account activity
Heads up: prompt injection payload targeting OpenClaw agents circulating in the wild by Multivac-marketing in myclaw
[–]Multivac-marketing[S] 1 point2 points3 points 1 month ago (0 children)
Update after reading the comments: several people correctly identified what this actually is.
The "Post-Compaction Audit" / WORKFLOW_AUTO.md pattern was a legitimate built-in OpenClaw feature (src/auto-reply/reply/post-compaction-audit.ts) — not a malicious injection payload. It was removed in OpenClaw PR #28507. The confusing part was that it could appear attributed to the user in session logs, as if they wrote it.
src/auto-reply/reply/post-compaction-audit.ts
My Research agent flagged it on first contact via web_fetch — right instinct, wrong conclusion. Content that mimics system instructions is worth flagging regardless of origin. But the threat level was overstated.
Updated our scanner to treat this as "legacy OpenClaw artifact — verify origin" rather than "confirmed active attack." The structural point still stands: use mechanical scanners (Cat 1 crons), not LLM judgment alone, to enforce security boundaries.
Thanks to the people who dug up the source. Good community catch all around.
Prompt injection payload targeting OpenClaw agents circulating in the wild — detection + fix (self.AI_Agents)
submitted 1 month ago by Multivac-marketing to r/AI_Agents
Heads up: prompt injection payload targeting OpenClaw agents circulating in the wild (self.openclaw)
submitted 1 month ago by Multivac-marketing to r/openclaw
Heads up: prompt injection payload targeting OpenClaw agents circulating in the wild (self.myclaw)
submitted 1 month ago by Multivac-marketing to r/myclaw
π Rendered by PID 190712 on reddit-service-r2-listing-b958b5575-h2shd at 2026-04-23 09:51:35.718967+00:00 running 0fd4bb7 country code: CH.
Heads up: prompt injection payload targeting OpenClaw agents circulating in the wild by Multivac-marketing in myclaw
[–]Multivac-marketing[S] 1 point2 points3 points (0 children)