vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-02 00:40:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

Deny cron tool on /tools/invoke by default

Browse Source 
(cherry picked from commit 816a6b3a4d)
This commit is contained in:
Brian Mendonca
2026-02-23 21:18:10 -07:00
committed by Peter Steinberger
parent f9de17106a
commit d51a4695f0
2 changed files with 125 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/security/dangerous-tools.ts
View File

@@ -11,6 +11,8 @@ export const DEFAULT_GATEWAY_HTTP_TOOL_DENY = [
"sessions_spawn",
// Cross-session injection — message injection across sessions
"sessions_send",
// Persistent automation control plane — can create/update/remove scheduled runs
"cron",
// Gateway control plane — prevents gateway reconfiguration via HTTP
"gateway",
// Interactive setup — requires terminal QR scan, hangs on HTTP