mirror of
https://github.com/openclaw/openclaw.git
synced 2026-04-30 11:20:21 +00:00
82 lines
2.0 KiB
TypeScript
82 lines
2.0 KiB
TypeScript
import { beforeEach, describe, expect, it, vi } from "vitest";
|
|
import type { OpenClawConfig } from "../config/config.js";
|
|
import { collectEnabledInsecureOrDangerousFlags } from "./dangerous-config-flags.js";
|
|
|
|
const { loadPluginManifestRegistryMock } = vi.hoisted(() => ({
|
|
loadPluginManifestRegistryMock: vi.fn(),
|
|
}));
|
|
|
|
vi.mock("../plugins/manifest-registry.js", () => ({
|
|
loadPluginManifestRegistry: loadPluginManifestRegistryMock,
|
|
}));
|
|
|
|
function asConfig(value: unknown): OpenClawConfig {
|
|
return value as OpenClawConfig;
|
|
}
|
|
|
|
describe("collectEnabledInsecureOrDangerousFlags", () => {
|
|
beforeEach(() => {
|
|
loadPluginManifestRegistryMock.mockReset();
|
|
});
|
|
|
|
it("collects manifest-declared dangerous plugin config values", () => {
|
|
loadPluginManifestRegistryMock.mockReturnValue({
|
|
plugins: [
|
|
{
|
|
id: "acpx",
|
|
configContracts: {
|
|
dangerousFlags: [{ path: "permissionMode", equals: "approve-all" }],
|
|
},
|
|
},
|
|
],
|
|
diagnostics: [],
|
|
});
|
|
|
|
expect(
|
|
collectEnabledInsecureOrDangerousFlags(
|
|
asConfig({
|
|
plugins: {
|
|
entries: {
|
|
acpx: {
|
|
config: {
|
|
permissionMode: "approve-all",
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}),
|
|
),
|
|
).toContain("plugins.entries.acpx.config.permissionMode=approve-all");
|
|
});
|
|
|
|
it("ignores plugin config values that are not declared as dangerous", () => {
|
|
loadPluginManifestRegistryMock.mockReturnValue({
|
|
plugins: [
|
|
{
|
|
id: "other",
|
|
configContracts: {
|
|
dangerousFlags: [{ path: "mode", equals: "danger" }],
|
|
},
|
|
},
|
|
],
|
|
diagnostics: [],
|
|
});
|
|
|
|
expect(
|
|
collectEnabledInsecureOrDangerousFlags(
|
|
asConfig({
|
|
plugins: {
|
|
entries: {
|
|
other: {
|
|
config: {
|
|
mode: "safe",
|
|
},
|
|
},
|
|
},
|
|
},
|
|
}),
|
|
),
|
|
).toEqual([]);
|
|
});
|
|
});
|