Moltbot

Author	SHA1	Message	Date
Peter Steinberger	efca61e3ac	test: share cron tool mock harness	2026-02-19 14:27:37 +00:00
Peter Steinberger	eb9861b20a	test: share memory manager bootstrap helper	2026-02-19 14:27:37 +00:00
Peter Steinberger	2581b67cdb	refactor: share exec approval request helper	2026-02-19 14:27:37 +00:00
Peter Steinberger	3179097a1f	refactor: dedupe redact snapshot restore prelude	2026-02-19 14:27:37 +00:00
Peter Steinberger	ffd4e85873	refactor: share allow-from merge and sender-id checks	2026-02-19 14:27:37 +00:00
Peter Steinberger	ba538c98c7	refactor: share plain object guard across config and utils	2026-02-19 14:27:36 +00:00
Peter Steinberger	397f243ded	refactor: dedupe gateway session guards and agent test fixtures	2026-02-19 14:27:36 +00:00
Peter Steinberger	a99fd8f2dd	refactor: reuse daemon action response type in lifecycle core	2026-02-19 14:27:36 +00:00
Peter Steinberger	672b1c5084	refactor: dedupe slack monitor mrkdwn and modal event base	2026-02-19 14:27:36 +00:00
Peter Steinberger	cb6b835a49	test: dedupe heartbeat and action-runner fixtures	2026-02-19 14:27:36 +00:00
Peter Steinberger	26c9b37f5b	fix(security): enforce strict IPv4 SSRF literal handling	2026-02-19 15:24:47 +01:00
Peter Steinberger	77c748304b	refactor(plugins): extract safety and provenance helpers	2026-02-19 15:24:14 +01:00
Peter Steinberger	775816035e	fix(security): enforce trusted sender auth for discord moderation	2026-02-19 15:18:24 +01:00
Peter Steinberger	baa335f258	fix(security): harden SSRF IPv4 literal parsing	2026-02-19 15:14:46 +01:00
Peter Steinberger	3561442a9f	fix(plugins): harden discovery trust checks	2026-02-19 15:14:12 +01:00
Peter Steinberger	5dc50b8a3f	fix(security): harden npm plugin and hook install integrity flow	2026-02-19 15:11:25 +01:00
Peter Steinberger	2777d8ad93	refactor(security): unify gateway scope authorization flows	2026-02-19 15:06:38 +01:00
Peter Steinberger	f8b61bb4ed	refactor(acp): split session tests and share rate limiter	2026-02-19 14:55:06 +01:00
Peter Steinberger	19348050be	style: normalize acp translator import ordering	2026-02-19 13:54:40 +00:00
Peter Steinberger	7a89049d1d	refactor: dedupe pending pairing request flow and add reuse tests	2026-02-19 13:54:35 +00:00
Peter Steinberger	d900d5efbd	style: normalize ws message handler import ordering	2026-02-19 13:51:53 +00:00
Peter Steinberger	79ab4927c1	test: dedupe extracted-size budget assertions in archive tests	2026-02-19 13:51:53 +00:00
Peter Steinberger	e01011e3e4	fix(acp): harden session lifecycle against flooding	2026-02-19 14:50:17 +01:00
Peter Steinberger	4ddc4dfd76	test: dedupe fetch cleanup-throw signal harness	2026-02-19 13:50:07 +00:00
Peter Steinberger	0bda0202fd	fix(security): require explicit approval for device access upgrades	2026-02-19 14:49:09 +01:00
Peter Steinberger	182ffdf557	test: dedupe zai env test setup and cover blank legacy key	2026-02-19 13:48:21 +00:00
Peter Steinberger	177654f526	refactor: dedupe APNs push send flow and add wake default test	2026-02-19 13:45:34 +00:00
Peter Steinberger	722a898f20	refactor: dedupe openclaw root traversal and add coverage	2026-02-19 13:43:31 +00:00
Peter Steinberger	758ea3c5a1	style: apply oxfmt import ordering for check	2026-02-19 14:38:55 +01:00
Peter Steinberger	08a7967936	fix(security): fail closed on gateway bind fallback and tighten canvas IP fallback	2026-02-19 14:38:55 +01:00
Peter Steinberger	a40c10d3e2	fix: harden agent gateway authorization scopes	2026-02-19 14:37:56 +01:00
Peter Steinberger	165c18819e	refactor(security): simplify safe-bin validation structure	2026-02-19 14:33:58 +01:00
Peter Steinberger	74c51aeb1e	style: format gateway server methods	2026-02-19 13:32:58 +00:00
Peter Steinberger	268b0dc921	style: fix formatting drift in security allowlist checks	2026-02-19 13:31:01 +00:00
Peter Steinberger	ff74d89e86	fix: harden gateway control-plane restart protections	2026-02-19 14:30:15 +01:00
Peter Steinberger	14b4c7fd56	refactor: dedupe provider usage auth/fetch logic and expand coverage	2026-02-19 13:28:18 +00:00
Peter Steinberger	2d485cd47a	refactor(security): extract safe-bin policy and dedupe tests	2026-02-19 14:28:03 +01:00
Peter Steinberger	0e85380e56	style: format files and fix safe-bins e2e typing	2026-02-19 14:26:12 +01:00
Peter Steinberger	e3e0ffd801	feat(security): audit gateway HTTP no-auth exposure	2026-02-19 14:25:56 +01:00
Peter Steinberger	fec48a5006	refactor(exec): split host flows and harden safe-bin trust	2026-02-19 14:22:01 +01:00
Thorfinn	b45bb6801c	fix(doctor): skip embedding provider check when QMD backend is active (openclaw#17295) thanks @miloudbelarebia Verified: - pnpm build - pnpm check (fails on baseline formatting drift in files identical to origin/main) - pnpm test:macmini Co-authored-by: miloudbelarebia <52387093+miloudbelarebia@users.noreply.github.com> Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com>	2026-02-19 07:21:27 -06:00
Peter Steinberger	bafdbb6f11	fix(security): eliminate safeBins file-existence oracle	2026-02-19 14:18:11 +01:00
Peter Steinberger	1316e57403	fix: enforce inbound attachment root policy across pipelines	2026-02-19 14:15:51 +01:00
Peter Steinberger	cfe8457a0f	fix(security): harden safeBins stdin-only enforcement	2026-02-19 14:10:45 +01:00
Peter Steinberger	3c127b6eac	test: dedupe provider usage tests and expand coverage	2026-02-19 13:08:01 +00:00
Peter Steinberger	ec232a9e2d	refactor(security): harden temp-path handling for inbound media	2026-02-19 14:06:37 +01:00
Peter Steinberger	9f9cd5cbb2	refactor(browser): unify navigation guard path and error typing	2026-02-19 14:04:18 +01:00
Peter Steinberger	badafdc7b3	refactor: dedupe provider usage fetch logic and tests	2026-02-19 12:51:30 +00:00
Peter Steinberger	6195660b1a	fix(browser): unify SSRF guard path for navigation	2026-02-19 13:44:01 +01:00
David Rudduck	e0aaf2d399	fix(security): block prototype-polluting keys in deepMerge (#20853 ) Reject __proto__, prototype, and constructor keys during deep-merge to prevent prototype pollution when merging untrusted config objects.	2026-02-19 03:47:48 -08:00

1 2 3 4 5 ...

7793 Commits