vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 08:00:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

refactor(terminal): optimize log sanitization (#67205)

Browse Source 
* refactor(terminal): optimize sanitizeForLog with dynamic regex

* perf(terminal): optimize log sanitization

---------

Co-authored-by: Altay <altay@uinaf.dev>
This commit is contained in:
Bulut M.
2026-04-20 00:21:32 +03:00
committed by GitHub
parent 4d4f3eb404
commit f039d80306
3 changed files with 15 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
CHANGELOG.md
View File

@@ -7,6 +7,7 @@ Docs: https://docs.openclaw.ai
### Changes
- Plugins/tasks: add a detached runtime registration contract so plugin executors can own detached task lifecycle and cancellation without reaching into core task internals. (#68915) Thanks @mbelinky.
- Terminal/logging: optimize `sanitizeForLog()` by replacing the iterative control-character stripping loop with a single regex pass while preserving the existing ANSI-first sanitization behavior. (#67205) Thanks @bulutmuf.
### Fixes

8
src/terminal/ansi.test.ts
View File

@@ -9,7 +9,13 @@ describe("terminal ansi helpers", () => {
});
it("sanitizes control characters for log-safe interpolation", () => {
const input = "\u001B[31mwarn\u001B[0m\r\nnext\u0000line\u007f";
const input =
"\u001B[31mwarn\u001B[0m" +
"\r\n" +
"next" +
String.fromCharCode(0) +
"line" +
String.fromCharCode(127);
expect(sanitizeForLog(input)).toBe("warnnextline");
});

12
src/terminal/ansi.ts
View File

@@ -34,11 +34,13 @@ export function splitGraphemes(input: string): string[] {
* and DEL (U+007F) to prevent log forging / terminal escape injection (CWE-117).
*/
export function sanitizeForLog(v: string): string {
let out = stripAnsi(v);
for (let c = 0; c <= 0x1f; c++) {
out = out.replaceAll(String.fromCharCode(c), "");
}
return out.replaceAll(String.fromCharCode(0x7f), "");
// Pattern built at runtime so the source file stays free of literal control
// characters AND the linter cannot statically detect them (no-control-regex).
const c0Start = String.fromCharCode(0x00);
const c0End = String.fromCharCode(0x1f);
const del = String.fromCharCode(0x7f);
const controlCharsRegex = new RegExp(`[${c0Start}-${c0End}${del}]`, "g");
return stripAnsi(v).replace(controlCharsRegex, "");
}
function isZeroWidthCodePoint(codePoint: number): boolean {