1. CRITICAL: NemoClaw Policy Engine Flaw Allows Runtime Bypass of All Default Security Blocks
A critical design flaw in the NemoClaw policy engine allows runtime policies to completely override and bypass all default security blocks, directly contradicting its official specification. The vulnerability stems from the `evaluatePolicy()` function checking allow rules first (line 336). This means any runtime call t...