nyrn
/
openclaw
mirror of https://github.com/openclaw/openclaw.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
openclaw/src/security
History
Peter Steinberger b7afc7bf40
fix: harden external content marker sanitization 		2026-03-13 20:28:45 +00:00
..
audit-channel.ts feat(zalouser): audit mutable group allowlists 2026-03-13 01:44:42 +00:00
audit-extra.async.ts feat(secrets): expand SecretRef coverage across user-supplied credentials (#29580) 2026-03-03 02:58:20 +00:00
audit-extra.sync.test.ts perf(test): fold secret equality assertions into audit extra suite 2026-02-16 00:18:27 +00:00
audit-extra.sync.ts refactor(security): reuse hook agent routing normalization 2026-03-12 21:44:06 +00:00
audit-extra.ts feat(security): audit workspace skill symlink escapes 2026-03-02 23:28:54 +00:00
audit-fs.ts Doctor/Security: fix telegram numeric ID + symlink config permission warnings (#19844) 2026-02-18 00:09:51 -08:00
audit-tool-policy.ts refactor(core): dedupe tool policy and IPv4 matcher logic 2026-02-16 16:14:54 +00:00
audit.test.ts feat(zalouser): audit mutable group allowlists 2026-03-13 01:44:42 +00:00
audit.ts CLI: make read-only SecretRef status flows degrade safely (#37023) 2026-03-05 23:07:13 -06:00
channel-metadata.ts
dangerous-config-flags.ts feat(gateway)!: require explicit non-loopback control-ui origins 2026-02-24 01:57:11 +00:00
dangerous-tools.ts Deny cron tool on /tools/invoke by default 2026-02-24 04:33:50 +00:00
dm-policy-channel-smoke.test.ts refactor: unify dm policy store reads and reason codes 2026-02-26 17:47:57 +01:00
dm-policy-shared.test.ts refactor: share matched group policy evaluation 2026-03-08 00:05:24 +00:00
dm-policy-shared.ts fix: narrow dm shared group policy typing 2026-03-08 00:05:24 +00:00
external-content.test.ts fix: harden external content marker sanitization 2026-03-13 20:28:45 +00:00
external-content.ts fix: harden external content marker sanitization 2026-03-13 20:28:45 +00:00
fix.test.ts refactor(tests): dedupe security fix scenario helpers 2026-03-03 01:54:27 +00:00
fix.ts refactor(security): enforce account-scoped pairing APIs 2026-02-26 21:57:52 +01:00
mutable-allowlist-detectors.ts feat(zalouser): audit mutable group allowlists 2026-03-13 01:44:42 +00:00
safe-regex.test.ts refactor(security): split safe-regex parse and bounded matching 2026-03-02 16:47:00 +00:00
safe-regex.ts refactor(security): split safe-regex parse and bounded matching 2026-03-02 16:47:00 +00:00
scan-paths.ts fix(security): enforce plugin and hook path containment 2026-02-19 15:37:29 +01:00
secret-equal.ts fix(security): SHA-256 hash before timingSafeEqual to prevent length leak (#20856) 2026-02-19 03:16:35 -08:00
skill-scanner.test.ts test: stabilize bun cache invalidation fixtures 2026-03-02 22:09:36 +00:00
skill-scanner.ts perf(security): cache scanner directory walks 2026-03-02 20:19:10 +00:00
temp-path-guard.test.ts perf(test): reduce temp fixture churn in guardrail-heavy suites 2026-03-03 01:09:07 +00:00
windows-acl.test.ts fix(security): use icacls /sid for locale-independent Windows ACL audit (#38900) 2026-03-07 12:49:33 -05:00
windows-acl.ts fix(security): use icacls /sid for locale-independent Windows ACL audit (#38900) 2026-03-07 12:49:33 -05:00