GHSA-m8v2-6wwh-r4gc: OpenClaw's sandbox bind validation could bypass allowed-root and blocked-path checks via symlink-parent missing-leaf paths

March 3, 2026

In openclaw up to and including 2026.2.23 (latest npm release as of February 24, 2026), sandbox bind-source validation could be bypassed when a bind source used a symlinked parent plus a non-existent leaf path.

References

github.com/advisories/GHSA-m8v2-6wwh-r4gc
github.com/openclaw/openclaw
github.com/openclaw/openclaw/commit/b5787e4abba0dcc6baf09051099f6773c1679ec1
github.com/openclaw/openclaw/security/advisories/GHSA-m8v2-6wwh-r4gc

Code Behaviors & Features

Detect and mitigate GHSA-m8v2-6wwh-r4gc with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →