GHSA-gfmx-pph7-g46x: OpenClaw: Lower-trust background runtime output is injected into trusted `System:` events, and local async exec completion misses the intended `exec-event` downgrade

April 9, 2026

Lower-trust background runtime output is injected into trusted System: events, and local async exec completion misses the intended exec-event downgrade.

Lower-trust runtime/background output could be promoted into trusted System events, allowing prompt-injection into later agent turns.

OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a multi-tenant service boundary.

References

github.com/advisories/GHSA-gfmx-pph7-g46x
github.com/openclaw/openclaw
github.com/openclaw/openclaw/security/advisories/GHSA-gfmx-pph7-g46x

Code Behaviors & Features

Detect and mitigate GHSA-gfmx-pph7-g46x with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →