docs(changelog): note safeBins exec hardening

2026-02-23 23:58:54 +00:00
parent 3b8e33037a
commit 25f6fcc63a
1 changed files with 4 additions and 0 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,6 +4,10 @@ Docs: https://docs.openclaw.ai

 ## Unreleased

+### Fixes
+
+- Security/Exec: harden `safeBins` long-option validation by rejecting unknown/ambiguous GNU long-option abbreviations and denying sort filesystem-dependent flags (`--random-source`, `--temporary-directory`, `-T`), closing safe-bin denylist bypasses. Thanks @jiseoung.
+
 ## 2026.2.23 (Unreleased)

 ### Changes