Konstantinmirin

**Name of the Vulnerable Software and Affected Versions** OpenClaw versions prior to 2026.2.3 **Description** OpenClaw is a personal AI assistant. When the Slack integration is enabled, Slack channel metadata (topic/description) can be incorporated into the model's system prompt. This increases the injection surface, allowing untrusted Slack channel metadata to be treated as higher-trust system input. Prompt injection is a known risk for LLM-driven systems. In deployments where tool execution is enabled, a successful injection could lead to unintended tool invocations and/or unintended data exposure. **Recommendations** If you do not use Slack, no action is required. If you use Slack, upgrade to version 2026.2.3 or later.