vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-13 04:20:46 +00:00
Code Issues Packages Projects Releases Wiki Activity

test: tighten trust model assertion

Browse Source
This commit is contained in:
Shakker
2026-05-08 21:11:57 +01:00
parent ab16feb5bf
commit ea1220016b
1 changed files with 16 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
src/security/audit-trust-model.test.ts
View File

@@ -9,6 +9,17 @@ function audit(cfg: OpenClawConfig) {
return [...collectExposureMatrixFindings(cfg), ...collectLikelyMultiUserSetupFindings(cfg)];
}
function requireMultiUserHeuristicFinding(findings: ReturnType<typeof audit>) {
const finding = findings.find(
(entry) => entry.checkId === "security.trust_model.multi_user_heuristic",
);
expect(finding).toBeDefined();
if (!finding) {
throw new Error("Expected multi-user heuristic finding");
}
return finding;
}
describe("security audit trust model findings", () => {
it("evaluates trust-model exposure findings", () => {
const cases = [
@@ -108,15 +119,13 @@ describe("security audit trust model findings", () => {
} satisfies OpenClawConfig,
assert: () => {
const findings = audit(cases[4].cfg);
const finding = findings.find(
(entry) => entry.checkId === "security.trust_model.multi_user_heuristic",
);
expect(finding?.severity).toBe("warn");
expect(finding?.detail).toContain(
const finding = requireMultiUserHeuristicFinding(findings);
expect(finding.severity).toBe("warn");
expect(finding.detail).toContain(
'channels.discord.groupPolicy="allowlist" with configured group targets',
);
expect(finding?.detail).toContain("personal-assistant");
expect(finding?.remediation).toContain('agents.defaults.sandbox.mode="all"');
expect(finding.detail).toContain("personal-assistant");
expect(finding.remediation).toContain('agents.defaults.sandbox.mode="all"');
},
},
{