惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

H
Help Net Security
T
ThreatConnect
SecWiki News
SecWiki News
F
Future of Privacy Forum
AWS News Blog
AWS News Blog
C
Cisco Blogs
A
Arctic Wolf
Vercel News
Vercel News
The GitHub Blog
The GitHub Blog
Scott Helme
Scott Helme
V
V2EX
博客园 - 叶小钗
阮一峰的网络日志
阮一峰的网络日志
K
Kaspersky official blog
G
Google Developers Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
P
Privacy International News Feed
C
Cyber Attacks, Cyber Crime and Cyber Security
N
News | PayPal Newsroom
Schneier on Security
Schneier on Security
NISL@THU
NISL@THU
Microsoft Azure Blog
Microsoft Azure Blog
量子位
The Hacker News
The Hacker News
Stack Overflow Blog
Stack Overflow Blog
Security Latest
Security Latest
M
Microsoft Research Blog - Microsoft Research
Google Online Security Blog
Google Online Security Blog
博客园_首页
C
CXSECURITY Database RSS Feed - CXSecurity.com
I
InfoQ
Google DeepMind News
Google DeepMind News
Y
Y Combinator Blog
The Cloudflare Blog
Microsoft Security Blog
Microsoft Security Blog
Martin Fowler
Martin Fowler
Cisco Talos Blog
Cisco Talos Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
T
Troy Hunt's Blog
F
Fox-IT International blog
S
Security @ Cisco Blogs
博客园 - 司徒正美
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
C
Comments on: Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
L
LINUX DO - 最新话题
GbyAI
GbyAI
Project Zero
Project Zero
腾讯CDC
T
Tailwind CSS Blog

Recent Commits to openclaw:main

fix(codex): disable native thread personality (#85891) (thanks @lastg… · openclaw/openclaw@0f35ec2 Refactor realtime voice turn context tracking (#86650) fix(discord): surface silent reply-delivery skips and remove runtime.… test(discord): cover deliver-lambda abort-skip path via processDiscor… · openclaw/openclaw@48adcb1 docs: update changelog for landed bug fixes test(qa-matrix): use valid media coverage jpeg · openclaw/openclaw@0f54221 fix(gmail-watcher): strip listeners from old process after settleProc… · openclaw/openclaw@0a38932 fix(gmail-watcher): prevent TDZ in settleProcess and guard exit handl… · openclaw/openclaw@94968c8 fix(hooks): stop existing Gmail watcher before re-entry to prevent leaks fix(usage-cost): only flag catalog-default zeros, preserve operator-c… · openclaw/openclaw@1670249 fix(usage-cost): surface unpriced-model spend as missingCostEntries i… fix(usage-cost): preserve transport-recorded positive cost for unpric… · openclaw/openclaw@6e85869 fix(usage-cost): invalidate durable cache on missing-cost semantics c… · openclaw/openclaw@9c79a0f fix: treat zero-rate usage cost as unknown · openclaw/openclaw@116c600 fix(irc): store inbound channel routes as channel:#name and join befo… fix(irc): normalize channel route ids test(irc): cover transient channel join fix(test): harden macos onboarding e2e fix(agents): strip markdown code spans from IDENTITY.md values and la… perf: reduce runtime cache churn · openclaw/openclaw@5b6d03e fix(pi-runner): flush blocks after compaction retry (#85288) (thanks … · openclaw/openclaw@0d4575a fix(gateway): abort stale agent runs on restart · openclaw/openclaw@a122d80 fix(ui): harden control e2e browser setup · openclaw/openclaw@4424daf fix(telegram): keep overlapping DM replies deliverable (#85361) (than… · openclaw/openclaw@0f67dfd fix(openai): route compaction through Codex auth provider (#86408) · openclaw/openclaw@f4cfa01 refactor: share realtime forced consult coordination · openclaw/openclaw@5dccba7 test(qa-lab): add runtime confidence reports build: refresh dependency pins (#86628) · openclaw/openclaw@cda7c30 test: port release validation stabilizers · openclaw/openclaw@9f7485e fix(cron): stop forcing message tool for delivery · openclaw/openclaw@c51fa0d fix(google): omit request config with cached content test: stabilize release validation test harnesses fix(test): bound kitchen sink command output · openclaw/openclaw@f1197ed fix(discord): stabilize realtime wake-name feedback test(config): guard legacy agentRuntime regression perf: precompute audio resample kernels fix(codex): allow env api-key app-server bootstrap · openclaw/openclaw@009b18c refactor: reuse shared coercion helpers (#86419) · openclaw/openclaw@77d9ac3 fix(cron): preserve runtime snapshot for isolated delivery · openclaw/openclaw@a98660e fix(test): model active assistant failover attempts · openclaw/openclaw@c55bee5 docs: update changelog for bug sweep landings test: fix mock signatures for tsgo · openclaw/openclaw@aa05c5c docs: document fail-closed behavior for rejected modelPatterns · openclaw/openclaw@36f269d fix(security): guard plugin modelPatterns with compileSafeRegex · openclaw/openclaw@117e082 docs(manifest): note safe-regex validation for modelPatterns · openclaw/openclaw@e7c7ee4 style: use bracket notation for __openclaw to satisfy no-underscore-d… · openclaw/openclaw@9a6c161 fix(security): escape field names in transcript regex extraction · openclaw/openclaw@fe8d99d test: tighten oversized metadata assertion to check exact id in __ope… · openclaw/openclaw@aff8e64 fix(logging): exit on stdout/stderr EPIPE instead of spinning · openclaw/openclaw@2aa5f17 fix(logging): preserve failure exit on EPIPE · openclaw/openclaw@623a60a fix(logging): keep string failure codes on EPIPE · openclaw/openclaw@78a1e7d fix(scripts): docs-spellcheck.sh fails on bash 3.2 with set -u · openclaw/openclaw@fef57f9 fix(docs): keep spellcheck bash 3.2-compatible · openclaw/openclaw@778fa87 fix(test): assert e2e agent reply payloads · openclaw/openclaw@74f3a1e test(gateway): pin live gateway models to pi runtime · openclaw/openclaw@c88f660 perf: speed up local TUI startup · openclaw/openclaw@a0023fb refactor: share realtime voice activation helpers (#86615) · openclaw/openclaw@d0ab0d9 fix(feishu): render native presentation buttons (#86588) · openclaw/openclaw@170e0aa fix(test): narrow plugin gauntlet prebuild · openclaw/openclaw@423f7d2 fix: route Discord gateway metadata through proxy (#86601) · openclaw/openclaw@5b6d409 fix: tighten Discord voice wake matching (#86595) · openclaw/openclaw@f00a912 refactor(logging): share diagnostic message lifecycle · openclaw/openclaw@baab4cf fix(cron): restore suspended lanes to default concurrency · openclaw/openclaw@e844d1d fix(auth): emit one-shot doctor-pointer warning for Keychain-only leg… · openclaw/openclaw@a61d530 fix(codex): recover stale preflight bindings (#86602) · openclaw/openclaw@9b9d897 fix(cron): preserve unsupported payload rows on writes · openclaw/openclaw@c916906 fix(cron): canonicalize preserved row ids · openclaw/openclaw@985bc93 test(cron): pin sequential duration regression · openclaw/openclaw@8351556 docs: update changelog for cron preservation (#86415) · openclaw/openclaw@bdc6b32 build: bump qs to patched release · openclaw/openclaw@9330b76 fix(status): prefer active OAuth for runtime aliases chore(acpx): bump bundled acpx to 0.10.0 · openclaw/openclaw@407cf8e docs: make changelog release-owned · openclaw/openclaw@c0f2d89 fix(google): stop appending preview to flash lite · openclaw/openclaw@915c820 docs: update changelog for bug sweep landings · openclaw/openclaw@cd7994f fix(crabbox): detect timed macos js commands · openclaw/openclaw@44bb0be fix(mantis): release telegram user leases on startup failure · openclaw/openclaw@cf27567 fix(agents): keep cron media completions run-scoped · openclaw/openclaw@f5d2db2 fix(agents): deliver stale cron media completions · openclaw/openclaw@f01b2a8 fix(agents): notify stale cron media failures · openclaw/openclaw@baf469f guide workspace-only scratch paths fix(cron): gate lifecycle diagnostic events behind isDiagnosticsEnabled · openclaw/openclaw@4853222 fix(cron): emit message.queued/processed for isolated-agent turns fix(cron): address review — drop unsupported taskLabel, pair with ses… · openclaw/openclaw@804a31e fix(cron): report rotated session in final diagnostics · openclaw/openclaw@207a5a2 fix: hydrate current turn image attachments · openclaw/openclaw@b5ada80 fix(gateway): ignore inherited launchd env for respawn · openclaw/openclaw@177ebdc fix(test): preserve undici exports in discord proxy tests · openclaw/openclaw@b0c8a4d fix: raise default cron concurrency · openclaw/openclaw@bc12e04 fix(doctor): skip restart prompt when gateway is healthy after recent… · openclaw/openclaw@6e8d2db fix: emit agent.send lifecycle hooks on rotation (#85875) · openclaw/openclaw@8129dba fix(crabbox): bootstrap macos shell js commands · openclaw/openclaw@7cd15d2 fix: preflight malformed openshell exec commands fix: tighten openshell exec preflight · openclaw/openclaw@822ee62 docs: clarify unshipped compat policy · openclaw/openclaw@f87aa0f fix(update): allow package-manager hardlinks in swaps · openclaw/openclaw@8061d66 docs: ban repo-hosted proof artifacts · openclaw/openclaw@17954a4 fix(discord): restore bare numeric channel sends (#86571) · openclaw/openclaw@c5b9872 fix(installer): handle alpine apk runtime floors · openclaw/openclaw@b83dfcb fix(security): audit Claude permission overrides under YOLO (#86557) · openclaw/openclaw@bd65b42
fix(codex): honor yolo app-server approval policy · openclaw/openclaw@7b30291
2026-05-26 · via Recent Commits to openclaw:main

@@ -19,7 +19,12 @@ import {

1919

import { handleCodexAppServerApprovalRequest } from "./approval-bridge.js";

2020

import { refreshCodexAppServerAuthTokens } from "./auth-bridge.js";

2121

import { isCodexAppServerApprovalRequest, type CodexAppServerClient } from "./client.js";

22-

import { readCodexPluginConfig, resolveCodexAppServerRuntimeOptions } from "./config.js";

22+

import {

23+

readCodexPluginConfig,

24+

resolveCodexAppServerRuntimeOptions,

25+

shouldAutoApproveCodexAppServerApprovals,

26+

type CodexAppServerRuntimeOptions,

27+

} from "./config.js";

2328

import {

2429

emitDynamicToolErrorDiagnostic,

2530

emitDynamicToolStartedDiagnostic,

@@ -166,6 +171,8 @@ export async function runCodexAppServerSideQuestion(

166171

try {

167172

const cwd = binding.cwd || params.workspaceDir || process.cwd();

168173

const sideRunParams = buildSideRunAttemptParams(params, { cwd, authProfileId });

174+

const approvalPolicy = binding.approvalPolicy ?? appServer.approvalPolicy;

175+

const sandbox = binding.sandbox ?? appServer.sandbox;

169176

const { sessionAgentId } = resolveSessionAgentIds({

170177

sessionKey: params.sessionKey,

171178

config: params.cfg,

@@ -212,6 +219,7 @@ export async function runCodexAppServerSideQuestion(

212219

threadId: childThreadId,

213220

turnId,

214221

nativeHookRelay,

222+

autoApprove: shouldAutoApproveCodexAppServerApprovals({ approvalPolicy, sandbox }),

215223

signal: runAbortController.signal,

216224

});

217225

}

@@ -259,8 +267,6 @@ export async function runCodexAppServerSideQuestion(

259267

}

260268

});

261269262-

const approvalPolicy = binding.approvalPolicy ?? appServer.approvalPolicy;

263-

const sandbox = binding.sandbox ?? appServer.sandbox;

264270

const serviceTier = binding.serviceTier ?? appServer.serviceTier;

265271

const nativeHookRelayEvents = resolveCodexSideNativeHookRelayEvents({

266272

configuredEvents: options.nativeHookRelay?.events,

@@ -401,7 +407,7 @@ export async function runCodexAppServerSideQuestion(

401407402408

function resolveCodexSideNativeHookRelayEvents(params: {

403409

configuredEvents?: readonly NativeHookRelayEvent[];

404-

approvalPolicy: ReturnType<typeof resolveCodexAppServerRuntimeOptions>["approvalPolicy"];

410+

approvalPolicy: CodexAppServerRuntimeOptions["approvalPolicy"];

405411

}): readonly NativeHookRelayEvent[] {

406412

if (params.configuredEvents?.length) {

407413

return params.configuredEvents;

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。