openclaw

vultr/openclaw

Fork 0

mirror of https://github.com/openclaw/openclaw.git synced 2026-05-26 06:15:13 +00:00

Commit Graph

Author SHA1 Message Date

Author	SHA1	Message	Date
Gio Della-Libera	a30ac3f8d7	Policy: add tool metadata conformance (#80056 ) * feat(policy): add tool metadata conformance checks * Add policy trusted tool runtime gate * Use requireMetadata for tool policy Make tools.requireMetadata the canonical policy schema for risk, sensitivity, and owner requirements. Update runtime enforcement, doctor findings, evidence parsing, tests, and policy docs to use the new schema. * fix(policy): persist approval metadata * fix(policy): refresh approval metadata artifacts * docs(policy): list all tool finding checks * fix(policy): parse multiline tool metadata * test(policy): cover unparseable policy check output * fix(policy): resolve oc-path api in packaged dist * fix(policy): clear post-rebase CI failures * test(policy): clear post-rebase CI failures * fix(policy): restore watch and align validation * fix(policy): clear ci gate failures * Simplify policy tool evidence parsing	2026-05-20 20:47:32 -07:00
Gio Della-Libera	cbf72e5e26	feat(policy): add channel conformance checks (#80407 ) Summary: - Add the bundled Policy plugin with policy-backed doctor checks for channel conformance. - Add `openclaw policy check` attestations, accepted-attestation drift checks, and opt-in doctor repair. - Add policy CLI docs, generated plugin inventory/reference docs, and changelog credit. Verification: - node --import tsx scripts/sync-plugin-versions.ts --check - pnpm plugins:inventory:check - pnpm docs:list - git diff --check origin/main..HEAD - node scripts/run-vitest.mjs extensions/policy/src/policy-state.test.ts extensions/policy/src/cli.test.ts extensions/policy/src/doctor/register.test.ts src/flows/bundled-health-checks.test.ts src/cli/program/register.maintenance.test.ts - codex review --uncommitted; accepted finding fixed, reran clean - codex review --commit HEAD - GitHub CI for `4e09b067f4`: CI, Workflow Sanity, CodeQL, CodeQL Critical Quality, OpenGrep PR Diff, Real behavior proof, Dependency Change Awareness all green; reran failed Windows Node setup job successfully Co-authored-by: Gio Della-Libera <giodl73@gmail.com> Co-authored-by: Gio Della-Libera <giodl@microsoft.com>	2026-05-20 11:50:21 +01:00

Gio Della-Libera

a30ac3f8d7

Policy: add tool metadata conformance (#80056 )

* feat(policy): add tool metadata conformance checks

* Add policy trusted tool runtime gate

* Use requireMetadata for tool policy

Make tools.requireMetadata the canonical policy schema for risk, sensitivity, and owner requirements. Update runtime enforcement, doctor findings, evidence parsing, tests, and policy docs to use the new schema.

* fix(policy): persist approval metadata

* fix(policy): refresh approval metadata artifacts

* docs(policy): list all tool finding checks

* fix(policy): parse multiline tool metadata

* test(policy): cover unparseable policy check output

* fix(policy): resolve oc-path api in packaged dist

* fix(policy): clear post-rebase CI failures

* test(policy): clear post-rebase CI failures

* fix(policy): restore watch and align validation

* fix(policy): clear ci gate failures

* Simplify policy tool evidence parsing

2026-05-20 20:47:32 -07:00

Gio Della-Libera

cbf72e5e26

feat(policy): add channel conformance checks (#80407 )

Summary:
- Add the bundled Policy plugin with policy-backed doctor checks for channel conformance.
- Add `openclaw policy check` attestations, accepted-attestation drift checks, and opt-in doctor repair.
- Add policy CLI docs, generated plugin inventory/reference docs, and changelog credit.

Verification:
- node --import tsx scripts/sync-plugin-versions.ts --check
- pnpm plugins:inventory:check
- pnpm docs:list
- git diff --check origin/main..HEAD
- node scripts/run-vitest.mjs extensions/policy/src/policy-state.test.ts extensions/policy/src/cli.test.ts extensions/policy/src/doctor/register.test.ts src/flows/bundled-health-checks.test.ts src/cli/program/register.maintenance.test.ts
- codex review --uncommitted; accepted finding fixed, reran clean
- codex review --commit HEAD
- GitHub CI for 4e09b067f4: CI, Workflow Sanity, CodeQL, CodeQL Critical Quality, OpenGrep PR Diff, Real behavior proof, Dependency Change Awareness all green; reran failed Windows Node setup job successfully

Co-authored-by: Gio Della-Libera <giodl73@gmail.com>
Co-authored-by: Gio Della-Libera <giodl@microsoft.com>

2026-05-20 11:50:21 +01:00

2 Commits