How we found exploitable security flaws in OpenClaw that manual review missed