It seems to me that OpenClaw and all its clones are almost useless tools for those who know what they're doing.
It's kind of impressive for someone who has never used a CLI, Claude Code, Codex, etc. Nor used any workflow tool like 8n8 or make.
For these people, asking an AI to create a program or a new tool with a prompt must seem like magic. For those who already use it, it seems like something that simplified the old ones but made them much more chaotic and unsafe.
The only good thing about it is that it made more "ordinary" people interested in these agentic tools. Sending messages via Telegram is much more user-friendly.
Videos
What criticism is OpenClaw facing?
Does criticism affect OpenClaw’s future?
Why did OpenClaw go viral despite criticism?
New to the agent game. Didn’t have the space or time to do it before but spent some time last night sandboxing a setup on a dedicated Linux machine.
Using OpenClaw with Codex and a fallback local Ollama model. So far pretty impressed although there are some quirks.
From what I understand about the setup it’s nothing magical, sure. The “Agent” is just some .md files with persistent context to wrap around queries to the model, a workspace folder for scripts, cron jobs, the heartbeat feature which I need to look more into, and tie ins for channels to the agent + ability to run stuff on the machine. I can see a lot of avenues to hack at it with a little know how and the project itself feels well thought out and not super grifty.
I see a lot of hate from people saying they already built out something similar, but even they admit it’s well constructed and has way more features. I’m a SWE and also often hate on things especially if I already did something similar and see a bunch of hype like the whole concept is ground breaking. It IS well delivered and accessible for less technical people and extremely powerful. I’d like to know what I’m missing or if people are just being haters.
So I spent many, many hours setting OC up. I have it running on a dedicated VPS running with the best free models on OpenRouter.
Now, apart from having a nice companion for regular chat I cannot find any use for OC.
I ask it to send me daily resumes of what is happening on Twitter, Discord, etc. It doesn’t. I ask it to create an application, it doesn’t. I ask it to update its own configuration and it screws everything up. I mean, it’s a good platform to learn about what is possible and how to possibly set up integrations, memory, learn about skills and souls, etc., but actual practical use? I have not seen it (yet).
Plus it’s a huge money pit. Not only the tokens which you more or less can control), but every external tool needs an API token which is mostly a subscription for whatever you want to use (Brave, Browserless, etc).
So yeah, am I missing the point here?
Remember a few weeks ago when Clawdbot/OpenClaw suddenly appeared everywhere all at once? One day it was a cool Mac Mini project, and 24 hours later it was "AGI" with 140k GitHub stars?
If you felt like the hype was fake, you were right
I spent hours digging into the data. They were using the tool to write its own hype posts. It was an automated loop designed to trick SM algorithms, the community and the whole world.
Here is the full timeline of how a legitimate open-source tool got hijacked by a recursive astroturfing campaign.
1. The Organic Spark (The Real Part)
First off, the tool itself is legit. Peter Steinberger built a great local-first agent framework.
Jan 20-22: Federico Viticci (MacStories) and the Apple dev community find it. It spreads naturally because the "Mac Mini as a headless agent" idea is actually cool.
Jan 23: Matthew Berman tweets he's installing it.
Jan 24: Berman posts a video controlling LMStudio via Telegram.
Up to this point, it was real. (but small - around 10k github stars)
2. The "Recursive" Astroturfing (The Fake Part)
On January 24, the curve goes vertical. This wasn't natural.
I tracked down a now-deleted post where one of the operators openly bragged about running a "Clawdbot farm."
They claimed to be running ~400 instances of the bot.
They noted a 0.5% ban rate on Reddit, meaning the spam filters weren't catching them.
The Irony: They were using the OpenClaw agent to astroturf OpenClaw's own popularity on Reddit and X.
Those posts you saw saying "I just set this up and it's literally printing money" or "This is AGI"? Those were largely the bots themselves, creating a feedback loop of hype.
3. The "Moltbook" Hallucination
Remember "Moltbook"? The "social network for AI agents" that Andrej Karpathy tweeted was a "sci-fi takeoff" moment?
The Reality: MIT Tech Review later confirmed these were human-generated fakes.
It was theater designed to pump the narrative. Even the smartest people in the room (Karpathy) got fooled by the sheer volume of the noise.
4. The Grift ($CLAWD)
Why go to all this trouble? Follow the money.
During the panic rebrand (when Anthropic sent the trademark notice on Jan 27), scammers launched the $CLAWD token.
It hit a $16M market cap in hours.
The "bot farm" hype was essential to pump this token.
It crashed 90% shortly after.
5. The Aftermath
The Creator: Peter Steinberger joined OpenAI on Feb 14. (Talk about a successful portfolio project).
The Scammers: Walked away with the liquidity from the pump-and-dump.
The Community: We got left with a repo that has inflated stars and a lot of confusion about what is real and what isn't.
TL;DR: OpenClaw is a solid tool, but the "viral explosion" of Jan 24 was a recursive psy-op where the tool was used to promote itself to sell a memecoin.
I've long wanted to say this, but:
OpenClaw is good, but it's severely overrated.
Most things you can actually do faster yourself. People sometimes even (implicitly) make it out to be as if it's one of the greatest breakthroughs ever or proof that AGI is here (in many extreme fan-boy cases).
We have certainly still not reached the era of agentic assistance. We're still very much in the co-pilot phase, especially when it comes to complex tasks. When it tries to produce solutions to complex tasks, it mostly produces SLOP (especially when not expertly guided); because of the Dunning-Kruger effect, beginners and novices often can't differentiate SLOP from genuinely good content. And the same is true in design and software engineering. There is a big difference between the ability to do something and doing something competently. And because the overuse of AI tends to lobotomise you and makes you overestimate the quality of the work you do, this further amplifies this phenomenon.
For example (not OpenClaw), within the context of design. Can an AI produce a frontend product design that gives beginners the impression they now have Leonardo da Vinci-level artistic thinking? Yes. Is the design actually good? Absolutely not—SoTA AI tends to have terrible design intuition. Doing something ≠ doing it well.
Note*: I mentioned that you can do most things faster yourself, not to completely invalidate the use case for some people of avoiding the work, but rather to invalidate the point of the "doing things significantly faster", which often isn't the case.
The reality is that an AI agent will not transform an undisciplined, lazy person. To make the most out of these kinds of tools, you still need to be conscientious and competent.
I'd even take it a step further:
The use case of an AI that sends an email is actually a very poor use case. Same as an AI that checks you in for a flight. It's the same for something that is able to handle your inbox, which can often be very ambiguous and unclear, unless you have somewhat of a model of what's inside the person's head and what they want to do with the emails. To get the most out of these models, it often takes a level of hand-holding that is actually inferior and significantly slower than just doing it yourself.
The kind of personal agentic assistant we are making are not simply plastered-together problems; they are fundamental model problems. As long as we rely on current state-of-the-art systems to be the agentic AI assistants we imagine in movies like Her, we will continue to be producing slop and misleading people into thinking the quality of their work is good. Many AI systems excel (exceptionally, in fact) at explicit knowledge, but they are terrible when it comes to implicit knowledge, and it's the implicit (often complex) knowledge that often makes someone good at their job.
Fundamentally, the hype-to-reality gap is massive.
One thing I would briefly mention is the significance of what OpenClaw represents, and I think it will indeed mark a point in technological history. What it represents, I think, is far greater than the tool itself (a glimpse).
For the money it will cost you to run OpenClaw, the benefits are significantly weak.
First, it costs you like 50 cents to do like one simple prompt.
Second, if you try to run it local, you need a NASA-level PC.
Third, the security is abysmal. You need to pray that hackers don't find you.
For what? So OpenClaw can press a button for you and send an e-mail?
Am I missing something? It seems godawful.
I’m very aware of confirmation bias - the act of seeking out sources of information that just reinforce your own opinion. Im also a user of some AI tools at work and find them moderately helpful in places, so I do believe LLMs have use cases. My bones to pick are with the hype and the billionaires and grifters responsible.
Came across this guy’s videos maybe 3 weeks ago - he seemed informed and was serving up daily critiques of the AI tech stocks and other things. Very similar thoughts and messaging you find in this sub.
And then just today, he basically pivots on every single criticism of AI hype, all because he seems to have used OpenClaw to update his website? From there he extrapolates a future of no office jobs and even MENTIONS GODDAMN UBI.
Anyone else familiar with this dude? Did he one shot himself, is he getting paid, or did he realize there’s more money in being a booster than a skeptic?
So everyone lost their minds when the OpenClaw v2026.3 update completely nuked the UI. People were screaming on X, hastily rolling back to v2026.3.11, and claiming the whole project was falling apart. The devs fixed it in 33 minutes. Someone literally just forgot to pack the UI files in the build release.
Classic open-source chaos. But the mass panic over a missing interface exposed something way deeper about the current state of local AI right now. OpenClaw isn't 'crashing' because of a bad pull request. It's crashing because 90% of the user base is fundamentally misusing the framework, and the broader AI ecosystem is getting violently competitive. The founder basically spelled out the actual danger recently, and it has nothing to do with bugs.
Let's get one thing straight immediately. If you are using OpenClaw like it's just a spicier version of ChatGPT, you are doing it wrong. I am seeing this everywhere. People set up a single agent, dump a massive master prompt into it, hand it 15 different tools—web search, code interpreter, file reader—and then act completely shocked when the agent spirals into an infinite logic loop or hallucinates a broken script.
OpenClaw is not a magical business strategy you can just toggle on. Jumping on the tool because some hustle-bro on TikTok said it will replace your whole marketing team is a guaranteed way to burn your time. The real power here is strictly the multi-agent architecture. You need a system. One agent gets one distinct role. Another agent gets specific tools. You have to route the workflow deliberately.
Look at how the independent devs who are actually surviving the token-burn are setting this up. They aren't running single monolithic models anymore. They are running heavily structured, 3-layer military hierarchies. You put Claude Opus 4.6 at the very top as the brain doing the strategic breakdown. Then you pipe the fragmented tasks down to a local execution layer—usually quantized models like Qwen, Gemma, or MiMo—to do the brute force text parsing and daily grunt work. Finally, you maintain a specialist layer running GPT-5.4 just to crack the weird coding roadblocks. That is what OpenClaw was built to orchestrate. If you don't do this, you are leaving 90% of the value on the table and complaining about a tool that you don't understand.
Even with a solid setup, people are getting frustrated by the manual memory management. That is exactly why we are seeing what the Chinese community is literally calling the 'lobster migration' (OpenClaw's mascot is the lobster). Everyone is suddenly looking at Hermes Agent.
Hermes fixes the 'cyber amnesia' that plagues complex agent runs. OpenClaw is incredible at routing, but its native memory management historically required constant hand-holding. Hermes brings a self-evolving loop and dynamic memory natively. It automatically accumulates custom skills without you having to write manual JSON configs every time. Now, the real power users are stacking them: Hermes to tame the local models and handle the memory evolution, and OpenClaw to orchestrate the broader multi-model army.
To be fair, OpenClaw pushed a massive counter-move in the March update to fight back. Hot-swappable memory is officially here. The AI finally doesn't forget who you are midway through a deep coding session. They also rolled out native support for the GPT-5.4 and Gemini 3.1 dual engines, and launched a dedicated plugin store. You can now install skills like apps. It is basically becoming a fully-fledged AI operating system. With over 280,000 stars on GitHub, it is literally outpacing Linux.
But all of this technical progression brings us to the actual, existential danger. Jason Calacanis dropped a bomb on the All-In podcast recently. I usually take his takes with a grain of salt, but I don't think he's acting like a conspiracy theorist here. He stated bluntly that the number one goal of companies like Anthropic and OpenAI right now is to kill OpenClaw.
Think about the mechanics of that for a second. An open-source agent platform is an existential threat to frontier model companies. OpenAI desperately wants you locked into their walled garden, paying for API calls, and using their proprietary agent architectures. Anthropic wants you living entirely inside Claude's artifact system.
If OpenClaw becomes the default Android-like OS for agents, the underlying model becomes totally commoditized. You can swap out GPT-5.4 for a fine-tuned local Llama or Qwen whenever you want. You can run the entire 'lobster' on a flash drive to save on token costs and protect your local hard drive data. One guy recently hooked OpenClaw directly into WhatsApp to negotiate car prices and saved $4,200 without speaking to a human. Another guy bypassed API keys entirely using open-source tools to run it locally without burning a single token.
The big labs lose their moat the second the orchestration layer becomes open and dominant. That is why you are seeing this silent war. The labs are aggressively pushing their own proprietary agent frameworks, trying to starve the open-source alternatives of mindshare, and quietly making it harder to use their APIs for agentic looping. Some creators are even claiming OpenClaw is being 'shadowbanned' or throttled behind the scenes as a coordinated industry harvest.
So no, OpenClaw isn't too complex. It just requires actual engineering discipline instead of mindless tool-jumping. And the reason it feels like you're fighting an uphill battle sometimes isn't just because of bugs—it's because the biggest tech companies on earth have a vested financial interest in making sure open orchestration fails.
The UI bug last week was a minor hiccup. The real test is whether the open-source community can keep the infrastructure resilient enough to survive the API throttling and the corporate walled gardens.
What are you guys currently running for your agent orchestrator? Are you sticking strictly with pure OpenClaw, migrating some workflows over to Hermes, or doing some weird hybrid stack?
OpenClaw is already scary from a security perspective..... but watching the ecosystem around it get infected this fast is honestly insane.
I recently interviewed Paul McCarty (maintainer of OpenSourceMalware) after he found hundreds of malicious skills on ClawHub.
But the thing that really made my stomach drop was Jamieson O’Reilly detailed post on how he gamed the system and built malware that became the number 1 downloaded skill on ClawHub -> https://x.com/theonejvo/status/2015892980851474595 (Well worth the read)
He built a backdoored (but harmless) skill, then used bots to inflate the download count to 4,000+, making it the #1 most downloaded skill on ClawHub… and real developers from 7 different countries executed it thinking it was legit.
This matters because Peter Steinberger (the creator of OpenClaw) has basically taken the stance of:
use your brain and don't download malware
(Peter has since deleted his responses to this, see screen shots here https://opensourcemalware.com/blog/clawdbot-skills-ganked-your-crypto
…but Jamieson’s point is that “use your brain” collapses instantly when the trust signals are fakeable.
What Jamieson provedClawHub’s download counter could be manipulated with unauthenticated requests
-
There was no rate limiting
-
The server trusted X-Forwarded-For, meaning you can spoof IPs trivially
-
So an attacker can go:
-
publish malicious skill
-
bot downloads
-
become “#1 skill”
-
profit
-
And the skill itself was extra nasty in a subtle way:
-
the ClawHub UI mostly shows SKILL .md
-
but the real payload lived in a referenced file (ex:
rules/logic.md) -
meaning users see “clean marketing,” while Claude sees “run these commands”
Why ClawHub is a supply chain disaster waiting to happen
-
Skills aren’t libraries, they’re executable instructions
-
The agent already has permissions, and the skill runs inside that trust
-
Popularity is a lie (downloads are a fakeable metric)
-
Peter’s response is basically “don’t be dumb”
-
Most malware so far is low-effort (“curl this auth tool” / ClickFix style)
-
Which means the serious actors haven’t even arrived yet
If ClawHub is already full of “dumb malware,” I’d bet anything there’s a room of APTs right now working out how to publish a “top skill” that quietly steals, credentials, crypto... all the things North Korean APTs are trying to steal.
I sat down with paul to disucss his research, thoughts and ongoing fights with Peter about making the ecosystem some what secure. https://youtu.be/1NrCeMiEHJM
I understand that things are moving quickly but in the words of Paul "You don't get to leave a loaded ghost gun in a playground and walk away form all responsibility of what comes next"