real crystal
Security/system.run: fail closed for approval-backed interpreter/runtime commands when OpenClaw cannot bind exactly one concrete local file operand, while extending best-effort direct-file binding to additional runtime forms.
I have been having trouble upgrading from 2026.3.8 to 2026.3.13 and I think it's because of this specific change. My agents can no longer run python3 -c and bash -c and get the error message SYSTEM_RUN_DENIED: approval cannot safely bind this interpreter/runtime command
I think this only affects the main agent session but I think maybe isolated cron sessions can run python3 -c.