nyrn
/
openclaw
mirror of https://github.com/openclaw/openclaw.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
openclaw/src
History
Albert ba28dbc016 feat(guardian): add LLM-based intent-alignment guardian plugin 
Guardian intercepts tool calls via before_tool_call hook and sends them
to a separate LLM for review — blocks actions the user never requested,
defending against prompt injection attacks.

Key design decisions:
- Conversation turns (user + assistant pairs) give guardian context to
  understand confirmations like "yes" / "go ahead"
- Assistant replies are explicitly marked as untrusted in the prompt to
  prevent poisoning attacks from propagating
- Provider resolution uses SDK (not hardcoded list) with 3-layer
  fallback: explicit config → models.json → pi-ai built-in database
- Lazy resolution pattern for async provider/auth lookup in sync register()

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 		2026-03-15 12:32:34 +08:00
..
acp test: dedupe acp translator cancel scoping tests 2026-03-13 21:40:53 +00:00
agents feat(guardian): add LLM-based intent-alignment guardian plugin 2026-03-15 12:32:34 +08:00
auto-reply fix: persist context-engine auto-compaction counts (#42629) 2026-03-14 16:22:10 -07:00
browser browser: drop headless/remote MCP attach modes, simplify existing-session to autoConnect-only (#46628) 2026-03-14 15:54:22 -07:00
canvas-host Fix full local gate on main 2026-03-14 15:52:11 -05:00
channels Fix configure startup stalls from outbound send-deps imports (#46301) 2026-03-14 09:58:03 -07:00
cli fix(gateway/cli): relax local backend self-pairing and harden launchd restarts (#46290) 2026-03-14 14:27:52 -04:00
commands feat(provider): support new model zai glm-5-turbo, performs better for openclaw (openclaw#46670) 2026-03-14 20:19:41 -05:00
compat
config feat(gateway): make health monitor stale threshold and max restarts configurable (openclaw#42107) 2026-03-14 21:21:56 -05:00
context-engine
cron refactor: remove channel shim directories, point all imports to extensions (#45967) 2026-03-14 03:43:07 -07:00
daemon fix(gateway/cli): relax local backend self-pairing and harden launchd restarts (#46290) 2026-03-14 14:27:52 -04:00
docs
gateway fix(gateway): harden health monitor account gating (#46749) 2026-03-14 21:58:28 -05:00
hooks
i18n
infra Docs: fix MDX markers blocking page refreshes (#46695) 2026-03-15 02:58:59 +01:00
line fix: resolve current ci regressions 2026-03-14 00:51:12 +00:00
link-understanding
logging refactor: share logging console spies 2026-03-13 20:19:39 +00:00
markdown
media feat: add --force-document to message.send for Telegram (bypass sendPhoto + image optimizer) (#45111) 2026-03-14 19:43:49 +08:00
media-understanding
memory Fix test environment regressions on main 2026-03-14 14:26:22 -05:00
node-host fix(node): remove debug console.log on node host startup 2026-03-14 21:17:48 +01:00
pairing test: share pairing setup resolution assertions 2026-03-13 23:35:28 +00:00
plugin-sdk feat(guardian): add LLM-based intent-alignment guardian plugin 2026-03-15 12:32:34 +08:00
plugins feat(guardian): add LLM-based intent-alignment guardian plugin 2026-03-15 12:32:34 +08:00
process fix(windows): add windowsHide to detached spawn calls to suppress console windows (#44693) 2026-03-13 21:06:33 +00:00
providers
routing
scripts ci: speed up scoped workflow lanes 2026-03-13 19:53:40 +00:00
secrets refactor: share secrets audit model fixtures 2026-03-13 20:37:53 +00:00
security refactor: remove channel shim directories, point all imports to extensions (#45967) 2026-03-14 03:43:07 -07:00
sessions
shared Gateway: treat scope-limited probe RPC as degraded reachability (#45622) 2026-03-13 23:13:33 -05:00
terminal refactor: share terminal note wrapping 2026-03-14 01:41:16 +00:00
test-helpers test: share whatsapp outbound poll fixtures 2026-03-14 01:41:17 +00:00
test-utils refactor: remove channel shim directories, point all imports to extensions (#45967) 2026-03-14 03:43:07 -07:00
tts fix: validate edge tts output file is non-empty before reporting success (#43385) thanks @Huntterxx 2026-03-14 20:22:09 -05:00
tui Add /btw side questions (#45444) 2026-03-14 17:27:54 +02:00
types
utils
whatsapp
wizard
channel-web.ts refactor: remove channel shim directories, point all imports to extensions (#45967) 2026-03-14 03:43:07 -07:00
docker-build-cache.test.ts
docker-image-digests.test.ts
docker-setup.e2e.test.ts test: reduce docker setup e2e duplication 2026-03-13 21:40:53 +00:00
dockerfile.test.ts
entry.ts
entry.version-fast-path.test.ts
extensionAPI.ts
globals.ts
index.ts
install-sh-version.test.ts
logger.test.ts
logger.ts
logging.ts
param-key.ts refactor: share snake case param lookup 2026-03-13 21:40:53 +00:00
poll-params.test.ts
poll-params.ts refactor: share snake case param lookup 2026-03-13 21:40:53 +00:00
polls.test.ts
polls.ts
runtime.ts
utils.test.ts Fix full local gate on main 2026-03-14 15:52:11 -05:00
utils.ts refactor: dedupe home relative path resolution 2026-03-13 21:40:53 +00:00
version.test.ts
version.ts