A Trajectory-Based Safety Audit of Clawdbot (OpenClaw)

Summary

This paper investigates the safety and security of Clawdbot, which is an AI agent you can run on your own computer that can use various tools and access the internet to complete tasks.

What's the problem?

Because Clawdbot is so versatile and can do a lot of different things, it's important to make sure it doesn't do anything harmful or unintended. The problem is that if you give it vague instructions, or try to trick it, it could potentially make mistakes that lead to real-world consequences because of the tools it has access to. Existing safety tests weren't designed for an AI like Clawdbot, so there was a need to specifically test its vulnerabilities.

What's the solution?

The researchers created a series of tests, borrowing from existing AI safety benchmarks and adding their own, to see how Clawdbot responds to different situations. They carefully tracked everything Clawdbot did – every message, every action it took, and the results of those actions. They then used both an automated AI judge and real people to evaluate whether Clawdbot's behavior was safe. They focused on 34 specific scenarios and analyzed where Clawdbot tended to fail, looking for patterns in those failures.

Why it matters?

This research is important because as AI agents like Clawdbot become more powerful and capable, it's crucial to understand and address their potential risks. By identifying the specific ways Clawdbot can be steered towards unsafe actions, developers can improve its safety features and prevent it from being misused. This helps build trust in AI and ensures it's used responsibly.