MEDIUM

GHSA-392f-ggf5-fp3c

OpenClaw: Unicode canonicalization drift in node metadata policy classification could broaden node allowlists

Details

### Summary A paired node could supply Unicode-confusable `platform` or `deviceFamily` metadata that passed metadata pinning but classified differently for command policy resolution, broadening default node command allowlists.

### Impact This is a policy-bypass issue within the paired-node trust boundary and can expand node command availability beyond intended defaults.

### Fix Node metadata canonicalization was hardened against confusables, and unknown platform defaults were made conservative (excluding `system.run` and `system.which` unless explicitly allowlisted).

### Affected and Patched Versions - Affected: `<= 2026.2.26` - Patched: `2026.3.1`

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / openclaw

Introduced in: 0 Fixed in: 2026.3.1

Fix npm install openclaw@2026.3.1

References

https://github.com/openclaw/openclaw/security/advisories/GHSA-392f-ggf5-fp3c [WEB]
https://github.com/openclaw/openclaw [PACKAGE]