Alice releases Caterpillar open-source scanner for OpenClaw

Alice released Caterpillar, a free open-source scanner designed to help developers, security teams and users protect Artificial Intelligence (AI) agents running on OpenClaw (formerly ClawdBot and Moltbot); the company positioned the tool as a response to growing use of agents across the developer community.

OpenClaw's momentum reflected an industry shift, with agents moving from experimentation to operational software and connecting to tools, calling APIs, and executing workflows with increasing autonomy, creating new security considerations around agent behavior and tool access.

Caterpillar statically inspected skill logic and configurations to surface injection paths, unsafe tool access, and obfuscated behaviors; the tool was further informed by RabbitHole, Alice's adversarial intelligence database built from years of real-world threat research and signals.

The release followed an early real-world test case in which the scanner flagged several published skills that Alice found to be actively malicious, including skills that were in use by more than 6,000 OpenClaw users when they were caught.

“Agent ecosystems are scaling faster than the security assumptions around them,” said Noam Schwartz, CEO of Alice. “When you install a skill, you're not installing a feature, you're installing behavior. Caterpillar helps teams see what they're actually running, and catch issues early, before they become incidents. For us, the goal is simple: help builders and businesses advance unafraid.”

Caterpillar is available as free, open-source software to enable the community to audit, extend, and operationalize agent security as adoption grows.