GHSA-R5FQ-947M-XM57 OpenClaw has a path traversal in apply_patch could write/delete files outside the workspace
Summary In affected versions, when applypatch was enabled and the agent ran without filesystem sandbox containment, crafted paths could cause file writes/deletes outside the configured workspace directory. Affected Packages / Versions - Package: openclaw npm - Affected: = 2026.2.14 Details The...