GHSA-w6wx-jq6j-6mcj
Suggest an improvement- Source
- https://github.com/advisories/GHSA-w6wx-jq6j-6mcj
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-w6wx-jq6j-6mcj/GHSA-w6wx-jq6j-6mcj.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-w6wx-jq6j-6mcj
- Downstream
- Published
- 2026-04-07T18:15:52Z
- Modified
- 2026-04-07T18:32:46.898207Z
- Severity
-
- 6.9 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- OpenClaw: pnpm dlx approvals did not bind local script operands
- Details
-
Summary
Before OpenClaw 2026.4.2,
pnpm dlxapproval planning did not bind local script operands the same way as relatedpnpm execflows. A local script approved through apnpm dlxpath could be replaced before execution without invalidating the approval.Impact
An operator could approve a benign local script and then execute modified script contents through the still-valid approval plan. This was an approval-integrity bug in the node-host command-planning path.
Affected Packages / Versions
- Package:
openclaw(npm) - Affected versions:
<= 2026.4.1 - Patched versions:
>= 2026.4.2 - Latest published npm version:
2026.4.1
Fix Commit(s)
176c059b05357df1bc09d4328a2380670859eeff— bind local scripts inpnpm dlxapproval plans
Release Process Note
The fix is present on
mainand is staged for OpenClaw2026.4.2. Publish this advisory after the2026.4.2npm release is live.Thanks @Kazamayc for reporting.
- Package:
- Database specific
{ "severity": "MODERATE", "cwe_ids": [ "CWE-863" ], "github_reviewed": true, "github_reviewed_at": "2026-04-07T18:15:52Z", "nvd_published_at": null }- References
Affected packages
npm / openclaw
Package
- Name
- openclaw
- View open source insights on deps.dev
- Purl
- pkg:npm/openclaw