nyrn
/
openclaw
mirror of https://github.com/openclaw/openclaw.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Delete docs/internal/codex/2026-03-29-exec-target-override-fix.md

This commit is contained in:
Vincent Koc 2026-04-01 18:35:21 +09:00 committed by Peter Steinberger
parent 5dca81271c
commit 938541999e
1 changed files with 0 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
docs/internal/codex/2026-03-29-exec-target-override-fix.md
View File

@ -1,19 +0,0 @@
---
title: "Exec target override bypass fix"
summary: "Hardened exec target resolution so auto defaults no longer allow model-requested host overrides."
author: "Codex <codex@openai.com>"
github_username: "codex"
created: "2026-03-29"
---
Investigated a high-severity regression in exec target resolution.
What changed:
- Confirmed current behavior allowed `configuredTarget=auto` with `requestedTarget=gateway/node`, which selects host execution even when sandbox is available.
- Restored fail-closed allowlist behavior by requiring requested target to exactly match configured target.
- Updated the runtime unit test to verify host overrides are rejected when configured target is `auto`.
Why:
- `auto` should choose runtime host automatically, not grant untrusted host-selection overrides.