AI & TECH

AI agents leak credentials, exposing a trust crisis blockchain aims to solve

Wednesday, March 25, 2026 · from 2 podcasts

Current AI agents, including OpenClaw, send user API keys and access tokens to third-party service logs, creating a massive credential exposure.
Developers argue the core problem is a broken root-of-trust, which decentralized identity and payment layers on blockchain are designed to fix.

AI is shifting from a tool you operate to an agent you delegate to, but the new model has a fatal flaw: it’s leaking your secrets.

On Bankless, NEAR founder Illia Polosukhin detailed how agents like OpenAI’s OpenClaw routinely send users’ API keys and bearer tokens to third-party inference services, where they sit exposed in logs. He called the practice insane. His project, IronClaw, tackles this by architecting systems where secrets never touch the large language model.

Polosukhin’s fix points to a deeper architectural crisis. As AI becomes the primary computing interface - a persistent, delegatable assistant managing tasks across devices - today’s centralized service model breaks. How do AIs verify each other? How do they transact? His bet is that blockchain provides the missing backend: a root of trust for identity and a global payments rail.

This vulnerability emerges just as the industry pushes full-speed toward the agent future. On The AI Daily Brief, Nathaniel Whittemore highlighted features like Claude’s Remote Control and Dispatch, which let users delegate complex, persistent tasks from their phones. The pitch is omnipresent assistance, but the current implementation routes your critical access through unsecured channels.

Illia Polosukhin, Bankless:
- When you use Entropic OpenAI, or even worse, you use something else for inference, OpenClaw actually sends all your secrets to those services as well.
- Somewhere in Entropic and OpenAI logs, they have everybody's access keys, API keys, and bearer tokens to access your Gmails and your Notions.

The race is on. Developers are building the agent experience users want, while a parallel effort aims to rebuild the trust layer that experience requires. One side enables delegation; the other must secure it.

Agents Models Safety

Entities Mentioned

Claudemodel— Anthropic's large language model family used for agentic applications and skills

Claude CodeProduct— AI coding assistant from Anthropic that can use agent personality files

IronClawProduct— Secure open-source AI agent runtime by NEAR AI using TEEs

OpenAItrending

OpenClawframework— Community-driven AI agent platform requiring hardware isolation

Source Intelligence

What each podcast actually said

The AI Daily Brief: Artificial Intelligence News and Analysis

Nathaniel Whittemore

How to Use Claude's Massive New Upgrades • Mar 25

Anthropic's new 'Remote Control' feature for Claude Code allows a desktop-based terminal session to be monitored and directed from a mobile device, creating a persistent, local AI agent.
Because Claude Code runs locally with full access to a user's file system, the Remote Control feature effectively provides a secure remote terminal window to an AI co-pilot on your production machine.
The AI Daily Brief host Nathaniel Whittemore says the feature fundamentally shifts the mental model from 'operating a tool' to 'delegating to an agent,' enabling new workflows.
Anthropic's 'Dispatch' for Claude Cowork creates a persistent, local conversation thread with Claude that users can message from their phone, returning later to find finished work.
Dispatch runs code in a local sandbox, keeps files on the local machine, and requires user approval for actions, which Ethan Malek notes makes it safer and more stable than some open-source alternatives.
According to the show, this trend of 'clawification' is bringing OpenClaw's agent-like capabilities into mainstream, commercially-supported AI products like Anthropic's.
These updates enable users to direct hours of parallel AI work with only minutes of input, fundamentally altering daily work structure by making the AI an omnipresent, background assistant.

Agents Enterprise

Bankless

Illia Polosukhin: Why AI Agents Are Still Useless (And What Fixes Them) | NEAR Founder on IronClaw • Mar 24

Services like OpenAI's OpenClaw send users' API keys, bearer tokens, and access credentials to third-party services, where they sit exposed in logs, a practice Illia Polosukhin calls insane.
Polosukhin's project IronClaw is designed to fix credential exposure by ensuring keys never touch the large language model during agent operation.
Polosukhin argues that blockchain solves AI's root-of-trust problem by providing a decentralized backend for identity, payments, and infrastructure coordination.
Polosukhin's long-term thesis is that AI will become the primary interface for computing, effectively replacing traditional operating systems.
When AI becomes the dominant operating system, Polosukhin argues today's service architecture breaks, posing questions of how one AI verifies another and how they transact without centralized payment rails.
Polosukhin sees blockchain as a mechanism for protocol upgrades in AI infrastructure, avoiding the decades-long adoption cycles seen with standards like IPv6.
Polosukhin's initial 2017 venture into AI to teach machines to code faced a bottleneck in training data and paying global contributors, a problem crypto solved by enabling payments without local banking infrastructure.

Agents Big Tech Privacy

The Frontier

AI agents leak credentials, exposing a trust crisis blockchain aims to solve

Entities Mentioned

Source Intelligence

Related Stories