- Buy Crypto
- Markets
Futures- Spot
- Copy Trade
- Earn
- More
OpenClaw has a self-attack vulnerability that mistakenly executes Bash commands, leading to key leakage
Web3 security company GoPlus stated that the AI development tool OpenClaw has recently been reported to have experienced a self-attack security incident. During the execution of automated tasks, the system constructed an incorrect Bash command while calling Shell commands to create a GitHub Issue, inadvertently triggering command injection, which led to the exposure of a large number of sensitive environment variables.
In the incident, the AI-generated string contained a set wrapped in backticks, which was interpreted by Bash as command substitution and executed automatically. Since Bash outputs all current environment variables when executing set without parameters, this ultimately resulted in over 100 lines of sensitive information (including Telegram keys, authentication tokens, etc.) being directly written to the GitHub Issue and publicly published. GoPlus recommends that in AI automation development or testing scenarios, API calls should be used instead of directly concatenating Shell commands, and the principle of least privilege should be followed to isolate environment variables. Additionally, high-risk execution modes should be disabled, and a manual review mechanism should be introduced for critical operations.
You may also like
The underlying business agreement of the trillion-dollar Agent economy: Understanding ERC-8183, it's not just about payments, but the future
When Wall Street's ETH begins to "yield": Looking at the asset properties of Ethereum from BlackRock's ETHB
The Power of Agency: The Agentic Wallet and the Next Decade of Wallets
Understanding x402 and MPP in One Article: Two Routes for Agent Payments
Particle Founder: The entrepreneurial insights I have gained the most from in the past year
Huang Renxun's latest podcast transcript: The future of Nvidia, the development of embodied intelligence and agents, the explosion of inference demand, and the public relations crisis of artificial intelligence
OKX Ventures Research Report: AI Agent Economic Infrastructure Research Report (Part 1)
The migration of settlement rights: B18 and the institutional starting point of on-chain banks
From Tencent and Circle: Looking at the Simple and Difficult Questions of Investment
The second half of stablecoins no longer belongs to the crypto circle
Cursor "Shell" Kimi Controversy Reversed: From Copyright Infringement Allegations to Authorized Collaboration, China's Open Source Model Once Again Becomes a Global AI Foundation
The Real Reason Tokens Don't Sell: 90% of Crypto Projects Overlook Investor Relations
Is the income of pump.fun real, earning a million dollars a day despite the market downturn?
The real reason why tokens are not selling: 90% of crypto projects neglect investor relations
Who is the true winner of the "Tokenization" narrative?
Moss: The Era of AI-Traded by Anyone | Project Introduction
Chip Smuggling Case Exposes Regulatory Loophole | Rewire News Evening Update
How a Structured AI Crypto Trading Bot Won at the WEEX Hackathon
Ritmex demonstrates how disciplined risk control and structured signals can make an AI crypto trading bot more stable and reliable on WEEX, highlighting the importance of combining execution discipline with scalable AI trading systems.
App