Josh Avant
|
fbd330b7aa
|
fix(channels): honor configured read target policies (#99905)
* fix(channels): enforce configured read targets
* test(channels): align policy checks with boundaries
* fix: bind channel reads to trusted turn context
* test: satisfy gateway lint
* fix: narrow message action channel imports
* fix(feishu): authorize message reads before provider access
* fix(slack): await reaction clear authorization
* fix(channels): align provider action contracts
* fix(matrix): read direct-room account data before sync
* fix(channels): reject unsupported attachment actions early
* fix: restore trusted operator conversation reads
* fix(matrix): authorize pin actions before provider reads
* fix: preserve trusted channel read workflows
* fix(discord): resolve current channel ids consistently
* fix(agents): preserve message action turn capability
* fix(plugins): enforce host-owned read provenance
* fix(channels): harden Teams and Discord read policy
* fix(channels): preserve exact-current action compatibility
* fix(imessage): authorize trusted current chat aliases
* fix(channels): preserve normalized current aliases
* fix(channels): preserve external current target aliases
* fix: reconcile channel policy with current main
* fix(discord): isolate DM read policy
* fix(channels): enforce provider read gates
* fix(gateway): await serialized message action identity tokens
* fix(ci): refresh channel protocol contracts
|
2026-07-10 22:29:37 -05:00 |
|
Peter Steinberger
|
3d6a2216ea
|
feat(codex): share native threads across Codex clients (#99821)
* feat(codex): share native threads across clients
* test(codex): track coexistence temp dirs
* fix(codex): preserve native source on thread forks
* test(codex): use public temp fixtures
* fix(codex): preserve owner context for deferred tools
* fix(codex): forward owner identity to dynamic tools
* fix(codex): forward owner status to harness attempts
* docs(security): document shared Codex home
* docs(security): document shared Codex home
* docs(security): document shared Codex home
|
2026-07-04 01:43:21 -07:00 |
|
Andy Ye
|
ddacb7ba39
|
fix(memory): keep memory_search in transient qmd mode (#92639)
Summary:
- Merged fix(memory): keep memory_search in transient qmd mode after ClawSweeper review.
Automerge notes:
- PR branch already contained follow-up commit before automerge: fix(memory): close transient search managers
- PR branch already contained follow-up commit before automerge: fix(memory): preserve default search managers
- PR branch already contained follow-up commit before automerge: fix(memory): preserve qmd cli boot freshness
Validation:
- ClawSweeper review passed for head 64fe82c24c.
- Required merge gates passed before the squash merge.
Prepared head SHA: 64fe82c24c
Review: https://github.com/openclaw/openclaw/pull/92639#issuecomment-4698763950
Co-authored-by: Andy Ye <35905412+TurboTheTurtle@users.noreply.github.com>
Co-authored-by: clawsweeper[bot] <274271284+clawsweeper[bot]@users.noreply.github.com>
Approved-by: takhoffman
Co-authored-by: takhoffman <781889+takhoffman@users.noreply.github.com>
|
2026-06-13 14:14:54 +00:00 |
|
Peter Steinberger
|
a6d084113a
|
docs: document plugin install helpers
|
2026-06-04 04:15:33 -04:00 |
|
Peter Steinberger
|
02182d5a30
|
refactor: remove sender owner tool gating
|
2026-05-21 15:14:48 +01:00 |
|
Peter Steinberger
|
525767c726
|
feat: expose active model plugin context
|
2026-05-10 15:21:43 +01:00 |
|
brokemac79
|
48f51c1a51
|
fix: align xai tool auth profiles
|
2026-05-09 21:02:40 -04:00 |
|
Jesse Merhi
|
297a164536
|
Highlight exec command risks in Web approvals (#77153)
Summary:
- Adds parser-derived exec approval command-span metadata through host registration, gateway validation, generated Swift models, Control UI parsing/rendering, tests, and changelog.
- Reproducibility: not applicable. this is a feature PR rather than a bug report. The before/after behavior is ... rom current main’s plain command rendering to PR-head span generation, validation, and Web rendering tests.
Automerge notes:
- PR branch already contained follow-up commit before automerge: refactor: use neutral exec command spans
- PR branch already contained follow-up commit before automerge: refactor: simplify exec command span extraction
- PR branch already contained follow-up commit before automerge: refactor: inline approval command span params
- PR branch already contained follow-up commit before automerge: fix: keep exec approval spans lazy
- PR branch already contained follow-up commit before automerge: build: refresh exec approval protocol models
- PR branch already contained follow-up commit before automerge: Highlight exec command risks in Web approvals
Validation:
- ClawSweeper review passed for head 8d9977eb53.
- Required merge gates passed before the squash merge.
Prepared head SHA: 8d9977eb53
Review: https://github.com/openclaw/openclaw/pull/77153#issuecomment-4368769228
Co-authored-by: jesse-merhi <79823012+jesse-merhi@users.noreply.github.com>
Co-authored-by: clawsweeper <274271284+clawsweeper[bot]@users.noreply.github.com>
|
2026-05-08 06:38:41 +00:00 |
|
Peter Steinberger
|
7f3f108521
|
refactor(config): migrate plugin config access
|
2026-04-27 12:35:58 +01:00 |
|
Vincent Koc
|
2028fd53f0
|
fix(utils): split delivery context shared types
|
2026-04-11 17:03:38 +01:00 |
|
Vincent Koc
|
543c14a4ed
|
fix(cycles): split runtime delivery and registry seams
|
2026-04-11 13:26:50 +01:00 |
|
Vincent Koc
|
08ba5a72f7
|
fix(cycles): add remaining seam files
|
2026-04-11 10:43:22 +01:00 |
|