openclaw

mirror of https://github.com/openclaw/openclaw.git synced 2026-03-19 05:50:47 +00:00

Author	SHA1	Message	Date
Sid	7b5a410b83	fix(node-host): decode Windows exec output with active code page (openclaw#30652) thanks @Sid-Qin Verified: - pnpm vitest run src/node-host/invoke.sanitize-env.test.ts src/node-host/invoke-system-run.test.ts Co-authored-by: Sid-Qin <53659198+Sid-Qin@users.noreply.github.com> Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com>	2026-03-02 07:50:17 -06:00
Peter Steinberger	e80c803fa8	fix(security): block shell env allowlist bypass in system.run	2026-02-22 12:47:05 +01:00
Peter Steinberger	c2c7114ed3	fix(security): block HOME and ZDOTDIR env override injection	2026-02-22 09:42:55 +01:00
Peter Steinberger	e588e3cc20	refactor(test): standardize env helpers across suites	2026-02-21 19:13:46 +00:00
Peter Steinberger	2cdbadee1f	fix(security): block startup-file env injection across host execution paths	2026-02-21 11:44:20 +01:00
Peter Steinberger	9386075b7b	perf(test): fold node-host runner tests into sanitize env suite	2026-02-16 02:45:00 +00:00
Peter Steinberger	013e8f6b3b	fix: harden exec PATH handling	2026-02-14 19:53:04 +01:00