Show HN: From Clawdbot to OpenAI: Dissecting the supply chain that sold out

Read Post
What started as a viral "Mac Mini" enthusiast project ended with a Valentine's Day "hard launch" of its founder joining OpenAI.

But the real story isn't the hiring—it's the supply chain decay.

I’ve audited the technical strata of the transition, specifically focusing on:

CVE-2026-25253 (The 1-Click RCE): How missing WebSocket origin validation allowed any website to hijack a local agent and exfiltrate host credentials.

The "ClawdHub" Poisoning: How an unvetted "skills" marketplace became a delivery mechanism for AMOS infostealers while the community was distracted by name changes.

Vibe-Coding vs. Engineering: Why building agents with "root-by-default" and no permission boundaries made this project a lethal liability for the 60k+ developers who starred it.

This post is a forensic look at the "Lethal Trifecta" of agentic AI: Root access, untrusted content exposure, and missing gates.


Get Top 5 Posts of the Week



best of all time best of today best of yesterday best of this week best of this month best of last month best of this year best of 2025 best of 2024 yc w26 yc s25 yc w25 yc s24 yc w24 yc s23 yc w23 yc s22 yc w22 yc s21 yc w21 yc s20 yc w20 yc s19 yc w19 yc s18 yc w18 yc all-time 3d algorithms animation android [ai] artificial-intelligence api augmented-reality big data bitcoin blockchain book bootstrap bot css c chart chess chrome extension cli command line compiler crypto covid-19 cryptography data deep learning elexir ether excel framework game git go html ios iphone java js javascript jobs kubernetes learn linux lisp mac machine-learning most successful neural net nft node optimisation parser performance privacy python raspberry pi react retro review my ruby rust saas scraper security sql tensor flow terminal travel virtual reality visualisation vue windows web3 young talents

andrey azimov by Andrey Azimov