vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-03 19:20:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs: clarify node exec approval plan forwarding

Browse Source
This commit is contained in:
Peter Steinberger
2026-04-04 12:17:55 +01:00
parent 605f48556b
commit 9ddfaff45f
4 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docs/nodes/index.md
View File

@@ -334,6 +334,9 @@ Notes:
- `system.run` returns stdout/stderr/exit code in the payload.
- Shell execution now goes through the `exec` tool with `host=node`; `nodes` remains the direct-RPC surface for explicit node commands.
- `nodes invoke` does not expose `system.run` or `system.run.prepare`; those stay on the exec path only.
- The exec path prepares a canonical `systemRunPlan` before approval. Once an
approval is granted, the gateway forwards that stored plan, not any later
caller-edited command/cwd/session fields.
- `system.notify` respects notification permission state on the macOS app.
- Unrecognized node `platform` / `deviceFamily` metadata uses a conservative default allowlist that excludes `system.run` and `system.which`. If you intentionally need those commands for an unknown platform, add them explicitly via `gateway.nodes.allowCommands`.
- `system.run` supports `--cwd`, `--env KEY=VAL`, `--command-timeout`, and `--needs-screen-recording`.