Skip to content

Security: jgamblin/OpenClawCVEs

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

This repository is a read-only security tracker — it aggregates and presents publicly available CVE and GHSA data for the OpenClaw project. It does not contain any OpenClaw application code.

If you found a vulnerability in OpenClaw itself

Please report it directly to the OpenClaw project:

If you found an issue with this tracker

If you've found a bug in this tracker's automation (e.g., incorrect data, missing advisories, script errors), please open an issue.

Scope

This tracker monitors:

Coordinated Disclosure

All vulnerabilities listed in this tracker are public records. Project-issued advisories were disclosed through GitHub's coordinated disclosure process; third-party CVEs are sourced from their published CVE List V5 records. We do not publish vulnerability details beyond what is already public in the referenced GHSAs and CVE records.

There aren't any published security advisories