Package impact
npm / @gitlawb/openclaude
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-42073 | medium | 6.5 | 6.5 | 23d ago | OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the OpenClaude MCP authentication flow starts a temporary local HTTP serv… | |||
| CVE-2026-35570 | unknown | — | — | 1mo ago | OpenClaude: Sandbox Bypass via Early-Exit Logic Flaw Allows Path Traversal |