Skip to content

OpenClaw safeBins jq `$ENV` filter bypass allows environment variable disclosure

High severity GitHub Reviewed Published Mar 29, 2026 in openclaw/openclaw • Updated Apr 8, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts