GHSA-qcc4-p59m-p54m: OpenClaw: Sandbox dangling-symlink alias handling could bypass workspace-only write boundary

March 12, 2026

A sandbox boundary-validation gap in symlink alias handling allowed certain workspace-only write paths to be treated as in-boundary even when they could resolve outside the workspace/sandbox root.

References

github.com/advisories/GHSA-qcc4-p59m-p54m
github.com/openclaw/openclaw
github.com/openclaw/openclaw/commit/4fd29a35bb85a1898ebff518364c467058b50e14
github.com/openclaw/openclaw/security/advisories/GHSA-qcc4-p59m-p54m

Code Behaviors & Features

Detect and mitigate GHSA-qcc4-p59m-p54m with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →