[Developing situation]: Why you need to be careful giving your local LLMs tool access: OpenClaw just patched a Critical sandbox escape

A lot of us here run local LLMs and connect them to agent frameworks for tool calling. If you're using OpenClaw for this, you need to update immediately. Ant AI Security Lab (Ant Group's security research team) just spent 3 days auditing the framework and submitted 33 vulnerability reports. 8 were just patched in 2026.3.28 - including a Critical privilege escalation and a High severity sandbox escape. The scariest part for local setups? The sandbox escape lets the message tool bypass isolation and read arbitrary local files on your host system.