PT-2026-25484 · Npm · Openclaw
Published
2026-03-03
·
Updated
2026-03-03
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
Summary
OpenClaw Slack monitor handled
reaction * and pin * non-message events before applying sender-policy checks consistently.In affected versions, these events could be added to system-event context even when sender policy would not normally allow them.
Affected Packages / Versions
- Package: npm
openclaw - Latest published affected version confirmed:
2026.2.24(npm latest as of February 26, 2026) - Affected range:
<= 2026.2.24 - Patched version :
2026.2.25
Technical Details
reaction *andpin *handlers now route through shared sender authorization (authorizeSlackSystemEventSender).- Enforced checks now include:
- DM
dmPolicy/allowFrom - channel
usersallowlist enforcement for non-DM channels - channel-level allow checks before system-event enqueue
- Regression coverage added for DM allow/deny and channel-user allowlist deny paths.
Fix Commit(s)
aedf62ac7e669a89c7b299201bf6537dc6b12e0e75dfb71e4e8b7c2feba5a8ca662f92ea840e0147
Impact
Low-severity policy-consistency issue in Slack non-message event ingress.
This may introduce unexpected reaction/pin context signals from senders outside configured policy.
Release Process Note
patched versions is pre-set to planned release 2026.2.25. Advisory published with npm release 2026.2.25.OpenClaw thanks @tdjackey for reporting.
Fix
Incorrect Authorization
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openclaw