docs: prune recent additions for readability

2026-05-06 10:40:43 +00:00 · 2026-04-23 00:22:58 -07:00
parent 252e4dde39
commit daaedf37b7
18 changed files with 38 additions and 103 deletions
--- a/docs/gateway/openshell.md
+++ b/docs/gateway/openshell.md
@@ -282,18 +282,9 @@ openclaw sandbox recreate --all

 ## Security hardening

-OpenShell sandbox helpers that read remote workspace files use a pinned file
-descriptor for the workspace root and walk ancestors from that pinned fd
-instead of re-resolving the path for each read. Combined with an identity
-recheck on every operation, this prevents a mid-turn symlink swap or a
-hot-swapped workspace mount from redirecting reads outside the intended
-remote workspace.
-
- Workspace root is opened once and pinned; later reads reuse that fd.
- Ancestor walks traverse relative entries from the pinned fd so they cannot
-  be redirected by a replacement directory higher in the path.
- The sandbox identity is rechecked before each read, so a recreated or
-  reassigned sandbox cannot silently serve files from a different workspace.
+OpenShell pins the workspace root fd and rechecks sandbox identity before each
+read, so symlink swaps or a remounted workspace cannot redirect reads out of
+the intended remote workspace.

 ## Current limitations