Ijxpwastaken

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.22 Description OpenClaw contains an improper authentication verification issue in Google Chat app-url webhook handling. The application accepts add-on principals outside of intended deployment bindings, allowing attackers to bypass webhook authentication. By providing non-deployment add-on principals, attackers can execute unauthorized actions through the Google Chat integration. Recommendations Update to version 2026.3.22 or later.