Peter Steinberger
|
ffd63b7a2c
|
fix(security): trust resolved skill-bin paths in allowlist auto-allow
|
2026-02-24 03:12:43 +00:00 |
|
Peter Steinberger
|
a67689a7e3
|
fix: harden allow-always shell multiplexer wrapper handling
|
2026-02-24 03:06:51 +00:00 |
|
Peter Steinberger
|
9530c01085
|
refactor(exec): split safe-bin policy modules and dedupe allowlist flow
|
2026-02-24 03:05:03 +00:00 |
|
Peter Steinberger
|
90383e00e9
|
fix(security): harden autoAllowSkills exec matching
|
2026-02-24 02:53:47 +00:00 |
|
Peter Steinberger
|
a1c4bf07c6
|
fix(security): harden exec wrapper allowlist execution parity
|
2026-02-24 01:52:17 +00:00 |
|
Peter Steinberger
|
cd919ebd2d
|
refactor(exec): unify wrapper resolution and split approvals tests
|
2026-02-22 23:20:09 +01:00 |
|
Peter Steinberger
|
24c954d972
|
fix(security): harden allow-always wrapper persistence
|
2026-02-22 22:55:33 +01:00 |
|
Peter Steinberger
|
3f0b9dbb36
|
fix(security): block shell-wrapper line-continuation allowlist bypass
|
2026-02-22 22:36:29 +01:00 |
|
Peter Steinberger
|
47c3f742b6
|
fix(exec): require explicit safe-bin profiles
|
2026-02-22 12:58:55 +01:00 |
|
Vignesh Natarajan
|
98b2b16ac3
|
Security/Exec: persist inner commands for shell-wrapper approvals
|
2026-02-21 21:26:20 -08:00 |
|
Vignesh
|
3317b49d3b
|
feat(memory): allow QMD searches via mcporter keep-alive (openclaw#19617) thanks @vignesh07
Verified:
- pnpm build
- pnpm check
- pnpm test:macmini
Co-authored-by: vignesh07 <1436853+vignesh07@users.noreply.github.com>
Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com>
|
2026-02-21 18:54:33 -06:00 |
|
Peter Steinberger
|
a688ccf24a
|
refactor(security): unify safe-bin argv parsing and harden regressions
|
2026-02-19 16:04:58 +01:00 |
|
Peter Steinberger
|
a40c10d3e2
|
fix: harden agent gateway authorization scopes
|
2026-02-19 14:37:56 +01:00 |
|
Peter Steinberger
|
165c18819e
|
refactor(security): simplify safe-bin validation structure
|
2026-02-19 14:33:58 +01:00 |
|
Peter Steinberger
|
268b0dc921
|
style: fix formatting drift in security allowlist checks
|
2026-02-19 13:31:01 +00:00 |
|
Peter Steinberger
|
2d485cd47a
|
refactor(security): extract safe-bin policy and dedupe tests
|
2026-02-19 14:28:03 +01:00 |
|
Peter Steinberger
|
0e85380e56
|
style: format files and fix safe-bins e2e typing
|
2026-02-19 14:26:12 +01:00 |
|
Peter Steinberger
|
fec48a5006
|
refactor(exec): split host flows and harden safe-bin trust
|
2026-02-19 14:22:01 +01:00 |
|
Peter Steinberger
|
bafdbb6f11
|
fix(security): eliminate safeBins file-existence oracle
|
2026-02-19 14:18:11 +01:00 |
|
Peter Steinberger
|
cfe8457a0f
|
fix(security): harden safeBins stdin-only enforcement
|
2026-02-19 14:10:45 +01:00 |
|
Gustavo Madeira Santana
|
4d3403b7ac
|
chore: fix CI errors
|
2026-02-17 23:46:40 -05:00 |
|
Peter Steinberger
|
ac0db68235
|
refactor(security): extract safeBins trust resolver
|
2026-02-18 05:01:31 +01:00 |
|
Peter Steinberger
|
28bac46c92
|
fix(security): harden safeBins path trust
|
2026-02-18 04:55:31 +01:00 |
|
Peter Steinberger
|
b8b43175c5
|
style: align formatting with oxfmt 0.33
|
2026-02-18 01:34:35 +00:00 |
|
Peter Steinberger
|
31f9be126c
|
style: run oxfmt and fix gate failures
|
2026-02-18 01:29:02 +00:00 |
|
cpojer
|
d0cb8c19b2
|
chore: wtf.
|
2026-02-17 13:36:48 +09:00 |
|
Sebastian
|
ed11e93cf2
|
chore(format)
|
2026-02-16 23:20:16 -05:00 |
|
cpojer
|
90ef2d6bdf
|
chore: Update formatting.
|
2026-02-17 09:18:40 +09:00 |
|
Peter Steinberger
|
e7f65b4aac
|
refactor(infra): dedupe exec allowlist analysis failure
|
2026-02-15 16:05:49 +00:00 |
|
Peter Steinberger
|
24d2c6292e
|
refactor(security): refine safeBins hardening
|
2026-02-14 19:59:13 +01:00 |
|
Peter Steinberger
|
83bc73f4ea
|
refactor(exec-approvals): split allowlist evaluation module
|
2026-02-13 19:08:37 +00:00 |
|