VDB
KO
MEDIUM

GHSA-rm5c-4rmf-vvhw

OpenClaw: Sandbox file operations use check-then-act, bypassing fd-based TOCTOU defenses

Details

## Summary Sandbox file operations use check-then-act, bypassing fd-based TOCTOU defenses

## Current Maintainer Triage - Status: narrow - Normalized severity: medium - Assessment: Released workspace-only apply_patch remove and mkdir operations were still check-then-act, but the draft overstates scope by bundling broader edit paths; keep it open but narrow it to the actual sandbox-workspace mutation boundary.

## Affected Packages / Versions - Package: `openclaw` (npm) - Latest published npm version: `2026.3.31` - Vulnerable version range: `<=2026.3.28` - Patched versions: `>= 2026.3.31` - First stable tag containing the fix: `v2026.3.31`

## Fix Commit(s) - `32a4a47d602e0618f87b3e59f94d8c142767f860` — 2026-03-30T16:49:49+01:00

OpenClaw thanks @AntAISecurityLab for reporting.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / openclaw
Introduced in: 0 Fixed in: 2026.3.31
Fix npm install openclaw@2026.3.31

References