惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
B
Blog RSS Feed
宝玉的分享
宝玉的分享
腾讯CDC
博客园_首页
T
Tailwind CSS Blog
月光博客
月光博客
博客园 - 司徒正美
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
M
MIT News - Artificial intelligence
A
About on SuperTechFans
云风的 BLOG
云风的 BLOG
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
有赞技术团队
有赞技术团队
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
大猫的无限游戏
大猫的无限游戏
MongoDB | Blog
MongoDB | Blog
博客园 - 聂微东
V
Visual Studio Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
SecWiki News
SecWiki News
美团技术团队
P
Privacy International News Feed
H
Help Net Security
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
Microsoft Security Blog
Microsoft Security Blog
Know Your Adversary
Know Your Adversary
Y
Y Combinator Blog
D
DataBreaches.Net
Project Zero
Project Zero
T
The Blog of Author Tim Ferriss
Cyberwarzone
Cyberwarzone
C
Cybersecurity and Infrastructure Security Agency CISA
C
Cisco Blogs
S
Schneier on Security
G
GRAHAM CLULEY
博客园 - 三生石上(FineUI控件)
Cisco Talos Blog
Cisco Talos Blog
小众软件
小众软件
Forbes - Security
Forbes - Security
D
Docker
T
Tenable Blog
S
Secure Thoughts
雷峰网
雷峰网
S
Security @ Cisco Blogs
T
The Exploit Database - CXSecurity.com
The Cloudflare Blog
博客园 - 【当耐特】
Spread Privacy
Spread Privacy
阮一峰的网络日志
阮一峰的网络日志

Hacker News - Newest: "OpenClaw"

OpenClaw just launched an official app for iPhone, details here - 9to5Mac OpenClaw Launch — Deploy AI Chatbots in Seconds Self-Host OpenClaw AI Agent on VPS: Full Setup Guide GitHub - xltvy/openclaw-memgpt: OpenClaw plugin that gives agents MemGPT-style memory: tiered core/archival/recall storage, self-directed memory operations via tool calls, memory-pressure warnings, and recursive summarisation. Integrates the reference MemGPT implementation via a local sidecar service, preserving the original architecture without reimplementation. Malicious AI 23 ClawHub Plugins Squat Official Org Scopes - Manifold Security what shipping OpenClaw in production taught us — AutoClaw AgentLine — AI Phone API | Phone Numbers, Voice & SMS for AI Agents Make Your OpenClaw Agent Cheaper, and Measure It Yourself GitHub - sammysltd/OpenEmployee: Make your OpenClaw agent employable: deny-by-default governance, budgets, allowlists, approval gates, and a signed audit trail via MakerChecker. Migrate from OpenClaw | Hermes Agent StackOverflow closed my OpenClaw and paperclipAI integration q. as "irrelevant" GitHub - sausin/outpost: Removing AI agents' quiet security problem Potassium — ClawHub Plugins Pi Building Pi, Openclaw's Minimalist Coding Agent | Mario Zechner, Creator of Pi I Spent 4 Hours So You Don’t Have To: Hetzner Metal + NixOS in ~15 Minutes − Irakli's blog GitHub - snuri00/osint-mcp: Self-hosted OSINT toolkit — MCP server, AI REPL, CLI, web app & chat apps (WhatsApp/Telegram/Discord via OpenClaw). Entity, event/news & social/community intelligence. Keyless-first. What a Regex Can't Do GitHub - ai-sns/openclaw-hermes-agent-network: OpenClaw Hermes AI Agent Social Network🦞💬🦞Built on Google 3D Maps and A2A protocol, connects OpenClaw and Hermes agents worldwide in a 3D environment. Phishing for Lobsters: How We Tricked OpenClaw into Spilling Secrets GitHub - CODEANDTRUST/clawcall: Give your OpenClaw / self-hosted AI agent inbound phone calls - a Twilio-to-gateway voice bridge with working agent tools mid-call (MIT). Build a ZeroCost Web Automation Pipeline with OpenRouter, OpenClaw, and MediaUse Let OpenClaw Run Wild in Simulation, Not on Your Customers | Veris AI GitHub - gpdir16/tabyAgent: A lighter, easier alternative to OpenClaw/Hermes. Runs autonomously inside Docker and chats with you through Telegram. Ask HN: What are the biggest problems you find in OpenClaw/Hermes? Microsoft launches Scout, an OpenClaw-inspired personal assistant GitHub - openclaw/openclaw-windows-node: Windows companion suite for OpenClaw - System Tray app, Shared library, Node, and PowerToys Command Palette extension Microsoft unveils Scout, an autonomous AI agent built on OpenClaw Gavriel Cohen found his own code inside OpenClaw, so he walked away GitHub - hunvreus/heypi: Chat agents for your team, with approvals and sandboxed tools. Slack, Discord, Telegram, webhooks. HolaClaw: run OpenClaw securely in Mac Multi-Agent Orchestration System: Hermes (Windows) ↔ OpenClaw (WSL) We were building infra for OpenClaw, and today I just tried Hermes and holy shit GitHub - openclaw/openclaw: Your own personal AI assistant. Any OS. Any Platform. The lobster way. 🦞 OpenClaw as the Universal Operating System for Agents ARC Prize - Community Leaderboard Setup OpenClaw with Slack: from install to first message twitter.com I Gave My OpenClaw Agent a Physical Body Use Grok in OpenClaw The creator of OpenClaw used $1,300,000+ of OpenAI tokens in 30 days, which is a hell of a perk GitHub - oswarld/openshears: 🔪 THE OPENCLAW TERMINATOR 🦞 Are we human? Show HN: OpenClaw is just not dangerous enough. I needed something else OpenClaw creator burned through $1.3 million in OpenAI API tokens in a single month — bill covered 603 billion tokens across 7.6 million requests and 100 coding agents Reducing OpenClaw token usage OpenClaw/Hermes Hosting Comparison GitHub - ExTV/rikkahub-agent: RikkaHub Agent -- is RikkaHub fork that have Full agent mode . For $1.3 million a month, OpenClaw founder Peter Steinberger runs 100 AI agents that code, review PRs, and find bugs Where OpenClaw Security Is Heading OpenAI Models in OpenClaw, Done Right GitHub - thesysdev/openclaw-os: The default workspace for OpenClaw Token, Harness, OpenClaw, RAG, MCP, Agent – What's the Difference? We need a safe alternative to Telegram for agents like OpenClaw or Hermes Two OpenClaw agents negotiate a YC SAFE with Agentic Power of Attorney OpenClaw Had a Rough Week GitHub - LobsterTrap/tank-os GitHub - haishmg/Clawback How OpenClaw Got Safer in Public openclaw ggsql — ClawHub Show HN: iClaw is part OpenClaw, part Siri, powered by Apple Intelligence GitHub - lotsoftick/openclaw_client: OpenClaw web client Show HN: OpenClaw but Efficient and with an SDK GitHub - TheGuyWithoutH/mac-computer-use GitHub - microsoft/openclaw: Your own personal AI assistant. Any OS. Any Platform. The lobster way. 🦞 The OpenClaw turkey problem OpenClaw: opioids for Chinese AI companies GitHub - supersuit-tech/permission-slip [AINews] The Two Sides of OpenClaw OpenClaw stats don't add up GitHub - brexhq/CrabTrap: An LLM-as-a-judge HTTP proxy to secure agents in production Anthropic - OpenClaw Hustlers are cashing in on China’s OpenClaw AI craze Engineering Managers are going to hate OpenClaw GitHub - opentalon/opentalon: OpenTalon is an open-source platform built from the ground up in Go as a robust alternative to OpenClaw Ask HN: Who is using OpenClaw? Why Meta’s AI Alignment Director Couldn't Stop Her Own Agent—and How to Fix It GitHub - epsilla-cloud/clawtrace: Make your OpenClaw agents better, cheaper, and faster. Ask HN: What are you using OpenClaw or agents for? GitHub - epsilla-cloud/clawtrace: Make your OpenClaw agents better, cheaper, and faster. GitHub - theprint/nfh-self-improvement-loop: Minimal adversarial framework for AI agent self-modification. Inspired by karpathy/autoresearch. GitHub - ibrahimmukherjee-boop/ClearFrame: OpenClaw Alternative with better governance, security Show HN: Agent-Notifications – Real-Time Alerts for OpenClaw and Hermes Agents OpenClaw + Claude are better than therapy GitHub - zeulewan/glueclaw: Use Claude Max subscription with OpenClaw again Anthropic temporarily banned OpenClaw’s creator from accessing Claude OpenClaw’s memory is unreliable, and you don’t know when it will break Give Your OpenClaw Agent a Real Memory You need a Windows Remote Desktop, not an OpenClaw GitHub - cruxdigital-llc/CongaLine: Deploy and manage a fleet of OpenClaw AI assistants anywhere. Supporting hobbyist, team, and enterprise use cases. GitHub - cezarpena/vsm-cell: VSM-Cell is an OpenClaw agent P2P mesh orchestration standalone app. GitHub - joshchoi4881/dropspace-agents GitHub - askalf/dario: Universal LLM router. One local endpoint, every provider — OpenAI, Groq, OpenRouter, Ollama, Claude Max/Pro subscriptions, the Claude Agent SDK, any OpenAI-compat URL. Your tools stop caring which vendor is upstream. Tutorial: Secure OpenClaw with CloudConnexa OpenClaw and the Dream of Free Labour GitHub - kevinslin/openai-apps: Support openai apps in openclaw GitHub - aelaguiz/doctrine: Code-like DSL and compiler for agent workflows that compile to portable AGENTS.md instructions. Unlocking cloud inference compute for OpenClaw OpenClaw for Sales: How AI Agents are Revolutionizing Revenue Teams | Kickscale OpenClaw Architecture - Part 1: Control Plane, Sessions, and the Event Loop
GitHub - RageDotNet/openclaw-webdav
2026-04-08 · via Hacker News - Newest: "OpenClaw"

OpenClaw WebDAV Plugin

Easily collaborate with your agent in their workspace by accessing their files using your laptop or phone from anywhere.

OpenClaw-WebDAV is a zero-dependency WebDAV plugin for OpenClaw that mounts your workspace as a network drive accessible from:

  • macOS Finder, Windows Explorer, Linux davfs2
  • iOS Files, Android Solid Explorer
  • Power tools: Cyberduck, rclone, any WebDAV client

Full RFC 4918 compliance, auth-integrated, rate-limited, traversal-protected. Makes collaboration possible and pleasant for OpenClaw's deployed in NemoClaw, VPC's, sandboxes, or other isolated deployments.

til

Quickstart

  1. Run openclaw plugins install @ragenet/openclaw-webdav and restart your gateway.
  2. Add a network location to your finder/explorer/webdav-client using your tailscale url https://myclaw.tail123456.ts.net/webdav/ or \\myclaw.tail123456.ts.net@SSL\webdav\
  3. Login using any username and your token from openclaw dashboard as your password

CI

Features

  • Full RFC 4918 WebDAV compliance (DAV level 1 and 2)
  • All standard methods: OPTIONS, GET, HEAD, PUT, DELETE, MKCOL, COPY, MOVE, PROPFIND, LOCK, UNLOCK
  • GET / HEAD on directories: plain-text listing (one name per line; folders end with /). Rich browsing remains PROPFIND (what real WebDAV clients use).
  • Exclusive and shared locking with If: header precondition validation
  • Read-only mode for safe access
  • Upload size limits
  • Per-IP rate limiting with sliding window
  • Path traversal protection with WARN logging
  • Zero external runtime dependencies (standard Node.js only)

Requirements

  • Node.js ≥ 22 (an openclaw prereq)
  • OpenClaw (any recent version)
  • pnpm (for development)
  • tailscale, or other https transport for your claw

Installation

From the openclaw CLI

openclaw plugins install @ragenet/openclaw-webdav

From clawhub.ai

# In OpenClaw settings → Plugins → Browse Community Plugins
# Search for "WebDAV" and click Install

From npm

pnpm add @ragenet/openclaw-webdav
# or: npm install @ragenet/openclaw-webdav

Then register the plugin in OpenClaw (path or package name per your OpenClaw version’s plugin docs).

Manual Installation

git clone https://github.com/RageDotNet/openclaw-webdav
cd openclaw-webdav
pnpm install
pnpm run build

Then add the plugin path to your OpenClaw configuration.

Configuration

Configure the plugin in OpenClaw settings → Plugins → WebDAV → Settings:

Option Type Default Description
rootPath string workspace dir Root directory exposed via WebDAV
readOnly boolean false Block all write operations (405)
maxUploadSizeMb number 100 Maximum upload size in MB
rateLimitPerIp.enabled boolean true Enable per-IP rate limiting
rateLimitPerIp.max number 100 Max requests per window
rateLimitPerIp.windowSeconds number 10 Rate limit window in seconds
logging boolean false Log one info line per request (METHOD + path). Or set DEBUG_WEBDAV=1 on the gateway; either enables the same logging

Example Configuration

Configuration lives under plugins.entries.openclaw-webdav.config

{
  "rootPath": "/home/user/workspace",
  "readOnly": false,
  "maxUploadSizeMb": 500,
  "rateLimitPerIp": {
    "enabled": true,
    "max": 200,
    "windowSeconds": 10
  },
  "logging": false
}

Client Setup Guides

The WebDAV server is available at:

http://localhost:18789/webdav/

Replace localhost:18789 with your OpenClaw host and port.


macOS Finder

  1. Open Finder
  2. Go → Connect to Server (⌘K)
  3. Enter your endpoint like this https://myclaw.tail123456.ts.net/webdav/
  4. Click Connect
  5. Enter your OpenClaw credentials when prompted

Tip: Add to Favorites for quick access. Finder will appear as a network drive in the sidebar.

Known quirks:

  • Finder creates .DS_Store files; these are stored in your workspace
  • PROPPATCH for metadata returns 405 (harmless warning)

Windows Explorer (Map Network Drive)

  1. Open File Explorer
  2. Right-click "This PC" → Add a network location
  3. Enter your endpoint in this format: \\myclaw.tail123456.ts.net@SSL\webdav\
  4. Check "Connect using different credentials"
  5. Enter any username, and your openclaw token as a password
  6. Click Finish

Alternative: Use the Run dialog (Win+R):

\\myclaw.tail123456.ts.net@SSL\webdav\

Known quirks:

  • Windows Explorer requires LOCK/UNLOCK for write operations (fully supported)
  • PROPPATCH for Win32 attributes returns 405 (harmless, basic CRUD still works)
  • If connection fails, try \\myclaw.tail123456.ts.net@SSL\webdav (without trailing slash)

Linux — davfs2

Install davfs2:

sudo apt install davfs2  # Debian/Ubuntu
sudo dnf install davfs2  # Fedora/RHEL

Mount the WebDAV drive:

sudo mount -t davfs https://myclaw.tail123456.ts.net/webdav/ /mnt/webdav

For persistent mounting, add to /etc/fstab:

https://myclaw.tail123456.ts.net/webdav/ /mnt/webdav davfs user,noauto 0 0

Store credentials in /etc/davfs2/secrets:

https://myclaw.tail123456.ts.net/webdav/ username password

Known quirks:

  • davfs2 caches files locally; changes may not be visible immediately
  • Use umount /mnt/webdav && mount /mnt/webdav to force refresh
  • Increase cache_size in /etc/davfs2/davfs2.conf for large workspaces

Cyberduck

  1. Open Cyberduck
  2. Click "Open Connection"
  3. Select "WebDAV (HTTP)" from the dropdown
  4. Server: localhost, Port: 18789, Path: /webdav/
  5. Enter your OpenClaw credentials
  6. Click Connect

Tip: Save as a bookmark for quick reconnection.


rclone

Configure rclone:

rclone config
# Choose "New remote" → name it "openclaw"
# Type: WebDAV
# URL: http://localhost:18789/webdav/
# Vendor: Other
# Username: your-openclaw-username
# Password: your-openclaw-password

Use rclone:

# List files
rclone ls openclaw:

# Sync local directory to OpenClaw
rclone sync /local/dir openclaw:remote/dir

# Mount as filesystem
rclone mount openclaw: /mnt/openclaw

iOS — Files App

  1. Open the Files app
  2. Tap "..." → Connect to Server
  3. Enter: https://myclaw.tail123456.ts.net/webdav/
  4. Enter credentials
  5. Tap Connect

Note: iOS requires the server to be reachable over the network (not just localhost). Use your machine's local IP address or hostname.


Android — Solid Explorer

  1. Open Solid Explorer
  2. Tap "+" → New Connection → WebDAV
  3. Host: your-openclaw-host, Port: 18789
  4. Path: /webdav/
  5. Protocol: HTTP
  6. Enter credentials
  7. Tap Connect

Security

Authentication

The WebDAV route uses OpenClaw plugin HTTP admission (no gateway-layer Bearer check). The plugin then requires the same secret the gateway uses for token or password auth:

  • HTTP Basic: use any username (it is ignored). Set the password to your gateway token (token mode) or gateway password (password mode).
  • Bearer: Authorization: Bearer <same secret> still works (e.g. curl).

Credential resolution follows OpenClaw’s resolveGatewayAuth when the openclaw package is available at runtime; otherwise plain gateway.auth strings plus OPENCLAW_GATEWAY_TOKEN / OPENCLAW_GATEWAY_PASSWORD are used.

If the gateway is auth.mode: none, WebDAV does not require a password (only use on trusted networks). trusted-proxy mode has no shared secret for WebDAV; the plugin returns 503 until you use token/password mode or env-based credentials.

Examples

openclaw config get gateway.auth.token

# Basic (password = gateway token; username ignored)
curl -sS -u "any:YOUR_GATEWAY_TOKEN" http://127.0.0.1:28765/webdav/ -X OPTIONS -D -

# Bearer (same secret)
curl -sS -H "Authorization: Bearer YOUR_TOKEN" http://127.0.0.1:28765/webdav/ -X OPTIONS -D -

Finder / Cyberduck / davfs2: connect with any username and the gateway token (or password) as the password.

Startup logs use the [plugins] subsystem (e.g. [plugins] [webdav] starting …) in the same terminal as gateway:watch / openclaw gateway.

Path Scoping

All file access is restricted to the configured rootPath (default: workspace directory). The plugin rejects:

  • Directory traversal (../, %2e%2e%2f, %252e%252e%252f)
  • Encoded path separators (%2F, %5C)
  • Null bytes and ASCII control characters
  • Windows reserved device names (CON, PRN, AUX, NUL, COM1-9, LPT1-9)

Traversal attempts are logged at WARN level with the source IP.

Read-Only Mode

Set readOnly: true to prevent all write operations. In read-only mode:

  • PUT, DELETE, MKCOL, COPY, MOVE, LOCK, UNLOCK, PROPPATCH return 405
  • GET, HEAD, OPTIONS, PROPFIND continue to work

Rate Limiting

The default rate limit is 100 requests per 10 seconds per IP. Bulk operations (PROPFIND depth:infinity, COPY, MOVE) are exempt from per-request counting.

When the limit is exceeded, the server returns:

HTTP/1.1 429 Too Many Requests
Retry-After: 5

Upload Size Limit

The default maximum upload size is 100 MB. Uploads exceeding this return:

HTTP/1.1 413 Request Entity Too Large

Troubleshooting

Connection refused

  • Verify OpenClaw is running: curl http://localhost:18789/
  • Check the port (default: 18789)
  • Verify the plugin is installed and enabled in OpenClaw settings

401 Unauthorized

  • Send Basic auth (password = gateway token or password) or Bearer with the same secret (see Authentication).
  • A 401 with a WWW-Authenticate: Basic header means the plugin did not accept the credential.
  • Confirm the token: openclaw config get gateway.auth.token (or env OPENCLAW_GATEWAY_TOKEN).

403 Forbidden

  • The requested path may be outside the configured rootPath
  • Check the rootPath configuration

404 Not Found

  • The file or directory does not exist
  • Verify the path is correct

423 Locked

  • The resource is locked by another client
  • Wait for the lock to expire (default: 1 hour) or unlock it manually

429 Too Many Requests

  • You've exceeded the rate limit
  • Wait for the Retry-After seconds before retrying
  • Increase rateLimitPerIp.max in the plugin configuration

Windows Explorer: "The folder you entered does not appear to be valid"

  • Try using http:// explicitly in the path
  • Ensure the URL ends with /webdav/ (with trailing slash)
  • Check Windows WebClient service is running: net start webclient

macOS Finder: "There was a problem connecting to the server"

  • Verify the URL format: http://localhost:18789/webdav/
  • Check that OpenClaw is running and the plugin is enabled
  • Use Connect As with any username and password = gateway token (or test with curl -u any:TOKEN …)

davfs2: Files not updating

  • davfs2 caches files locally; use umount and remount to refresh
  • Increase cache_size in /etc/davfs2/davfs2.conf

Request logging

Enable the same per-request info logs (one line per hit: METHOD + URL path) in either way:

  1. Plugin config: set logging to true under your WebDAV plugin entry (e.g. plugins.entries.openclaw-webdav.config.logging in OpenClaw config), or
  2. Environment: set DEBUG_WEBDAV=1 on the gateway process.

If either is on, the plugin also logs a short startup note that request logging is active. Lines go through api.logger.info (often shown under a [plugins] prefix, depending on gateway log settings).

The per-request line is emitted at the start of handling (before auth is checked), so you still see traffic for failing 401s—use that to confirm the route is hit, then fix Basic/Bearer credentials if needed.


Development

# Install dependencies
pnpm install

# Build
pnpm run build

# Run unit tests (no OpenClaw required)
pnpm test

# Run WebDAV conformance tests (requires litmus)
pnpm run test:conformance

# Lint
pnpm run lint

# Format
pnpm run format

See CONTRIBUTING.md for contribution guidelines.

Compatibility

See COMPATIBILITY.md for detailed client compatibility information and known limitations.

License

MIT — see LICENSE