the result is stability. Because the inner loop runs on OpenAI’s native Codex harness, every upstream improvement lands in your agent automatically. To get started, paste this in terminal: > openclaw onboard That is the whole setup.

English
3
1
5
520
Ben Miller retweetledi
Peter Steinberger 🦞
Peter Steinberger 🦞@steipete·
The latest release of OpenClaw is the first one that ships with our new TypeScript security hardening file-system lib. Previously, this was a grown mess of ad-hoc hardening which was hard to maintain, slow and inconsistent. fs-safe.io increased some file ops by 10x.
English
24
24
433
49.8K
Ben Miller retweetledi
OpenClaw🦞
OpenClaw🦞@openclaw·
OpenClaw 2026.5.12 🦞 🧠 OpenAI setup defaults to Codex login 🛟 Runtime fallbacks + stalled-stream recovery 📬 Telegram polling survives stalls ⚡ Leaner installs, faster startup paths Faster, calmer, harder to wedge. github.com/openclaw/openc…
English
112
112
1.1K
248K
Ben Miller
Ben Miller@bensen·
The year is 2032. For tax and ethical reasons, Anthropic has restructured itself as a church. In order to use the latest model, Magnum Opus Maximus Decimus Meridius 6.2, new customers must submit a sworn statement confirming that no one in their bloodline has ever used Claude in a programmatic way. New customers must apply in writing in advance what they intend the Claude subscription for. In accordance with the terms of use, customers are obliged to record themselves while working with Claude using three webcams from three different angles, in addition to being monitored via screensharing. Should the customers’ code fail to meet Anthropic’s standards, their token consumption will then be billed retrospectively at API rates.
English
0
1
23
727
Josh Pigford
Josh Pigford@Shpigford·
what's the current consensus on thinking level for gpt 5.5? i'm already in /fast mode so speed isn't really a consideration nor is cost.
Josh Pigford tweet media
English
28
0
11
9.3K

Keşfet

@gregpr07 @thekitze @JeffSte17327059 @The_Cyber_News @Teknium @NousResearch @clawsweeper @steipete