Random clients being generated... security risk?

In the past week, I’ve started to see random clients being generated in my self-hosted application. There is no information in Recent Activity about where these clients came from or how they were generated.

I’m hosting on AWS Lightsail Ubuntu 22.04 VPS, with firewall enabled both in Lightsail and using UFW. Ports open are for SSH and HTTP/S only.

Where can I find more information about these entries? Are they being created by the API? Is there a security vulnerability that devs aren’t aware of? Is there a hole in my system? I use a password manager with unique password for every website/service, and have 2FA enabled.


Can you check if the client registration option is enabled on Settings > Client Portal.