vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 09:30:43 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(secrets): harden Windows ACL fallback and strip BOM (#70662)

Browse Source 
Fail closed when Windows ACL checks cannot be verified for file and exec secret providers unless the provider explicitly opts into allowInsecurePath. Strip UTF-8 BOMs from file-backed secrets and document the trusted-path override.\n\nThanks @zhanggpcsu.
This commit is contained in:
zhang-guiping
2026-04-24 02:32:15 +08:00
committed by GitHub
parent 884d7929d1
commit c1f423f845
14 changed files with 190 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
docs/cli/config.md
View File

@@ -203,6 +203,7 @@ File provider (`--provider-source file`):
- `--provider-path <path>` (required)
- `--provider-mode <singleValue|json>`
- `--provider-max-bytes <bytes>`
- `--provider-allow-insecure-path`
Exec provider (`--provider-source exec`):