OpenClaw before 2026.4.2 contains an improper trust boundary vulnerability allowing untrusted workspace channel shadows to execute during built-in channel setup…

OpenClaw versions before 2026.4.2 contain an improper trust boundary vulnerability that allows untrusted workspace channel shadows to execute during built-in channel setup and login processes. Attackers can exploit this by cloning a workspace with a malicious plugin that claims a bundled channel ID. This enables unintended in-process code execution before the plugin undergoes explicit trust verification. The vulnerability affects the plugin trust mechanism and workspace security boundaries. The issue has been addressed in version 2026.4.2 with proper trust boundary enforcement.