OpenAI says it plans to acquire Promptfoo and bring its evaluation, red-teaming, and traceability tooling into OpenAI Frontier. Promptfoo's open-source project will stay under its current license, and the deal remains subject to customary closing conditions.
A Reddit post drew attention to a March 2 case study arguing that OpenClaw incidents already trigger 8 of 10 OWASP Agentic vulnerability classes, including malicious skill supply-chain attacks and localhost WebSocket hijacking.
A high-engagement r/MachineLearning discussion introduced IronClaw, a Rust-based AI agent runtime designed around sandboxed tool execution, encrypted credential handling, and database-backed policy controls. The post landed because it treats agent security as a systems problem instead of a prompt-only problem.
A Reddit discussion in r/MachineLearning raised concerns about exposed agent instances and potentially malicious community skills, sparking practical debate on agent security controls.