Package impact
npm / @gitlawb/openclaude
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-42073 | medium | — | 5.5 | 17d ago | OpenClaude MCP OAuth Callback: State Check Bypass via error Param Leads to DoS | |||
| CVE-2026-35570 | unknown | — | — | 1mo ago | OpenClaude: Sandbox Bypass via Early-Exit Logic Flaw Allows Path Traversal |