GHSA-43x4-g22p-3hrq: OpenClaw: Chrome --no-sandbox disabled OS-level browser sandbox in sandbox browser container

March 3, 2026

Sandbox browser container launched Chromium with --no-sandbox by default, disabling Chromium’s OS-level sandbox protections.

References

github.com/advisories/GHSA-43x4-g22p-3hrq
github.com/openclaw/openclaw
github.com/openclaw/openclaw/commit/1835dec2004fe7a62c6a7ba46b8485f124ec6199
github.com/openclaw/openclaw/commit/e7eba01efc4c3c400e9cfd3ce3d661cbc788a631
github.com/openclaw/openclaw/security/advisories/GHSA-43x4-g22p-3hrq

Code Behaviors & Features

Detect and mitigate GHSA-43x4-g22p-3hrq with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →