OpenClaw Policy Enforcement Bypass Disclosed — MCP/LSP Bundled Tools Skip Operator Allow/Deny Lists
If you’re running OpenClaw and haven’t updated to v2026.4.20 yet, stop reading and do that first. This is a security disclosure that directly affects how your agent enforces operator-defined tool policies — and the details are now public. DailyCVE published the full technical breakdown on April 25. Here’s what you need to know. What the Vulnerability Was OpenClaw allows operators to define restrictive tool policies: allow/deny lists, owner-only restrictions, sandbox tool policies, subagent tool policies, and provider profile controls. These policies are evaluated early in the tool-policy pipeline to filter which tools an agent can actually use. ...