OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Versions prior to 0.5.1 have a logic flaw in `bashToolHasP…

OpenClaude versions prior to 0.5.1 contain a logic flaw in the bashToolHasPermission() function that allows path traversal attacks to bypass directory restrictions. When sandbox auto-allow is active without explicit deny rules, the function returns allow before evaluating path constraints. This enables attackers to access sensitive files like /etc/passwd using traversal sequences. The vulnerability affects the command line interface for cloud and local model providers. A patch is available in version 0.5.1.