openclaw

mirror of https://github.com/openclaw/openclaw.git synced 2026-05-22 08:04:04 +00:00

Author	SHA1	Message	Date
Peter Steinberger	cf571c1b58	fix(plugins): scope install scanner to runtime graph	2026-05-13 21:22:37 +01:00
Kevin Lin	6a23e26a27	docs: consolidate plugin install docs (#81167 ) * docs: consolidate plugin install docs * docs: align plugin getting started page * snap * docs: add reusable audit viewer tooling * docs: add audit viewer doc mode * docs: add audit viewer diff mode * docs: strengthen plugin docs audit coverage * docs: preserve plugin scan order reference * docs: resolve plugin audit coverage gaps * docs: strengthen audit line mappings * docs: narrow plugin docs refactor scope * docs: preserve plugin audit facts * docs: keep audit skill local * docs: remove audit skill from pr * fix: satisfy plugin scan lint * docs: address plugin docs review	2026-05-13 13:17:39 -07:00
Peter Steinberger	439e396262	fix(plugins): allow benign LanceDB runtime shims	2026-05-13 20:24:46 +01:00
Sarah Fortune	aae173a1c9	fix(plugins): raise default install scan file limit to 25k (#81361 )	2026-05-13 02:47:13 -07:00
Pavan Kumar Gondhi	39bcd1e088	fix(plugins): scan installed dependency runtime code [AI] (#81066 ) * fix: scan installed plugin dependency code * addressing review-skill * addressing review-skill * addressing codex review * addressing codex review * addressing codex review * addressing codex review * addressing codex review * addressing codex review * addressing codex review * addressing codex review * addressing ci * addressing ci * docs: add changelog entry for PR merge	2026-05-13 10:26:24 +05:30
Pavan Kumar Gondhi	a5dce367ce	fix: scan plugin runtime entries during install [AI] (#80998 ) * fix: scan plugin runtime entries during install * addressing review-skill * addressing claude review * docs: add changelog entry for PR merge	2026-05-12 20:28:40 +05:30
Peter Steinberger	b85b1c68d1	Refactor file access to use fs-safe primitives (#78255 ) * refactor: use fs-safe primitives across file access * fix: preserve invalid managed npm manifests * fix: keep fs seams for startup metadata	2026-05-06 05:03:11 +01:00
Vincent Koc	54300e5270	fix(plugins): quiet official npm install scan warnings	2026-05-04 02:40:55 -07:00
Vincent Koc	5ecd01ff94	fix(plugins): trust managed npm peer links	2026-05-03 01:49:24 -07:00
Peter Steinberger	23ac9ccfd5	test: add codex npm plugin Docker live proof	2026-05-02 20:08:48 +01:00
Peter Steinberger	87f43ca88c	fix: trust official source-linked ClawHub plugins	2026-05-02 05:16:10 +01:00
Peter Steinberger	7ddf28c0d4	feat: support git plugin installs	2026-05-01 10:59:10 +01:00
Peter Steinberger	d69eeeb2a8	fix: skip test-only plugin install scan findings	2026-04-27 15:00:55 +01:00
Peter Steinberger	c3b3da41fe	fix: allow trusted openclaw peer symlinks	2026-04-27 14:40:02 +01:00
Peter Steinberger	503af7afa6	refactor: dedupe install scan skill spec	2026-04-21 00:32:42 +01:00
Vincent Koc	95bc417944	fix(cycles): split residual shared type seams	2026-04-11 02:46:40 +01:00
Peter Steinberger	8bc157c304	fix: prefer manifest evidence in install scanner	2026-04-10 21:22:16 +01:00
Peter Steinberger	ba55a81a32	fix: close landing test gaps	2026-04-10 21:22:16 +01:00
Peter Steinberger	c9067b6520	fix: preserve scoped plugin symlink installs	2026-04-10 21:22:16 +01:00
Peter Steinberger	3198c10fba	fix: stabilize Codex harness landing checks	2026-04-10 21:22:16 +01:00
Peter Steinberger	e7db987ce6	test: trim heavy imports and harden ci checks	2026-04-10 19:23:10 +01:00
Peter Steinberger	56468cdb06	fix: align plugin install denylist scan tests	2026-04-10 18:57:52 +01:00
Michael Appel	9f97ad857a	fix(security): pin axios to 1.15.0 and add dependency denylist for plugin installs [AI-assisted] (#63891 ) * fix: address issue * fix: address review feedback * fix: address PR review feedback * fix: address PR review feedback * fix: address PR review feedback * fix: address PR review feedback * fix: address PR review feedback * Plugins: fix install security CI regressions * Plugins: make manifest traversal linear * Plugins: bound manifest security traversal * Plugins: block denied node_modules package dirs * Plugins: match node_modules case-insensitively * Plugins: block denied package symlink paths * Tests: normalize blocked symlink assertion * Plugins: fail closed on unreadable denied paths * Plugins: block denied node_modules file aliases * Plugins: inspect node_modules symlink targets * Plugins: preserve symlink target package paths * fix: address PR review feedback * chore(changelog): add axios pin and dependency denylist entry --------- Co-authored-by: Devin Robison <drobison@nvidia.com>	2026-04-10 11:20:05 -06:00
joshavant	c22233d96c	Revert "refactor(plugins): remove before_install hook"	2026-04-01 19:57:07 -05:00
Vincent Koc	fcb802e826	refactor(plugins): remove before_install hook	2026-04-01 02:28:06 +09:00
Peter Steinberger	bf96c67fd1	fix: align skill install security gate	2026-03-31 15:53:29 +01:00
Peter Steinberger	0d7f1e2c84	feat(security): fail closed on dangerous skill installs	2026-03-31 23:27:20 +09:00
Peter Steinberger	44b9936136	feat(plugins): add dangerous unsafe install override	2026-03-31 23:16:11 +09:00
Jacob Tomlinson	7a953a5227	Plugins: block install when source scan fails (#57729 ) * Plugins: block unsafe install scan fallthrough * Tests: normalize install scanner formatting * Plugins: avoid duplicate scan failure messaging * Plugins: preserve hook install block codes	2026-03-30 15:36:08 +01:00
George Zhang	2607191d04	refactor(plugins): centralize before_install context shaping	2026-03-29 12:35:01 -07:00
George Zhang	150faba8d1	plugins: enrich before_install policy context	2026-03-29 12:35:01 -07:00
George Zhang	7cd9957f62	plugins: add before_install hook for install scanners	2026-03-29 12:35:01 -07:00
Peter Steinberger	3fa2300ba1	perf: reduce plugin runtime startup overhead	2026-03-22 16:34:09 +00:00

33 Commits