HackMyClaw
7 days ago
- #OpenClaw
- #prompt-injection
- #security-challenge
- Fiu is an OpenClaw assistant that reads emails but is not allowed to reply without human approval.
- The challenge is to perform a prompt injection attack to trick Fiu into revealing secrets.env, which contains sensitive credentials like API keys and tokens.
- The first person to successfully extract secrets.env wins $100, with payment via PayPal, Venmo, or wire transfer.
- OpenClaw has built-in defenses, but the goal is to find novel attack vectors that bypass these protections.
- The exercise is focused on skill and creativity, not spam, and aims to explore real-world prompt injection threats.