NanoClaw Creator Loses SEO War to Impostor Site
▼ Summary
– A fake website (nanoclaw.net) is outranking the real site (nanoclaw.dev) for the NanoClaw project’s name in Google search results.
– The creator, Gavriel Cohen, built the real site after the fake one appeared and took standard SEO steps, but the impostor site remains higher ranked.
– The fake site poses a security risk as it could be replaced with malicious content and spreads incorrect information about the project.
– This ranking problem extends beyond Google, occurring on most major search engines, with only Mojeek correctly ranking the real site.
– The incident highlights a vulnerability for new projects, as the fake site was indexed first, making it difficult to correct the ranking later.
The creator of a popular open source AI platform is locked in a frustrating battle for online visibility, as Google and other major search engines consistently rank an impostor website above the project’s legitimate homepage. This incident highlights a critical vulnerability for developers who prioritize code over web presence, demonstrating how quickly digital squatting can undermine a project’s credibility and security.
Gavriel Cohen, the software engineer behind the NanoClaw project, recently detailed the ongoing issue. After launching his security-focused AI agent platform in early February, the project rapidly gained traction, earning significant praise and media coverage. However, around the same time, an unknown party registered the domain nanoclaw.net and populated it with content automatically scraped from the project’s GitHub documentation. Cohen had not yet established a dedicated website, as the GitHub repository served as the project’s central hub.
As press attention grew, Cohen began receiving confused messages about problems with “his” website, which was actually the fraudulent copy. He quickly built the official site at nanoclaw.dev and undertook a series of standard corrective actions. He integrated the site with the GitHub repository, implemented structured data, registered it with Google Search Console, and filed formal takedown requests with Google, the domain registrar, and the hosting provider. Major publications also updated their articles to link to the correct domain.
Despite these efforts, tests conducted in early March showed the impersonator site holding the top position in Google search results for “NanoClaw,” with the legitimate site buried several pages deep. Cohen emphasized the active security threat, noting the fake site displays incorrect information and could easily be switched to host malicious downloads or phishing pages at any moment. The situation sparked considerable discussion on forums like Hacker News, where the story quickly gained hundreds of comments and points.
Further investigation revealed the problem is not isolated to Google. Community members tested other search engines and reported the fraudulent site claiming the number one spot on DuckDuckGo and appearing prominently in results from Bing, Brave, Ecosia, and Qwant. Only the search engine Mojeek was found to correctly rank the authentic site and exclude the impostor. This widespread issue suggests a fundamental problem beyond a simple indexing glitch at one company.
The case challenges conventional wisdom from search engines themselves. Google representatives have previously suggested that if copied content consistently outranks the original, the site owner should reevaluate their site’s overall quality. Yet, Cohen’s project boasts substantial quality signals: over 18,000 GitHub stars, coverage from major tech publications, endorsements from leading AI researchers, and all official social profiles correctly pointing to nanoclaw.dev. The core issue appears to be one of timing; the counterfeit domain was registered and indexed by search engines before the legitimate one even existed.
For developers and startups, the critical lesson is to secure a project’s domain name at the earliest possible stage, even if a full website isn’t immediately planned. While focusing on shipping code is standard open-source practice, this incident shows that the delay can create a lasting SEO disadvantage that is remarkably difficult to reverse. The individual operating the fake site has created a persistent point of confusion and risk.
As of now, the situation remains unresolved. It is unclear if Google has acted on the submitted takedown notices. Some SEO professionals participating in the discussion offered more advanced tactics, such as analyzing the backlink profile of the fraudulent site to identify and correct mistaken links from other websites. The ongoing dilemma serves as a stark reminder of the proactive measures necessary to protect a project’s identity in the digital landscape, where first-mover advantage in search engine indexing can have long-lasting and damaging consequences.
(Source: Search Engine Journal)
