fix(scripts): bound audit advisory error bodies · openclaw/openclaw@9f70064 - 惯性聚合

推荐订阅源

Visual Studio Blog

The Exploit Database - CXSecurity.com

CXSECURITY Database RSS Feed - CXSecurity.com

Exploit-DB.com RSS Feed

Security @ Cisco Blogs

Hacker News: Front Page

News and Events Feed by Topic

LINUX DO - 热门话题

Threat Intelligence Blog | Flashpoint

LINUX DO - 最新话题

Kaspersky official blog

Proofpoint News Feed

Troy Hunt's Blog

The Register - Security

Vulnerabilities – Threatpost

Threat Research - Cisco Blogs

Microsoft Azure Blog

Proofpoint News Feed

Know Your Adversary

Recorded Future

Google Online Security Blog

Attack and Defense Labs

Tor Project blog

About on SuperTechFans

Security Archives - TechRepublic

cs.CV updates on arXiv.org

Lohrmann on Cybersecurity

Google DeepMind News

Recent Commits to openclaw:main

test: avoid platform-specific transcript stat assertion fix: ignore leading transcript bytes in tail scan fix: avoid direct transcript stat fallback fix(scripts): bound docker preflight capture fix(scripts): bound gh read error bodies chore(ui): refresh nl control ui locale · openclaw/openclaw@43deaf4 chore(ui): refresh fa control ui locale · openclaw/openclaw@c16620c chore(ui): refresh vi control ui locale · openclaw/openclaw@55e1878 chore(ui): refresh th control ui locale · openclaw/openclaw@47c67e3 chore(ui): refresh pl control ui locale · openclaw/openclaw@062d429 chore(ui): refresh id control ui locale · openclaw/openclaw@580e95f chore(ui): refresh tr control ui locale · openclaw/openclaw@dcb00f3 chore(ui): refresh uk control ui locale · openclaw/openclaw@748015b chore(ui): refresh it control ui locale · openclaw/openclaw@ae0f469 chore(ui): refresh ar control ui locale · openclaw/openclaw@5f3012b chore(ui): refresh fr control ui locale · openclaw/openclaw@b0517f1 chore(ui): refresh ja-JP control ui locale · openclaw/openclaw@5058fc9 chore(ui): refresh ko control ui locale · openclaw/openclaw@d4ffac4 chore(ui): refresh es control ui locale · openclaw/openclaw@384dd12 chore(ui): refresh de control ui locale · openclaw/openclaw@6c858ac chore(ui): refresh pt-BR control ui locale · openclaw/openclaw@d3751e4 chore(ui): refresh zh-CN control ui locale · openclaw/openclaw@831bb45 chore(ui): refresh zh-TW control ui locale · openclaw/openclaw@71781b8 test(cron): speed up isolated fallback tests (#87520) · openclaw/openclaw@127c0ad refactor(openai): centralize codex oauth flow (#87411) · openclaw/openclaw@e805ffd test(agents): prove active live subagent steering · openclaw/openclaw@d1bca0c test(agents): narrow bounded error assertions · openclaw/openclaw@44027e7 chore: clarify bug report issue scope · openclaw/openclaw@8f6a2f0 fix(agents): preserve signed thinking payloads (#87493) · openclaw/openclaw@4a45a25 fix(test): harden startup benchmark harness · openclaw/openclaw@d10d30c fix(agents): bound minimax vlm error bodies · openclaw/openclaw@4f26cc9 fix(telegram): lower polling keepalive delay (#83304) ci(mantis): route telegram proof runs to us-east-1 · openclaw/openclaw@51d7f3c fix(agents): bound native pdf error bodies · openclaw/openclaw@c841218 test: deflake agent image root checks (#87499) · openclaw/openclaw@647e18a fix(android): preserve private LAN TLS pins · openclaw/openclaw@633c40a fix(android): keep LAN cleartext untrusted · openclaw/openclaw@5f3d6cd fix(android): allow private LAN pairing fix(android): trust private LAN credentials · openclaw/openclaw@771ddcf fix(qa): reject loose openwebui probe timeouts · openclaw/openclaw@6ae4a00 fix(media): cancel oversized fetch responses · openclaw/openclaw@a0ba9f2 fix(whatsapp): strip control characters from outbound document fileNa… · openclaw/openclaw@313d6ae refactor: share QA runtime helpers (#87412) · openclaw/openclaw@8d21ac3 fix(media): cancel ignored input fetch bodies fix(qa): parse kitchen sink rpc guardrails strictly · openclaw/openclaw@6adf234 fix(media): drain ignored download responses · openclaw/openclaw@736e04c fix(perf): keep abort leak thresholds active fix: harden qqbot direct media uploads · openclaw/openclaw@b860a0d fix(doctor): validate normalized tool schemas · openclaw/openclaw@751cd0c fix(perf): keep startup memory budgets active · openclaw/openclaw@f5e48f7 perf(tests): refactor embedded attempt runner helpers (#87410) · openclaw/openclaw@d165100 chore: stop tracking generated diffs viewer runtime (#87405) · openclaw/openclaw@5887119 fix(perf): reject loose extension memory numeric flags · openclaw/openclaw@bf22893 perf: dedupe persisted skill prompts (#87458) · openclaw/openclaw@edd4c62 fix(qa): reject loose Docker scheduler numeric env · openclaw/openclaw@6fe7ddd fix(qa): reject loose gateway CPU numeric flags · openclaw/openclaw@3ef3470 fix(whatsapp): support pluginHooks.messageReceived in channel/account… · openclaw/openclaw@e0d003b fix: keep private SDK declarations local · openclaw/openclaw@2229122 test(agents): cover tool schema quarantine in turns · openclaw/openclaw@8b78ded fix(qa): reject loose gauntlet numeric flags · openclaw/openclaw@ac28c06 perf(plugins) refactor plugin SDK declarations for flat package types… · openclaw/openclaw@3005b62 fix(file-transfer): handle late tar pipe errors · openclaw/openclaw@b6e354f fix(perf): reject invalid startup bench counts · openclaw/openclaw@d1577a2 fix(status): keep default JSON scan lean · openclaw/openclaw@d2319d7 fix(auth): honor OAuth login cancellation · openclaw/openclaw@5846878 test(reply): avoid redundant settled hook return unions fix(agents): allow steering yielded subagents test(openai): type malformed context window fixture · openclaw/openclaw@069f33b chore(release): refresh plugin sdk baseline · openclaw/openclaw@7c7fb7d chore(release): prepare 2026.5.28 · openclaw/openclaw@cee2a50 fix(discord): fence tool warning fallback delivery (#87465) · openclaw/openclaw@0e262d2 fix(doctor): validate tool schemas for configured agents · openclaw/openclaw@748510b fix: reject partial numeric runtime values · openclaw/openclaw@45e6af5 fix: reject partial numeric command values fix(hooks): pass media metadata to received hook fix(heartbeat): stop pending final replay · openclaw/openclaw@d00e764 test(discord): use reply payload SDK test helper (#87454) · openclaw/openclaw@c86667c fix: accept uncommitted autoreview mode · openclaw/openclaw@ff0990d fix(outbound): thread session keys into outbound hooks (#73706) · openclaw/openclaw@05db911 fix(provider): bound local service startup · openclaw/openclaw@c9151ba chore: forward gateway profiling env · openclaw/openclaw@1f1cdd8 fix(discord): suppress recovered tool warnings (#87451) · openclaw/openclaw@da27904 fix(cron): stabilize isolated prompt cache affinity · openclaw/openclaw@3f9d241 fix(agents): keep hook context prompt-local (#86875) · openclaw/openclaw@8b7a482 fix(doctor): rewrite non-canonical api_key auth profiles · openclaw/openclaw@603aa8a fix(sessions): preserve Matrix room-id case in session keys (#75670) … · openclaw/openclaw@b5bd6e8 test(gateway): retry live exec read probe wording · openclaw/openclaw@92043f7 fix(imessage): continue polling after denied reactions · openclaw/openclaw@59c3ee7 fix(agents): release session lock on timeout abort · openclaw/openclaw@65fb565 fix(provider): honor Codex response timeouts · openclaw/openclaw@c20a055 fix(codex): report quarantined dynamic tools · openclaw/openclaw@da5fe99 fix(imessage): suppress duplicate native exec approvals · openclaw/openclaw@40bca6d fix(sessions): avoid stale restart continuation reuse · openclaw/openclaw@d8641a6 fix(gateway): drain probe client close test(ci): bound image tool iMessage fixtures feat(status): show active subagent details fix(codex): format skills command output (#87400) Improve stale Codex auth recovery guidance [Fix] Warm provider auth off main thread (#86281) · openclaw/openclaw@316fd5b fix(agents): resolve Codex runtime models first · openclaw/openclaw@5cef288

fix(scripts): bound audit advisory error bodies · openclaw/openclaw@9f70064

vincentkoc · 2026-05-28 · via Recent Commits to openclaw:main

Original file line number	Diff line number	Diff line change
`@@ -8,6 +8,7 @@ import { pathToFileURL } from "node:url";`
`8`	`8`	`const DEFAULT_REGISTRY = "https://registry.npmjs.org";`
`9`	`9`	`const BULK_ADVISORY_PATH = "/-/npm/v1/security/advisories/bulk";`
`10`	`10`	`const MIN_SEVERITY = "high";`
	`11`	`+export const BULK_ADVISORY_ERROR_BODY_MAX_CHARS = 4096;`
`11`	`12`	`const SEVERITY_RANK = {`
`12`	`13`	`info: 0,`
`13`	`14`	`low: 1,`
`@@ -676,6 +677,45 @@ function resolveRegistryBaseUrl() {`
`676`	`677`	`return configured.replace(/\/+$/u, "");`
`677`	`678`	`}`
`678`	`679`
	`680`	`+export async function readBoundedBulkAdvisoryErrorText(`
	`681`	`+response,`
	`682`	`+maxChars = BULK_ADVISORY_ERROR_BODY_MAX_CHARS,`
	`683`	`+) {`
	`684`	`+if (!response.body) {`
	`685`	`+return "";`
	`686`	`+}`
	`687`	`+`
	`688`	`+const reader = response.body.getReader();`
	`689`	`+const decoder = new TextDecoder();`
	`690`	`+let text = "";`
	`691`	`+let truncated = false;`
	`692`	`+`
	`693`	`+try {`
	`694`	`+while (text.length <= maxChars) {`
	`695`	`+const { done, value } = await reader.read();`
	`696`	`+if (done) {`
	`697`	`+text += decoder.decode();`
	`698`	`+break;`
	`699`	`+}`
	`700`	`+`
	`701`	`+text += decoder.decode(value, { stream: true });`
	`702`	`+if (text.length > maxChars) {`
	`703`	`+text = text.slice(0, maxChars);`
	`704`	`+truncated = true;`
	`705`	`+break;`
	`706`	`+}`
	`707`	`+}`
	`708`	`+} finally {`
	`709`	`+if (truncated) {`
	`710`	`+await reader.cancel().catch(() => undefined);`
	`711`	`+} else {`
	`712`	`+reader.releaseLock();`
	`713`	`+}`
	`714`	`+}`
	`715`	`+`
	`716`	+return truncated ? `${text}\n[truncated]` : text;
	`717`	`+}`
	`718`	`+`
`679`	`719`	`export async function fetchBulkAdvisories({`
`680`	`720`	`payload,`
`681`	`721`	`fetchImpl = fetch,`
`@@ -692,7 +732,7 @@ export async function fetchBulkAdvisories({`
`692`	`732`	`});`
`693`	`733`
`694`	`734`	`if (!response.ok) {`
`695`		`-const bodyText = await response.text();`
	`735`	`+const bodyText = await readBoundedBulkAdvisoryErrorText(response);`
`696`	`736`	`throw new Error(`
`697`	`737`	`Bulk advisory request failed (${response.status} ${response.statusText}): ${bodyText}`,
`698`	`738`	`);`

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。