js · openclawCritical
OpenClaw Gateway: Shell positional parameters bypass inline-eval allowlist
Shell positional parameters could weaken strict inline-eval checks, allowing shell-provided content to run outside the intended allowlist rule.
What changed
Shell positional parameters could weaken strict inline-eval checks, allowing shell-provided content to run outside the intended allowlist rule.
Who it affects
OpenClaw Gateway operators using the affected feature with allowlisted tools and shell positional arguments.
What to do today
Update to version 2026.4.2 or later, or apply mitigations: avoid allowlisting shell carrier patterns, require approval for shell wrappers, keep allowlists narrow, avoid sharing Gateway between untrusted users, and disable the affected feature if not needed.
The trail
Collected→
Audited→
Written→
Published