OpenClaw has a "self-attack" vulnerability: mistakenly executing Bash commands leading to key leakage

CoinNetwork · 2026-03-05T12:37:15+00:00

Web3 security company GoPlus recently disclosed a security incident involving the AI development tool OpenClaw. The system triggered command injection due to incorrect Bash commands during automated tasks, resulting in over 100 lines of sensitive information being exposed. GoPlus recommends using API calls in AI development, following the principle of least privilege, and conducting manual reviews.

CoinNetwork

2026-03-05 12:37:15

Abstract generation in progress

CoinWorld News reports that on March 5th, Web3 security firm GoPlus announced that the AI development tool OpenClaw recently experienced a “self-attack” security incident. During automated tasks, the system constructed an incorrect Bash command while calling a Shell command to create a GitHub Issue, unexpectedly triggering command injection and exposing a large number of sensitive environment variables. In the incident, the AI-generated string contained a backtick-enclosed set, which Bash interpreted as command substitution and executed automatically. Since Bash outputs all current environment variables when running ‘set’ without parameters, over 100 lines of sensitive information—including Telegram keys, authentication tokens, and more—were directly written into the GitHub Issue and made public. GoPlus recommends that in AI automation development or testing scenarios, API calls should be used instead of directly concatenating Shell commands, environment variables should be isolated following the principle of least privilege, high-risk execution modes should be disabled, and manual review mechanisms should be introduced for critical operations.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.