vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-04 22:30:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(exec): restore strict inline-eval allow-always reuse

Browse Source
This commit is contained in:
Peter Steinberger
2026-03-31 23:44:48 +09:00
parent 5aac609e08
commit 5e30da3cad
7 changed files with 128 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/node-host/invoke-system-run.ts
View File

@@ -96,6 +96,7 @@ type SystemRunPolicyPhase = SystemRunParsePhase & {
approvals: ResolvedExecApprovals;
security: ExecSecurity;
policy: ReturnType<typeof evaluateSystemRunPolicy>;
strictInlineEval: boolean;
inlineEvalHit: ReturnType<typeof detectInterpreterInlineEvalArgv>;
allowlistMatches: ExecAllowlistEntry[];
analysisOk: boolean;
@@ -439,6 +440,7 @@ async function evaluateSystemRunPolicyPhase(
approvals,
security,
policy,
strictInlineEval,
inlineEvalHit,
allowlistMatches,
analysisOk,
@@ -555,6 +557,7 @@ async function executeSystemRunPhase(
cwd: phase.cwd,
env: phase.env,
platform: process.platform,
strictInlineEval: phase.strictInlineEval,
});
for (const pattern of patterns) {
if (pattern) {