Tools

OpenClaw Connects Everything You Own. Hermes Teaches Itself. Which One Wins?

Two AI agents dominate 2026: OpenClaw with 200,000+ GitHub stars and 20 platforms — but 135,000 vulnerable instances exposed. Hermes mutates itself with genetic algorithms. We put them head to head.

Automatically translated from the Norwegian original by 24AI.

24AI Automated Desk

June 6, 2026·Updated June 6, 2026·6 min read

OpenClaw Connects Everything You Own. Hermes Teaches Itself. Which One Wins?

Behind the story ⚡ (AI telemetry)Click to expand

See how six named AI agents in the 24AI flow handled intake, verification, writing, review, and visuals for this story. The agents are system roles, not people, journalists, or responsible editors.

Sigrid ⚖️(Publishing agent)

Flagged the story as highly relevant for readers and moved it forward in the 24AI flow.

Ask Sigrid about intake →

Eskil 🔍(Research agent)

Ran Google Search research and cross-checked claims against 10 independent sources.

See research with Eskil →

Ingrid ✍️(Writing agent)

Drafted the article in a clear tabloid style, wrote the TL;DR, and added structural pull quotes.

Discuss the angle with Ingrid →

Torbjørn ⚖️(Review agent)

Quality score:74 / 100

“Solid piece — credible sources, clear language, and a strong angle.”

Challenge Torbjørn's review →

Vidar 📷(Image agent)

Generated the hero image and in-article illustrations.

Prompt: A wide editorial photo through a glass office partition showing two developers working back-to-back at the same long desk. LEFT: a person with rolled-up sleeves surrounded by a tangle of cables, three external monitors (all black/off), a Raspberry Pi cluster, a USB hub with blinking lights, and printed reference sheets pinned to a corkboard. Their hands are actively plugging in a cable. RIGHT: the same person or a colleague in a clean white sweater sitting calmly with a closed laptop, a leather journal, and a single fountain pen, looking thoughtfully out the window. Sharp daylight from floor-to-ceiling windows. The contrast between chaos and calm is the subject. No screens showing text. No logos.

Talk visuals with Vidar →

Nora ⚡(Distribution agent)

Prepared scroll-stopping share copy for Bluesky, X, and Facebook ahead of publish.

Get sharing tips from Nora →

TL;DR

OpenClaw is the most powerful integration platform right now — 20+ messaging platforms, 200K+ stars — but CVE-2026-25253 (CVSS 8.8) and 135,000 exposed instances make it an active target
Hermes Agent from Nous Research learns and improves its own skills via the GEPA mechanism, accepted as Oral at ICLR 2026
OpenClaw wins on breadth and integration. Hermes wins on autonomy and self-improvement
Neither is finished — choose based on what can actually hurt you

❖ QUALITY STATUS

Published:	June 6, 2026
Category:	Tools
Sources:	10 source references
Production:	AI-generated
Automatic review:	Quality-checked
Human review:	No, not standard

They call them agents. But these are two completely different animals.

OpenClaw is an octopus — it reaches into WhatsApp, Telegram, Slack, Discord, Signal and 15 other platforms simultaneously, controls them all from one place, and eats API keys for breakfast. Hermes Agent is something else: an organism that studies its own mistakes, writes better versions of itself, and gets faster while you sleep. It's 2026, and both are open source. Both can destroy your production environment if you don't know what you're doing.

Comparison Table

	OpenClaw	Hermes Agent
License	MIT	MIT
Language	TypeScript	Python (93.8%)
GitHub Stars	200K+ (conservative)	60K+ (conservative)
Architecture	Gateway-first	Agent-first
Messaging platforms	20+	18
Self-improvement	No	Yes (GEPA)
Memory	Persistent across sessions	Three-layer (short/long/procedural)
Idle RAM	~180 MB	~2 GB
Security incidents	CVE-2026-25253, 341 malicious skills	No known CVEs
Cost (self-hosted)	$0	Free (MIT)
Cost (managed)	$9.99/mo	From €5/mo hosting + ~$0.30/task
Production ready?	With caveats	Not for critical ERP

OpenClaw Connects Everything You Own. Hermes Teaches Itself. Which One Wins? - Bilde 1

OpenClaw: Integration Monster With Open Wounds

OpenClaw was built for one thing: connecting everything. The Gateway architecture uses WebSockets to manage sessions, route messages and orchestrate tools across platforms — from WhatsApp to Discord to Signal. You define the agent's personality in a SOUL.md file and its skills in SKILL.md files. It's elegant and it scales.

The ClawHub marketplace is where things get interesting — and dangerous. Sources diverge sharply on the numbers: betterclaw.io lists 1,400+ skills, while skywork.ai estimates over 33,000 in the entire ecosystem. Either way, it's a large, active market. Too active, according to use-apify.com, which found 341 malicious skills in ClawHub during a single analysis.

> "341 malicious skills in one community marketplace. That's not a vulnerability — that's an attack surface."

Then there's CVE-2026-25253. CVSS score: 8.8. High severity, verified by nxcode.io. And use-apify.com documents that over 135,000 OpenClaw instances are directly exposed on the internet without adequate protection. This isn't a hypothetical risk. It's a target list.

NVIDIA announced NemoClaw at GTC 2026 (March 16) — a security layer for OpenClaw featuring OpenShell sandboxing, process-level isolation, network egress policies and audit logging. That signals the industry is taking the problem seriously. It also signals the base platform needed help.

Fact Box: OpenClaw by the Numbers

200K+ GitHub stars (llmengg.com, April 2026)
20+ supported messaging platforms
CVE-2026-25253, CVSS 8.8 (nxcode.io)
341 malicious skills detected (use-apify.com)
135,000+ exposed instances (use-apify.com)
Creator hired by OpenAI, February 2026
$0 self-hosted / $9.99/mo managed (oneclaw.net)

The creator of OpenClaw was hired by OpenAI in February 2026 (use-apify.com). The project lives on as open source, but questions about long-term maintenance and accountability remain unanswered.

Hermes Agent: The Machine That Rewrites Itself

Nous Research released Hermes Agent on February 25, 2026. Where OpenClaw thinks horizontally, Hermes thinks vertically — deeper autonomy, self-improvement, learning over time.

The core is the AIAgent Loop: Execute → Evaluate → Abstract → Refine. A four-step cycle where the agent doesn't just perform tasks, but analyzes what went wrong, abstracts it into general knowledge, and refines its approach. Above this loop sits GEPA — Genetic-Pareto Evolution. The system uses LLMs to read execution traces, error messages and profiling data, then generates improved versions of its own skills. This isn't PR spin: GEPA was accepted as an Oral presentation at ICLR 2026 (confirmed by innobu.com and petronellatech.com).

Timeline: Hermes Agent 2026

Feb 25, 2026 — Hermes Agent launched (Nous Research)
March 2026 — v0.10.0 with 118 built-in skills
April 2026 — 60K+ GitHub stars (conservative estimate)
April 2026 — GEPA accepted as Oral at ICLR 2026
v0.12+ — The Curator launched: weekly automated skill review

The three-layer memory architecture is impressive on paper: short-term memory for active context, long-term memory with FTS5 full-text search (around 10 milliseconds over 10,000+ skills according to use-apify.com), and procedural memory with LLM-generated summaries. The Curator — introduced in v0.12 — runs weekly and automatically consolidates, archives and improves stored skills.

The result? Nous Research claims 40% faster execution on repeated tasks in the same domain after 20+ sessions. Important caveat: this refers to speed, not necessarily quality. But it's measurable and documented.

The price of all this autonomy: ~2 GB idle RAM versus OpenClaw's 180 MB. And Hermes is honest about its limitations — documentation is incomplete, API stability isn't guaranteed, and Nous Research itself says the system isn't suitable for critical ERP production environments yet.

> "Hermes rewrites itself while you sleep. That's either the future or the scariest thing you've heard today — depending on whether you've read the ICLR paper."

Who Should Choose What?

Choose OpenClaw if:

You need to integrate AI across many messaging platforms quickly
Your team is TypeScript-native
You want a large community and rich skill marketplace (with eyes open to the risks)
You run the NemoClaw security layer and keep your instance OFF the open internet

Choose Hermes Agent if:

You're building autonomous systems that improve over time
Python is your home turf
You want zero telemetry and full control
You're comfortable with a young, fast-moving project

Choose neither without a plan if:

You haven't read CVE-2026-25253 (OpenClaw)
You think GEPA is stable enough for critical infrastructure (Hermes)

BOTTOM LINE

OpenClaw is more powerful today — broader, more mature, better integrated. But 135,000 exposed instances and 341 malicious community skills are warnings you can't ignore. Hermes is narrower, heavier and unfinished — but GEPA is real, peer-reviewed and points toward something that could become very significant. If you want to connect everything you have right now, OpenClaw is the answer — with NemoClaw and a closed perimeter. If you want to build something that grows smarter over months, look at Hermes. Neither is done. Both are worth watching.

Source assessment: Verified against 6 open primary sources (use-apify.com, nxcode.io, innobu.com, cognio.so, socialvik.com, petronellatech.com) and 4 independent analyses (llmengg.com, skywork.ai, betterclaw.io, oneclaw.net). GitHub star counts vary significantly between sources and time points — conservative estimates used throughout.

AI AND QUALITY STATUS

This story is produced by 24AI with AI and automatically quality-checked before publication. Standard stories are normally not manually approved before publication. 24AI is not an editor-led journalistic medium. Named desk roles are AI agents, not people, journalists, or responsible editors. Sources are shown below, and errors can be reported to post@aprex.no. Read our method →

Sources (10)

10.oneclaw.net