vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-07 06:50:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
33,270 Commits 1,843 Branches 149 Tags
dc9c46a8df01b2f3de4bdec40733fcd782b5df27
Commit Graph

8 Commits

Author SHA1 Message Date
Sanjay Santhanam
081da17090 fix(codex): exclude codex-app-server synthetic apiKey from secrets audit (#69581) 
* fix(codex): exclude codex-app-server synthetic apiKey from secrets audit

The Codex extension uses the literal string "codex-app-server" as a
hardcoded placeholder apiKey in provider.ts, since the real
authentication is managed by the app-server transport itself.

The secrets audit currently reports this as a real plaintext leak
(PLAINTEXT_FOUND), producing a false positive for any user who has
configured the Codex harness.

Declare it as a plugin-owned non-secret marker in the Codex plugin
manifest, so it flows through the standard
`listKnownNonSecretApiKeyMarkers()` path alongside `ollama-local`,
`lmstudio-local`, `gcp-vertex-credentials`, and `minimax-oauth`.

Also extends the existing `model auth markers` unit tests to lock
in the behavior.

Fixes #69511

* ci: retrigger checks (no-op)
 2026-04-21 21:38:26 +10:00
Lucenx9
d04f7e7ce7 fix(codex): default app-server approvals to on-request 2026-04-21 01:06:36 +01:00
duqaXxX
69ba924b53 fix(codex): activate harness plugin for forced runtime 2026-04-16 09:06:45 -07:00
Peter Steinberger
3b65e2302a refactor(codex): split app-server lifecycle seams 2026-04-10 23:07:25 +01:00
Peter Steinberger
31a0b7bd42 feat: add Codex app-server controls 2026-04-10 22:19:00 +01:00
Peter Steinberger
84098a2267 fix: keep Codex harness opt-in by default 2026-04-10 21:22:16 +01:00
Peter Steinberger
106256d896 fix: address Codex harness review regressions 2026-04-10 21:22:16 +01:00
Peter Steinberger
dd26e8c44d feat: add Codex app-server harness extension 2026-04-10 21:22:16 +01:00