Ayuriel/openclaw
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
openclaw/src/gateway
History
Robin Waslander ebed3bbde1
fix(gateway): enforce browser origin check regardless of proxy headers 
In trusted-proxy mode, enforceOriginCheckForAnyClient was set to false
whenever proxy headers were present. This allowed browser-originated
WebSocket connections from untrusted origins to bypass origin validation
entirely, as the check only ran for control-ui and webchat client types.

An attacker serving a page from an untrusted origin could connect through
a trusted reverse proxy, inherit proxy-injected identity, and obtain
operator.admin access via the sharedAuthOk / roleCanSkipDeviceIdentity
path without any origin restriction.

Remove the hasProxyHeaders exemption so origin validation runs for all
browser-originated connections regardless of how the request arrived.

Fixes GHSA-5wcw-8jjv-m286
2026-03-12 01:16:52 +01:00
..
protocol
fix: harden subagent control boundaries
2026-03-11 01:44:38 +00:00
server
fix(gateway): enforce browser origin check regardless of proxy headers
2026-03-12 01:16:52 +01:00
server-methods
Gateway/Dashboard: surface config validation issues (#42664)
2026-03-11 17:32:41 -04:00
agent-event-assistant-text.ts
refactor(gateway): dedupe assistant delta parsing
2026-02-15 19:08:47 +00:00
agent-prompt.test.ts
fix: harden queue retry debounce and add regression tests
2026-02-24 03:52:49 +00:00
agent-prompt.ts
fix(gateway): safely extract text from content arrays in prompt builder (#24946)
2026-02-24 03:33:37 +00:00
android-node.capabilities.live.test.ts
fix(android): remove mic and screen foreground services
2026-03-08 16:25:49 +05:30
assistant-identity.test.ts
chore: Enable "experimentalSortImports" in Oxfmt and reformat all imorts.
2026-02-01 10:03:47 +09:00
assistant-identity.ts
refactor(shared): centralize assistant identity and usage timeseries types
2026-03-02 14:36:41 +00:00
auth-config-utils.ts
refactor: unify gateway SecretRef auth resolution paths
2026-03-07 23:27:50 +00:00
auth-install-policy.ts
Gateway: add SecretRef support for gateway.auth.token with auth-mode guardrails (#35094)
2026-03-05 12:53:56 -06:00
auth-mode-policy.test.ts
Secrets: add inline allowlist review set (#38314)
2026-03-06 19:35:26 -05:00
auth-mode-policy.ts
Gateway: add SecretRef support for gateway.auth.token with auth-mode guardrails (#35094)
2026-03-05 12:53:56 -06:00
auth-rate-limit.test.ts
fix(security): normalize hook auth rate-limit client keys
2026-02-22 08:40:49 +01:00
auth-rate-limit.ts
refactor(security): unify hook rate-limit and hook module loading
2026-02-22 08:57:01 +01:00
auth.test.ts
test(regression): cover recent landed fix paths
2026-03-07 23:07:16 +00:00
auth.ts
Gateway Auth: allowlist bootstrap password references
2026-03-07 16:27:00 -08:00
boot.test.ts
follow-up: align ingress, atomic paths, and channel tests with credential semantics (#33733)
2026-03-03 20:29:46 -06:00
boot.ts
fix(gateway): enforce owner boundary for agent runs
2026-03-02 00:27:44 +00:00
call.test.ts
Gateway: fail closed unresolved local auth SecretRefs (#42672)
2026-03-10 21:41:56 -05:00
call.ts
gateway: harden shared auth resolution across systemd, discord, and node host
2026-03-07 18:28:32 -06:00
canvas-capability.ts
fix(gateway): harden canvas auth with session capabilities
2026-02-19 15:51:22 +01:00
channel-health-monitor.test.ts
fix(gateway): stop stale-socket restarts before first event (#38643)
2026-03-07 00:58:08 -06:00
channel-health-monitor.ts
fix(gateway): skip stale-socket restarts for Telegram polling (openclaw#38405)
2026-03-07 00:20:34 -06:00
channel-health-policy.test.ts
fix: restore Telegram webhook-mode health after restarts
2026-03-08 02:27:18 +00:00
channel-health-policy.ts
fix: restore Telegram webhook-mode health after restarts
2026-03-08 02:27:18 +00:00
channel-status-patches.test.ts
fix(gateway): stop stale-socket restarts before first event (#38643)
2026-03-07 00:58:08 -06:00
channel-status-patches.ts
fix(gateway): stop stale-socket restarts before first event (#38643)
2026-03-07 00:58:08 -06:00
chat-abort.test.ts
Gateway tests: cover exact do not do that stop matching
2026-02-24 18:50:53 -05:00
chat-abort.ts
Auto-reply: normalize stop matching and add multilingual triggers (#25103)
2026-02-24 01:07:25 -05:00
chat-attachments.test.ts
test(gateway): extract shared parse warning helper
2026-02-21 23:32:32 +00:00
chat-attachments.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
chat-sanitize.test.ts
fix(chat): preserve sender labels in dashboard history
2026-03-08 09:17:02 +05:30
chat-sanitize.ts
fix(chat): preserve sender labels in dashboard history
2026-03-08 09:17:02 +05:30
client-callsites.guard.test.ts
gateway: harden shared auth resolution across systemd, discord, and node host
2026-03-07 18:28:32 -06:00
client.test.ts
fix(gateway): harden token fallback/reconnect behavior and docs (#42507)
2026-03-10 17:05:57 -05:00
client.ts
fix(gateway): harden token fallback/reconnect behavior and docs (#42507)
2026-03-10 17:05:57 -05:00
client.watchdog.test.ts
CI: restore main detect-secrets scan (#38438)
2026-03-07 10:06:35 -08:00
config-reload-plan.ts
fix(gateway): synthesize lifecycle robustness for restart and startup probes (#33831)
2026-03-03 21:31:12 -06:00
config-reload.test.ts
fix(gateway): synthesize lifecycle robustness for restart and startup probes (#33831)
2026-03-03 21:31:12 -06:00
config-reload.ts
feature(context): extend plugin system to support custom context management (#22201)
2026-03-06 05:31:59 -08:00
connection-auth.test.ts
Gateway: fail closed unresolved local auth SecretRefs (#42672)
2026-03-10 21:41:56 -05:00
connection-auth.ts
gateway: harden shared auth resolution across systemd, discord, and node host
2026-03-07 18:28:32 -06:00
control-plane-audit.ts
fix: harden gateway control-plane restart protections
2026-02-19 14:30:15 +01:00
control-plane-rate-limit.ts
fix(security): harden gateway command/audit guardrails
2026-02-22 08:45:48 +01:00
control-ui-contract.ts
fix(gateway): pass actual version to Control UI client instead of dev (#35230)
2026-03-05 00:01:34 -06:00
control-ui-csp.test.ts
fix(gateway): allow required Google Fonts origins in Control UI CSP (#29279)
2026-02-27 23:58:51 -08:00
control-ui-csp.ts
fix(gateway): allow required Google Fonts origins in Control UI CSP (#29279)
2026-02-27 23:58:51 -08:00
control-ui-http-utils.ts
fix(gateway): let non-GET requests fall through controlUi routing when basePath is set
2026-03-03 00:11:13 +00:00
control-ui-routing.test.ts
fix(gateway): let non-GET requests fall through controlUi routing when basePath is set
2026-03-03 00:11:13 +00:00
control-ui-routing.ts
fix(gateway): keep probe routes reachable with root-mounted control ui (#38199)
2026-03-06 12:13:20 -05:00
control-ui-shared.ts
fix(security): harden avatar validation and size limits
2026-02-22 08:35:32 +01:00
control-ui.auto-root.http.test.ts
gateway: fix global Control UI 404s for symlinked wrappers and bundled package roots (#40385)
2026-03-09 01:50:42 +01:00
control-ui.http.test.ts
gateway: fix global Control UI 404s for symlinked wrappers and bundled package roots (#40385)
2026-03-09 01:50:42 +01:00
control-ui.ts
gateway: fix global Control UI 404s for symlinked wrappers and bundled package roots (#40385)
2026-03-09 01:50:42 +01:00
credential-planner.ts
Gateway: fail closed unresolved local auth SecretRefs (#42672)
2026-03-10 21:41:56 -05:00
credential-precedence.parity.test.ts
Gateway Credentials: allowlist precedence fixtures
2026-03-07 16:27:00 -08:00
credentials.test.ts
Gateway: fail closed unresolved local auth SecretRefs (#42672)
2026-03-10 21:41:56 -05:00
credentials.ts
refactor: unify gateway credential planning
2026-03-11 01:37:25 +00:00
device-auth.test.ts
refactor(gateway): unify v3 auth payload builders and vectors
2026-02-26 15:08:50 +01:00
device-auth.ts
refactor(gateway): unify metadata canonicalization + platform rules
2026-03-02 00:26:36 +00:00
device-metadata-normalization.ts
refactor(gateway): unify metadata canonicalization + platform rules
2026-03-02 00:26:36 +00:00
events.ts
refactor: unify restart gating and update availability sync
2026-02-19 10:00:41 +01:00
exec-approval-manager.ts
Telegram: exec approvals for OpenCode/Codex (#37233)
2026-03-09 23:04:35 -04:00
gateway-cli-backend.live.test.ts
fix: code/cli acpx reliability 20260304 (#34020)
2026-03-04 01:15:28 -05:00
gateway-config-prompts.shared.ts
refactor(gateway): dedupe origin seeding and plugin route auth matching
2026-03-02 00:42:22 +00:00
gateway-connection.test-mocks.ts
fix(gateway): annotate connection test mocks
2026-02-23 11:47:27 +05:30
gateway-misc.test.ts
fix(gateway): harden node metadata policy classification
2026-03-02 00:15:34 +00:00
gateway-models.profiles.live.test.ts
refactor(core): extract shared dedup helpers
2026-03-07 10:41:05 +00:00
gateway.test.ts
test: speed up heavy suites with shared fixtures
2026-03-02 21:58:35 +00:00
hooks-mapping.test.ts
test: dedupe gateway browser discord and channel coverage
2026-02-22 17:11:54 +00:00
hooks-mapping.ts
fix(security): block hook transform symlink escapes
2026-02-22 10:18:05 +01:00
hooks-test-helpers.ts
refactor(test): extract shared gateway hook and vitest scoped config helpers
2026-03-02 14:36:41 +00:00
hooks.test.ts
fix(core): unify session-key normalization and plugin boundary checks
2026-02-26 12:41:23 +00:00
hooks.ts
fix(core): unify session-key normalization and plugin boundary checks
2026-02-26 12:41:23 +00:00
http-auth-helpers.test.ts
refactor(test): dedupe gateway and web scaffolding
2026-02-22 20:04:51 +00:00
http-auth-helpers.ts
refactor(gateway): harden proxy client ip resolution
2026-02-21 13:36:23 +01:00
http-common.test.ts
feat(gateway): add Permissions-Policy header to default security headers (#30186)
2026-03-03 16:25:39 -08:00
http-common.ts
feat(gateway): add Permissions-Policy header to default security headers (#30186)
2026-03-03 16:25:39 -08:00
http-endpoint-helpers.test.ts
refactor(gateway): dedupe json endpoint prelude
2026-02-15 13:24:37 +00:00
http-endpoint-helpers.ts
refactor(gateway): harden proxy client ip resolution
2026-02-21 13:36:23 +01:00
http-utils.request-context.test.ts
refactor: extract shared sandbox and gateway plumbing
2026-03-02 23:16:47 +00:00
http-utils.ts
refactor: extract shared sandbox and gateway plumbing
2026-03-02 23:16:47 +00:00
input-allowlist.ts
refactor(gateway): share input allowlist normalizer
2026-03-07 17:05:23 +00:00
live-image-probe.ts
refactor: consolidate PNG encoder and safeParseJson utilities (#12457)
2026-02-09 00:21:54 -08:00
live-tool-probe-utils.test.ts
refactor(core): extract shared dedup helpers
2026-03-07 10:41:05 +00:00
live-tool-probe-utils.ts
refactor(core): extract shared dedup helpers
2026-03-07 10:41:05 +00:00
method-scopes.test.ts
Gateway: add pending node work primitives (#41409)
2026-03-09 21:42:57 +01:00
method-scopes.ts
Gateway: add pending node work primitives (#41409)
2026-03-09 21:42:57 +01:00
net.test.ts
fix(gateway): land #39064 from @Narcooo
2026-03-07 18:52:42 +00:00
net.ts
fix(gateway): land #39064 from @Narcooo
2026-03-07 18:52:42 +00:00
node-command-policy.ts
refactor(gateway): unify metadata canonicalization + platform rules
2026-03-02 00:26:36 +00:00
node-invoke-sanitize.ts
fix(gateway): bind node exec approvals to nodeId
2026-02-24 03:05:58 +00:00
node-invoke-system-run-approval-errors.ts
refactor(gateway): centralize system.run approval context and errors
2026-02-26 22:01:16 +01:00
node-invoke-system-run-approval-match.test.ts
refactor(gateway): dedupe auth and discord monitor suites
2026-03-02 21:31:36 +00:00
node-invoke-system-run-approval-match.ts
refactor!: remove versioned system-run approval contract
2026-03-02 01:12:53 +00:00
node-invoke-system-run-approval.test.ts
refactor(security): simplify system.run approval model
2026-03-11 01:43:06 +00:00
node-invoke-system-run-approval.ts
refactor(security): simplify system.run approval model
2026-03-11 01:43:06 +00:00
node-pending-work.test.ts
Gateway: tighten node pending drain semantics (#41429)
2026-03-09 21:56:00 +01:00
node-pending-work.ts
Gateway: tighten node pending drain semantics (#41429)
2026-03-09 21:56:00 +01:00
node-registry.ts
chore: Enable "experimentalSortImports" in Oxfmt and reformat all imorts.
2026-02-01 10:03:47 +09:00
open-responses.schema.ts
Gateway: normalize HEIC input_image sources (#38122)
2026-03-06 11:19:36 -05:00
openai-http.image-budget.test.ts
Gateway: follow up HEIC input image handling (#38146)
2026-03-06 11:53:59 -05:00
openai-http.message-channel.test.ts
refactor(core): extract shared dedup helpers
2026-03-07 10:41:05 +00:00
openai-http.test.ts
refactor(gateway): dedupe invalid image request assertions
2026-03-07 17:58:31 +00:00
openai-http.ts
refactor(gateway): share input allowlist normalizer
2026-03-07 17:05:23 +00:00
openresponses-http.test.ts
refactor(tests): dedupe openresponses http fixtures
2026-03-03 02:53:13 +00:00
openresponses-http.ts
refactor(gateway): share input allowlist normalizer
2026-03-07 17:05:23 +00:00
openresponses-parity.test.ts
Gateway: normalize HEIC input_image sources (#38122)
2026-03-06 11:19:36 -05:00
openresponses-prompt.ts
test: optimize redundant suites for faster runtime
2026-02-23 13:57:34 +00:00
operator-approvals-client.ts
refactor: share approval gateway client setup
2026-03-10 22:18:04 +00:00
origin-check.test.ts
fix(gateway): require local client for loopback origin fallback
2026-03-02 16:37:45 +00:00
origin-check.ts
fix(gateway): require local client for loopback origin fallback
2026-03-02 16:37:45 +00:00
probe-auth.test.ts
fix: fail closed for unresolved local gateway auth refs
2026-03-11 01:14:06 +00:00
probe-auth.ts
refactor: unify gateway credential planning
2026-03-11 01:37:25 +00:00
probe.test.ts
Gateway: align pairing scope checks for read access
2026-02-20 05:12:05 +00:00
probe.ts
Gateway: align pairing scope checks for read access
2026-02-20 05:12:05 +00:00
reconnect-gating.test.ts
fix(gateway): harden token fallback/reconnect behavior and docs (#42507)
2026-03-10 17:05:57 -05:00
resolve-configured-secret-input-string.test.ts
refactor: unify gateway SecretRef auth resolution paths
2026-03-07 23:27:50 +00:00
resolve-configured-secret-input-string.ts
Gateway Secrets: allowlist unresolved secret ref label
2026-03-07 16:27:00 -08:00
role-policy.test.ts
Gateway: add pending node work primitives (#41409)
2026-03-09 21:42:57 +01:00
role-policy.ts
refactor(gateway): extract connect and role policy logic
2026-02-21 19:47:22 +01:00
security-path.test.ts
fix(gateway): fail closed plugin auth path canonicalization
2026-03-02 15:55:32 +00:00
security-path.ts
fix(gateway): fail closed plugin auth path canonicalization
2026-03-02 15:55:32 +00:00
server-broadcast.ts
style: align formatting with oxfmt 0.33
2026-02-18 01:34:35 +00:00
server-browser.ts
fix(gateway): start browser HTTP control server module
2026-02-24 04:06:03 +00:00
server-channels.test.ts
fix: add channelRuntime regression coverage (#25462) (thanks @guxiaobo)
2026-03-03 01:34:50 +00:00
server-channels.ts
feat(gateway): add channel-backed readiness probes (#38285)
2026-03-06 15:15:23 -05:00
server-chat.agent-events.test.ts
fix(gateway): flush chat delta before tool-start events (#39128)
2026-03-07 19:46:04 +00:00
server-chat.ts
fix(gateway): flush chat delta before tool-start events (#39128)
2026-03-07 19:46:04 +00:00
server-close.ts
fix(media): retain inbound media with recursive cleanup TTL (#38292)
2026-03-06 22:06:09 -05:00
server-constants.ts
fix(canvas): port remaining iOS branch stability fixes (#18228)
2026-02-16 16:42:28 +00:00
server-cron.test.ts
Cron: preserve session scope for main-target reminders
2026-02-28 14:53:19 -08:00
server-cron.ts
feat(secrets): expand SecretRef coverage across user-supplied credentials (#29580)
2026-03-03 02:58:20 +00:00
server-discovery-runtime.ts
refactor: rename to openclaw
2026-01-30 03:16:21 +01:00
server-discovery.test.ts
test(core): continue mock reset reductions in auth, gateway, npm install
2026-02-22 08:28:50 +00:00
server-discovery.ts
chore: Enable "curly" rule to avoid single-statement if confusion/errors.
2026-01-31 16:19:20 +09:00
server-http.hooks-request-timeout.test.ts
refactor(test): extract shared gateway hook and vitest scoped config helpers
2026-03-02 14:36:41 +00:00
server-http.probe.test.ts
feat(gateway): add channel-backed readiness probes (#38285)
2026-03-06 15:15:23 -05:00
server-http.test-harness.ts
feat(gateway): add channel-backed readiness probes (#38285)
2026-03-06 15:15:23 -05:00
server-http.ts
fix(gateway): harden plugin HTTP route auth
2026-03-07 19:55:06 +00:00
server-lanes.ts
style: align formatting with oxfmt 0.33
2026-02-18 01:34:35 +00:00
server-maintenance.test.ts
refactor(gateway): dedupe maintenance timer test setup
2026-03-07 17:58:31 +00:00
server-maintenance.ts
fix(media): retain inbound media with recursive cleanup TTL (#38292)
2026-03-06 22:06:09 -05:00
server-methods-list.ts
Gateway: add pending node work primitives (#41409)
2026-03-09 21:42:57 +01:00
server-methods.control-plane-rate-limit.test.ts
refactor(test): dedupe gateway and web scaffolding
2026-02-22 20:04:51 +00:00
server-methods.ts
fix(gateway): propagate real gateway client into plugin subagent runtime
2026-03-11 14:17:01 +01:00
server-mobile-nodes.ts
chore: Enable "curly" rule to avoid single-statement if confusion/errors.
2026-01-31 16:19:20 +09:00
server-model-catalog.ts
refactor(gateway): split server runtime
2026-01-14 09:11:21 +00:00
server-node-events-types.ts
refactor: remove bridge protocol
2026-01-19 10:08:29 +00:00
server-node-events.test.ts
Telegram: exec approvals for OpenCode/Codex (#37233)
2026-03-09 23:04:35 -04:00
server-node-events.ts
Telegram: exec approvals for OpenCode/Codex (#37233)
2026-03-09 23:04:35 -04:00
server-node-subscriptions.ts
chore: Enable "curly" rule to avoid single-statement if confusion/errors.
2026-01-31 16:19:20 +09:00
server-plugins.test.ts
feature(context): extend plugin system to support custom context management (#22201)
2026-03-06 05:31:59 -08:00
server-plugins.ts
fix(gateway): propagate real gateway client into plugin subagent runtime
2026-03-11 14:17:01 +01:00
server-reload-handlers.ts
fix: align gateway and zalouser typing imports
2026-03-02 22:29:18 +00:00
server-restart-deferral.test.ts
perf(test): cut gateway unit suite overhead
2026-02-16 00:18:26 +00:00
server-restart-sentinel.test.ts
refactor: unify outbound session context wiring
2026-02-26 21:03:28 +01:00
server-restart-sentinel.ts
refactor: unify outbound session context wiring
2026-02-26 21:03:28 +01:00
server-runtime-config.test.ts
feat(gateway)!: require explicit non-loopback control-ui origins
2026-02-24 01:57:11 +00:00
server-runtime-config.ts
fix(gateway): explain provider-object password bootstrap errors (#39230, thanks @ademczuk)
2026-03-07 22:44:44 +00:00
server-runtime-state.ts
feat(gateway): add channel-backed readiness probes (#38285)
2026-03-06 15:15:23 -05:00
server-session-key.ts
chore: Enable "curly" rule to avoid single-statement if confusion/errors.
2026-01-31 16:19:20 +09:00
server-shared.ts
refactor(gateway): split server helpers
2026-01-03 19:37:09 +01:00
server-startup-log.test.ts
fix(gateway): unify listen startup log across bind hosts
2026-02-22 13:17:25 +01:00
server-startup-log.ts
fix(gateway): unify listen startup log across bind hosts
2026-02-22 13:17:25 +01:00
server-startup-memory.test.ts
refactor: deduplicate shared helpers and test setup
2026-02-23 20:40:44 +00:00
server-startup-memory.ts
Memory/QMD: harden multi-collection search and embed scheduling
2026-02-20 19:41:51 -08:00
server-startup.ts
feat: ACP thread-bound agents (#23580)
2026-02-26 11:00:09 +01:00
server-tailscale.ts
chore: migrate to oxlint and oxfmt
2026-01-14 15:02:19 +00:00
server-utils.ts
chore: Enable "curly" rule to avoid single-statement if confusion/errors.
2026-01-31 16:19:20 +09:00
server-wizard-sessions.ts
chore: Enable "curly" rule to avoid single-statement if confusion/errors.
2026-01-31 16:19:20 +09:00
server-ws-runtime.ts
refactor(shared): dedupe protocol schema typing and session/media helpers
2026-03-02 19:57:33 +00:00
server.agent.gateway-server-agent-a.test.ts
test(gateway): speed up slow e2e test setup
2026-02-24 00:59:52 +00:00
server.agent.gateway-server-agent-b.test.ts
fix(gateway): split conversation reset from admin reset
2026-03-11 02:50:44 +00:00
server.agent.gateway-server-agent.mocks.ts
feature(context): extend plugin system to support custom context management (#22201)
2026-03-06 05:31:59 -08:00
server.auth.browser-hardening.test.ts
fix(gateway): enforce browser origin check regardless of proxy headers
2026-03-12 01:16:52 +01:00
server.auth.compat-baseline.test.ts
fix(gateway): harden token fallback/reconnect behavior and docs (#42507)
2026-03-10 17:05:57 -05:00
server.auth.control-ui.suite.ts
fix(gateway): harden token fallback/reconnect behavior and docs (#42507)
2026-03-10 17:05:57 -05:00
server.auth.control-ui.test.ts
refactor(security): split gateway auth suites and share safe write path checks
2026-03-02 18:07:03 +00:00
server.auth.default-token.suite.ts
fix: resolve live config paths in status and gateway metadata (#39952)
2026-03-08 09:59:32 -05:00
server.auth.default-token.test.ts
refactor(security): split gateway auth suites and share safe write path checks
2026-03-02 18:07:03 +00:00
server.auth.modes.suite.ts
Secrets: add inline allowlist review set (#38314)
2026-03-06 19:35:26 -05:00
server.auth.modes.test.ts
refactor(security): split gateway auth suites and share safe write path checks
2026-03-02 18:07:03 +00:00
server.auth.shared.ts
refactor: dedupe gateway config and infra flows
2026-03-03 00:15:14 +00:00
server.canvas-auth.test.ts
refactor(test): dedupe gateway and web scaffolding
2026-02-22 20:04:51 +00:00
server.channels.test.ts
refactor(test): dedupe gateway and web scaffolding
2026-02-22 20:04:51 +00:00
server.chat.gateway-server-chat-b.test.ts
Revert "feat(ui): add chat infrastructure modules (slice 1 of dashboard-v2)"
2026-03-09 18:47:44 -05:00
server.chat.gateway-server-chat.test.ts
refactor(gateway): dedupe blocked chat reply mock setup
2026-03-07 17:58:31 +00:00
server.config-apply.test.ts
test: reclassify gateway local suites from e2e
2026-02-22 11:48:46 +00:00
server.config-patch.test.ts
Gateway/Dashboard: surface config validation issues (#42664)
2026-03-11 17:32:41 -04:00
server.control-ui-root.test.ts
gateway: fix global Control UI 404s for symlinked wrappers and bundled package roots (#40385)
2026-03-09 01:50:42 +01:00
server.cron.test.ts
Cron: enforce cron-owned delivery contract (#40998)
2026-03-09 20:12:37 +01:00
server.device-token-rotate-authz.test.ts
fix(gateway): enforce caller-scope subsetting in device.token.rotate
2026-03-11 14:16:59 +01:00
server.e2e-registry-helpers.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
server.e2e-ws-harness.ts
test: reclassify gateway local suites from e2e
2026-02-22 11:48:46 +00:00
server.health.test.ts
test(gateway): speed up slow e2e test setup
2026-02-24 00:59:52 +00:00
server.hooks.test.ts
Cron: enforce cron-owned delivery contract (#40998)
2026-03-09 20:12:37 +01:00
server.impl.ts
gateway: fix global Control UI 404s for symlinked wrappers and bundled package roots (#40385)
2026-03-09 01:50:42 +01:00
server.ios-client-id.test.ts
test(gateway): speed up contract and polling suites
2026-02-24 00:31:58 +00:00
server.legacy-migration.test.ts
refactor(gateway): dedupe legacy migration validation assertions
2026-03-07 17:58:31 +00:00
server.models-voicewake-misc.test.ts
refactor(gateway): dedupe auth and discord monitor suites
2026-03-02 21:31:36 +00:00
server.node-invoke-approval-bypass.test.ts
refactor!: remove versioned system-run approval contract
2026-03-02 01:12:53 +00:00
server.plugin-http-auth.test.ts
refactor(gateway): dedupe probe route assertion loops
2026-03-07 17:58:31 +00:00
server.reload.test.ts
Secrets: reject exec SecretRef traversal ids across schema/runtime/gateway (#42370)
2026-03-10 13:45:37 -05:00
server.roles-allowlist-update.test.ts
refactor(gateway): unify metadata canonicalization + platform rules
2026-03-02 00:26:36 +00:00
server.sessions-send.test.ts
test(gateway): move sessions_send error paths to unit tests
2026-02-24 01:16:53 +00:00
server.sessions.gateway-server-sessions-a.test.ts
Fix stale runtime model reuse on session reset (#41173)
2026-03-10 14:02:43 -07:00
server.skills-status.test.ts
CI: restore main detect-secrets scan (#38438)
2026-03-07 10:06:35 -08:00
server.talk-config.test.ts
fix(gateway): propagate real gateway client into plugin subagent runtime
2026-03-11 14:17:01 +01:00
server.tools-catalog.test.ts
Gateway/UI: data-driven agents tools catalog with provenance (openclaw#24199) thanks @Takhoffman
2026-02-22 23:55:59 -06:00
server.ts
chore: migrate to oxlint and oxfmt
2026-01-14 15:02:19 +00:00
session-preview.test-helpers.ts
refactor(gateway-test): share preview transcript fixture
2026-02-18 17:01:22 +00:00
session-reset-service.ts
fix(gateway): split conversation reset from admin reset
2026-03-11 02:50:44 +00:00
session-utils.fs.test.ts
test(gateway): dedupe transcript seed fixtures in fs session tests
2026-02-22 07:44:57 +00:00
session-utils.fs.ts
refactor(core): share JSON utf8 byte counting helper
2026-03-02 05:20:19 +00:00
session-utils.test.ts
fix(gateway): include disk-scanned agent IDs in listConfiguredAgentIds (#32831)
2026-03-03 21:19:18 +00:00
session-utils.ts
fix(gateway): include disk-scanned agent IDs in listConfiguredAgentIds (#32831)
2026-03-03 21:19:18 +00:00
session-utils.types.ts
refactor(shared): dedupe protocol schema typing and session/media helpers
2026-03-02 19:57:33 +00:00
sessions-patch.test.ts
Allow ACP sessions.patch lineage fields on ACP session keys (#40995)
2026-03-09 17:08:11 +01:00
sessions-patch.ts
fix: harden subagent control boundaries
2026-03-11 01:44:38 +00:00
sessions-resolve.ts
fix(gateway): normalize session key casing to prevent ghost sessions (#12846)
2026-02-13 20:42:24 +01:00
startup-auth.test.ts
CI: restore main detect-secrets scan (#38438)
2026-03-07 10:06:35 -08:00
startup-auth.ts
refactor: unify gateway SecretRef auth resolution paths
2026-03-07 23:27:50 +00:00
startup-control-ui-origins.ts
refactor(gateway): dedupe origin seeding and plugin route auth matching
2026-03-02 00:42:22 +00:00
system-run-approval-binding.contract.test.ts
refactor!: remove versioned system-run approval contract
2026-03-02 01:12:53 +00:00
system-run-approval-binding.test.ts
refactor!: remove versioned system-run approval contract
2026-03-02 01:12:53 +00:00
test-helpers.agent-results.ts
test(gateway): dedupe agent payload and stream fixtures
2026-02-19 09:22:16 +00:00
test-helpers.e2e.ts
fix(gateway): pin paired reconnect metadata for node policy
2026-02-26 14:11:04 +01:00
test-helpers.mocks.ts
follow-up: align ingress, atomic paths, and channel tests with credential semantics (#33733)
2026-03-03 20:29:46 -06:00
test-helpers.openai-mock.ts
test(gateway): reuse shared openai timeout e2e helpers
2026-02-22 07:44:57 +00:00
test-helpers.server.ts
refactor(core): extract shared dedup helpers
2026-03-07 10:41:05 +00:00
test-helpers.ts
refactor(src): split oversized modules
2026-01-14 01:17:56 +00:00
test-http-response.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
test-openai-responses-model.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
test-temp-config.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
test-with-server.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
tools-invoke-http.cron-regression.test.ts
test(gateway): dedupe gateway and infra test scaffolds
2026-03-02 07:13:10 +00:00
tools-invoke-http.test.ts
test(gateway): widen before tool hook mock typing (#43476)
2026-03-12 00:17:03 +03:00
tools-invoke-http.ts
fix(gateway): run before_tool_call for HTTP tools
2026-03-11 20:18:24 +00:00
ws-log.test.ts
fix: add agent context to ws logs
2026-01-17 20:37:36 +00:00
ws-log.ts
refactor(channels): dedupe transport and gateway test scaffolds
2026-02-16 14:59:31 +00:00
ws-logging.ts