Inside “Mission Control” - A 10-Agent AI Squad

Most AI assistants suffer from “goldfish memory,” where every chat starts from zero, and context is lost the moment you close the tab. Bhanu Teja decided to fix this by building Mission Control, a persistent, multi-agent ecosystem where 10 specialized AI agents collaborate like a real human team.

The Blueprint for an AI Team:

• The Shared Brain: Instead of isolated chats, all agents connect to a Convex database. This acts as a “virtual office” where agents track tasks, post comments, and @mention each other.

• The Heartbeat System: To save on API costs, agents aren’t “always on.” Instead, staggered cron jobs wake them every 15 minutes to check for new tasks, notifications, or activity in the feed.

• Specialized “Souls”: Rather than one generic bot, Teja created 10 distinct personalities ranging from Shuri (the skeptical Product Analyst), and Fury (the deep-dive Researcher), to Loki (the opinionated Content Writer).

• Persistent Memory: The system uses a hierarchy of Markdown files (WORKING.md, MEMORY.md) to ensure agents remember their current progress and long-term decisions even after a reboot.

The Result: An OpenClaw setup that handles SEO research, competitor analysis, and content drafting in the background. While the human lead makes the final decisions, the “squad” ensures the grunt work moves forward 24/7.

Read more:

Bhanu Teja P@pbteja1998

https://t.co/V6XZfv5UYS

6:12 PM · Jan 31, 2026 · 2.89M Views

---

358 Replies · 736 Reposts · 6.83K Likes

Malicious Websites Can Exploit Openclaw (aka Clawdbot) To Steal Credentials

A security flaw in the Openclaw AI assistant (formerly Clawdbot) allowed malicious websites to steal session credentials by exploiting its browser relay server. The flaw, patched in commit a1e89afcc19efd641c02b24d66d689f181ae2b5c, enabled attackers to hijack active sessions from unrelated websites. The vulnerability stemmed from the browser relay server accepting connections from any origin, allowing malicious code to execute commands using the Chrome DevTools Protocol.

Read more: https://zeropath.com/blog/openclaw-clawdbot-credential-theft-vulnerability

From magic to malware: How OpenClaw’s agent skills become an attack surface

OpenClaw’s agent skills, distributed as markdown files, pose a significant security risk. Malicious actors can exploit this system by embedding malware within seemingly harmless skills, leading to data theft and account compromise. To mitigate this, skill registries must implement robust security measures, including provenance checks, execution mediation, and granular permissions.

Read more: https://1password.com/blog/from-magic-to-malware-how-openclaws-agent-skills-become-an-attack-surface

The Internet’s Latest Lie: Moltbook Has No Autonomous AI Agents – Only Humans Using OpenClaw

Moltbook, a platform claiming to be a social network for AI agents, is misleading. In reality, human users register, post, and interact with AI agents through the OpenClaw framework, creating the illusion of autonomous AI interaction. While OpenClaw is a useful tool, Moltbook’s narrative of agent-to-agent interaction is a gimmick.

Read more: https://startupfortune.com/the-internets-latest-lie-moltbook-has-no-autonomous-ai-agents-only-humans-using-openclaw/

Hacking Moltbook: The AI Social Network Any Human Can Control

Moltbook, a social network for AI agents, was found to have a misconfigured Supabase database exposing 1.5 million API keys, 35,000 email addresses, and private messages. The database, accessible with a publicly exposed API key, revealed that the platform, touted as a thriving AI community, was largely operated by humans using bots. This incident highlights the security risks associated with “vibe-coded” applications and the importance of proper security controls, even in rapidly developed AI-driven platforms.

Read more: https://www.wiz.io/blog/exposed-moltbook-database-reveals-millions-of-api-keys

Running OpenClaw in Docker

OpenClaw can be run in a Docker container using Docker Compose. The setup involves cloning the GitHub repository, running the docker-setup.sh script, and answering initial setup questions. Once running, OpenClaw can be managed via the openclaw-cli container, and a Telegram bot can be set up for messaging.

Read more: https://til.simonwillison.net/llms/openclaw-docker

🦞 OpenClaw - Weekly Builder Series

This is a weekly, hands-on builder discussion for people interested in local AI agents and the growing ecosystem around OpenClaw.

Each Friday, we jump on Zoom to:

• Share what we are currently building

• Discuss recent developments in local AI agents

• Exchange lessons learned, ideas, failures, and wins

• Stay up to date with what’s happening across OpenClaw / Clawdbot / Moltbot ecosystem, and adjacent projects

This is not a lecture series and not a course. It is informal, practical, and driven by what participants are actively working on.

Register here: https://luma.com/yolho1lr

Join the Conversation

We have a WhatsApp community where we discuss all things OpenClaw. Reach out for access.

Where to follow

Substack • YouTube • Bluesky • TikTok • Instagram • Twitter/X • LinkedIn • Telegram