mirror of
https://github.com/openclaw/openclaw.git
synced 2026-07-17 09:21:36 +00:00
* fix(browser): preserve strict CDP discovery policy on target-list lookup findPageByTargetIdViaTargetList fetched the CDP /json/list endpoint without passing an ssrfPolicy argument, so the caller's discovery policy was dropped at the fetch layer while the sibling tryTerminateExecutionViaCdp scoped it. Build the scoped control policy with scopeCdpPolicyToConfiguredEndpoint and pass it to fetchJson, matching the sibling lookup path. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * test(browser): tighten target-list CDP policy test comment Co-Authored-By: Claude Fable 5 <noreply@anthropic.com> * test(browser): consolidate target-list SSRF coverage --------- Co-authored-by: Claude Fable 5 <noreply@anthropic.com> Co-authored-by: Peter Steinberger <steipete@gmail.com>