What AI models does the agent use?

The agent has access to Claude, DeepSeek, Gemini, and other top models. It automatically routes to the best model for each task — you never have to think about API keys or token limits.

Yes. Each agent runs in an isolated environment. We don't train on your data, and you can export or delete everything at any time. The underlying engine (GoGogot) is open-source, so you can audit exactly how it works.

What can the agent actually do?

Browse the web, process files (CSV, PDF, images), run scheduled tasks, remember context across sessions, and communicate via Telegram or Slack. Think of it as a capable junior employee, not a chatbot.

How does memory work?

The agent maintains persistent memory across sessions. It remembers your preferences, past conversations, and task context. You can also explicitly tell it to remember or forget things.

Can I self-host the agent?

Absolutely. GoGogot is 100% open-source. Run it on your own hardware for free. cowork.ink is the managed version — we handle servers, model costs, updates, and uptime so you don't have to.

Is there a free trial?

We offer a 7-day money-back guarantee. Spin up an agent, give it real tasks, and if it doesn't save you time, we'll refund you — no questions asked.

Is OpenClaw safe to use?

OpenClaw is safe when properly configured, but security is opt-in — not built-in. Out of the box, the Gateway binds to loopback only, but many users weaken this during setup. Run `openclaw security audit --deep` to check your exposure. See our [OpenClaw tutorial](/blog/openclaw-tutorial/) for the recommended setup.

Can OpenClaw be hacked?

Yes. CVE-2026-25253 allowed unauthenticated remote code execution on unpatched instances. Bitsight found 30,000+ exposed instances with accessible API keys and chat histories. Keeping OpenClaw updated and network-isolated is critical.

How do I protect my API keys in OpenClaw?

Use OpenClaw's built-in secrets system (`openclaw secrets set`) which encrypts keys on disk. Never hardcode keys in config files or version control. Prefer OAuth over API keys where possible, and set spending limits on every key.

Should I expose OpenClaw to the internet?

No. Keep the Gateway bound to loopback and use a VPN like Tailscale for remote access. If you must expose it, place it behind a reverse proxy with authentication (NGINX + client certificates or OAuth2 Proxy).

Are OpenClaw skills from ClawHub safe?

Not all of them. An audit of 2,890+ skills found 41.7% contain security vulnerabilities, and roughly 1 in 5 are confirmed malicious. Always audit skills before installing — check the source code, star count, and publisher reputation. See our [guide to the best OpenClaw skills](/blog/best-openclaw-skills/) for vetted recommendations.

OpenClaw Security: How to Lock Down Your Self-Hosted AI Agent

LOCK DOWN your OpenClaw agent: 9 steps from audit to incident response. Real config, real CVEs, real fixes. Secure your self-hosted AI now.

Frequently Asked Questions

Is OpenClaw safe to use?: OpenClaw is safe when properly configured, but security is opt-in — not built-in. Out of the box, the Gateway binds to loopback only, but many users weaken this during setup. Run `openclaw security audit --deep` to check your exposure. See our [OpenClaw tutorial](/blog/openclaw-tutorial/) for the recommended setup.
Can OpenClaw be hacked?: Yes. CVE-2026-25253 allowed unauthenticated remote code execution on unpatched instances. Bitsight found 30,000+ exposed instances with accessible API keys and chat histories. Keeping OpenClaw updated and network-isolated is critical.
How do I protect my API keys in OpenClaw?: Use OpenClaw's built-in secrets system (`openclaw secrets set`) which encrypts keys on disk. Never hardcode keys in config files or version control. Prefer OAuth over API keys where possible, and set spending limits on every key.
Should I expose OpenClaw to the internet?: No. Keep the Gateway bound to loopback and use a VPN like Tailscale for remote access. If you must expose it, place it behind a reverse proxy with authentication (NGINX + client certificates or OAuth2 Proxy).
Are OpenClaw skills from ClawHub safe?: Not all of them. An audit of 2,890+ skills found 41.7% contain security vulnerabilities, and roughly 1 in 5 are confirmed malicious. Always audit skills before installing — check the source code, star count, and publisher reputation. See our [guide to the best OpenClaw skills](/blog/best-openclaw-skills/) for vetted recommendations.