OpenClaw's exec allowlist analysis rejects shell expansion in unquoted heredocs
Moderate severity
GitHub Reviewed
Published
Apr 23, 2026
in
openclaw/openclaw
•
Updated May 13, 2026
Description
Published to the GitHub Advisory Database
May 4, 2026
Reviewed
May 4, 2026
Last updated
May 13, 2026
Summary
Exec allowlist analysis rejects shell expansion in unquoted heredocs
Affected Packages / Versions
Impact
An allowlisted command containing an unquoted heredoc could hide shell expansion in the heredoc body. That could make the approved command text look safer than what the shell would evaluate at runtime.
Fix
The exec command analyzer now tracks heredoc bodies, rejects unquoted heredoc expansion tokens and continuation-splice bypasses, and preserves quoted heredocs and literal safe text.
Fix Commit(s)
Verification
Thanks @VladimirEliTokarev for reporting.
References