nyrn
/
openclaw
mirror of https://github.com/openclaw/openclaw.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
openclaw/src/security
History
Peter Steinberger c070be1bc4 fix(sandbox): harden fs bridge path checks and bind mount policy 2026-02-24 02:21:43 +00:00
..
audit-channel.ts refactor(security): unify dangerous name matching handling 2026-02-24 01:33:08 +00:00
audit-extra.async.ts fix(sandbox): use one-time noVNC observer tokens 2026-02-21 13:56:58 +01:00
audit-extra.sync.test.ts perf(test): fold secret equality assertions into audit extra suite 2026-02-16 00:18:27 +00:00
audit-extra.sync.ts fix(sandbox): harden fs bridge path checks and bind mount policy 2026-02-24 02:21:43 +00:00
audit-extra.ts fix(security): harden gateway command/audit guardrails 2026-02-22 08:45:48 +01:00
audit-fs.ts Doctor/Security: fix telegram numeric ID + symlink config permission warnings (#19844) 2026-02-18 00:09:51 -08:00
audit-tool-policy.ts refactor(core): dedupe tool policy and IPv4 matcher logic 2026-02-16 16:14:54 +00:00
audit.test.ts feat(gateway)!: require explicit non-loopback control-ui origins 2026-02-24 01:57:11 +00:00
audit.ts feat(gateway)!: require explicit non-loopback control-ui origins 2026-02-24 01:57:11 +00:00
channel-metadata.ts fix(security): separate untrusted channel metadata from system prompt (thanks @KonstantinMirin) 2026-02-03 23:02:45 -08:00
dangerous-config-flags.ts feat(gateway)!: require explicit non-loopback control-ui origins 2026-02-24 01:57:11 +00:00
dangerous-tools.ts refactor(security): centralize dangerous tool lists 2026-02-14 13:27:05 +01:00
dm-policy-shared.test.ts fix: enforce strict allowlist across pairing stores (#23017) 2026-02-22 00:00:23 +01:00
dm-policy-shared.ts fix: enforce strict allowlist across pairing stores (#23017) 2026-02-22 00:00:23 +01:00
external-content.test.ts test(security): dedupe external marker sanitization assertions 2026-02-22 07:44:57 +00:00
external-content.ts Fix formatting (#22474) 2026-02-21 01:37:02 -05:00
fix.test.ts refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:59:30 +00:00
fix.ts style: align formatting with oxfmt 0.33 2026-02-18 01:34:35 +00:00
mutable-allowlist-detectors.ts refactor(security): unify dangerous name matching handling 2026-02-24 01:33:08 +00:00
safe-regex.test.ts fix(security): harden regex compilation for filters and redaction 2026-02-23 23:54:50 +00:00
safe-regex.ts fix(security): harden regex compilation for filters and redaction 2026-02-23 23:54:50 +00:00
scan-paths.ts fix(security): enforce plugin and hook path containment 2026-02-19 15:37:29 +01:00
secret-equal.ts fix(security): SHA-256 hash before timingSafeEqual to prevent length leak (#20856) 2026-02-19 03:16:35 -08:00
skill-scanner.test.ts security: add skill/plugin code safety scanner (#9806) 2026-02-05 16:06:11 -08:00
skill-scanner.ts refactor(security): reuse shared scan path containment helper 2026-02-19 00:20:15 +00:00
temp-path-guard.test.ts test(security): consolidate runtime guardrail scans 2026-02-22 22:06:01 +00:00
windows-acl.test.ts refactor: simplify windows ACL parsing and expand coverage 2026-02-22 10:43:03 +01:00
windows-acl.ts refactor: simplify windows ACL parsing and expand coverage 2026-02-22 10:43:03 +01:00