Affected Packages / Versions
- Package:
openclaw (npm)
- Affected versions:
<= 2026.2.14
- Fixed in:
2026.2.15
Impact
A bug in download skill installation allowed targetDir values from skill frontmatter to resolve outside the per-skill tools directory if not strictly validated.
In the admin-only skills.install flow, this could write files outside the intended install sandbox.
Fix Commit(s)
- 2363e1b fix(security): restrict skill download target paths
- b6305e9 test(skills): split installer security coverage
Acknowledgement
Thanks @Adam55A-code for reporting.
Adam55A-code Reporter
Affected Packages / Versions
openclaw(npm)<= 2026.2.142026.2.15Impact
A bug in
downloadskill installation allowedtargetDirvalues from skill frontmatter to resolve outside the per-skill tools directory if not strictly validated.In the admin-only
skills.installflow, this could write files outside the intended install sandbox.Fix Commit(s)
Acknowledgement
Thanks @Adam55A-code for reporting.