OpenClaw has ReDoS and regex injection via unescaped Feishu mention metadata in RegExp construction
Moderate severity
GitHub Reviewed
Published
Feb 21, 2026
in
openclaw/openclaw
•
Updated Mar 19, 2026
Give feedback on Dependabot alerts