Module DD-07 — OpenClaw: Platform Harness & Trust Architecture

OpenClaw: Platform Harness & Trust Architecture

The breadth play — 40+ channels and the trust gap that birthed two governance forks

8
artifacts
3
sub-sections
OpenClaw is the breadth pole of the platform-harness spectrum: 368K stars, 40+ messaging channels, NVIDIA + Microsoft partnerships. The strategic risk is structural — every channel added raises Module 2 and simultaneously raises the injection surface that depresses Module 6. The trust-architecture gap (channel messages enter the model's context with the same trust status as operator instructions) is the defining vulnerability, enabling cross-channel injection (ASI01). Two independent governance forks (NemoClaw by NVIDIA, Scout by Microsoft) are the evidence that the fix requires re-architecting the message pipeline, not patching the prompt.
Key Claims
Load-Bearing Claims

Breadth compounds the trust problem. Every channel added raises Module 2 (tool breadth) and simultaneously raises the injection surface that depresses Module 6. Breadth without a trust architecture means each new channel is a new untrusted input source with no isolation. The 35/60 is the structural cost of this tradeoff.

The trust gap is the defining vulnerability. Channel messages enter the model's context with the same trust status as operator instructions. No tags, no boundary. The attacker does not need to compromise the operator — only to send a message in a monitored channel. Cross-channel injection (ASI01). 40+ channels = 40+ injection surfaces.

Two governance forks are the evidence. NemoClaw (NVIDIA) and Scout (Microsoft) are independent forks addressing the same deficiency. Two large vendors independently concluding the trust gap is unfixable in-place is the strongest possible signal that the architecture, not the implementation, is the problem.

After This Module
01
Apply the 6-phase methodology to OpenClaw and produce a scored card.
02
Defend breadth as a strategy — and state why it compounds the trust problem.
03
Explain the trust-architecture gap and why it enables cross-channel injection (ASI01).
04
Articulate why two governance forks are evidence the fix is architectural, not a patch.
05
Distinguish channel-aware (has) from trust-aware (missing) prompt design.
06
State the three fixes that constitute the NemoClaw pattern.
Artifacts