admin/Moltbot
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

fix(sandbox): harden fs bridge path checks and bind mount policy

Browse Source
This commit is contained in:
Peter Steinberger
2026-02-24 02:21:33 +00:00
parent dd9d9c1c60
commit c070be1bc4
11 changed files with 496 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/security/audit-extra.sync.ts
View File

@@ -681,6 +681,9 @@ export function collectSandboxDangerousConfigFindings(cfg: OpenClawConfig): Secu
});
continue;
}
if (blocked.kind !== "covers" && blocked.kind !== "targets") {
continue;
}
const verb = blocked.kind === "covers" ? "covers" : "targets";
findings.push({
checkId: "sandbox.dangerous_bind_mount",