Your AI agent’s API keys are sitting in plain sight
Apr 20, 2026The 1Claw Agent Template is live on Pinata’s OpenClaw marketplace. HSM-backed secrets, Shroud LLM proxy, and Intents API transaction signing — deployed in ten minutes.
Read moreYour AI agent's API keys are sitting in plain sight. Here's how to fix that.
Apr 8, 2026A walkthrough for deploying the 1Claw template on Pinata's OpenClaw platform — secure your agent credentials in an HSM vault in about ten minutes.
Read moreRogue AI agents and the case for vault-backed, scoped access
Mar 16, 2026Lab tests show AI agents exploiting systems and leaking secrets when given broad access. The fix: don't give agents copies of secrets—give them scoped, auditable access. How 1Claw's vault, Shroud, and Intents API reduce insider risk.
Read moreYour agent's LLM traffic is a liability. Here's how we inspect it in a TEE.
Mar 16, 2026LLM traffic from AI agents carries keys and sensitive data and is vulnerable to injection. Shroud is a TEE-backed proxy that inspects every request, redacts secrets and PII, and enforces policy before forwarding to the provider.
Read moreA look at the new Agentic Stack: SPIDR
Mar 12, 2026We aren't just serving pages anymore—we're spawning autonomous actors. SPIDR (Security, Payments, Identity, Discovery, Runtime) is the infrastructure stack for the agentic era.
Read moreGoing OpenAPI-first: build your own 1Claw SDK in any language
Feb 24, 2026We've published the full 1Claw API as an OpenAPI 3.1.0 spec on npm. Here's how to use it to generate a client in any language — or extend our TypeScript SDK with the new plugin architecture.
Read moreThe problem we solve
Feb 24, 2026AI agents need secrets to do useful work — but pasting keys into chat or stuffing them in env vars is broken. Here's why we built 1Claw.
Read more