fix(security): guard plugin modelPatterns with compileSafeRegex · openclaw/openclaw@117e082 - 惯性聚合

推荐订阅源

Help Net Security

Future of Privacy Forum

The GitHub Blog

博客园 - 叶小钗

阮一峰的网络日志

Kaspersky official blog

Google Developers Blog

freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More

Privacy International News Feed

Cyber Attacks, Cyber Crime and Cyber Security

News | PayPal Newsroom

Schneier on Security

Microsoft Azure Blog

The Hacker News

Stack Overflow Blog

Security Latest

Microsoft Research Blog - Microsoft Research

Google Online Security Blog

博客园_首页

CXSECURITY Database RSS Feed - CXSecurity.com

Google DeepMind News

Y Combinator Blog

The Cloudflare Blog

Microsoft Security Blog

Cisco Talos Blog

钛媒体：引领未来商业与生活新知

Troy Hunt's Blog

Fox-IT International blog

Security @ Cisco Blogs

博客园 - 司徒正美

cs.CV updates on arXiv.org

Comments on: Blog

Threat Intelligence Blog | Flashpoint

LINUX DO - 最新话题

Tailwind CSS Blog

Recent Commits to openclaw:main

fix(cron): preserve runtime snapshot for isolated delivery fix(test): model active assistant failover attempts · openclaw/openclaw@c55bee5 docs: update changelog for bug sweep landings test: fix mock signatures for tsgo · openclaw/openclaw@aa05c5c docs: document fail-closed behavior for rejected modelPatterns · openclaw/openclaw@36f269d docs(manifest): note safe-regex validation for modelPatterns · openclaw/openclaw@e7c7ee4 test: tighten oversized metadata assertion to check exact id in __ope… · openclaw/openclaw@aff8e64 fix(security): escape field names in transcript regex extraction style: use bracket notation for __openclaw to satisfy no-underscore-d… · openclaw/openclaw@9a6c161 fix(logging): keep string failure codes on EPIPE · openclaw/openclaw@78a1e7d fix(logging): exit on stdout/stderr EPIPE instead of spinning · openclaw/openclaw@2aa5f17 fix(logging): preserve failure exit on EPIPE · openclaw/openclaw@623a60a fix(docs): keep spellcheck bash 3.2-compatible · openclaw/openclaw@778fa87 fix(scripts): docs-spellcheck.sh fails on bash 3.2 with set -u · openclaw/openclaw@fef57f9 fix(test): assert e2e agent reply payloads · openclaw/openclaw@74f3a1e test(gateway): pin live gateway models to pi runtime · openclaw/openclaw@c88f660 perf: speed up local TUI startup · openclaw/openclaw@a0023fb refactor: share realtime voice activation helpers (#86615) · openclaw/openclaw@d0ab0d9 fix(feishu): render native presentation buttons (#86588) · openclaw/openclaw@170e0aa fix(test): narrow plugin gauntlet prebuild · openclaw/openclaw@423f7d2 fix: route Discord gateway metadata through proxy (#86601) · openclaw/openclaw@5b6d409 fix: tighten Discord voice wake matching (#86595) · openclaw/openclaw@f00a912 refactor(logging): share diagnostic message lifecycle · openclaw/openclaw@baab4cf fix(cron): restore suspended lanes to default concurrency · openclaw/openclaw@e844d1d fix(auth): emit one-shot doctor-pointer warning for Keychain-only leg… · openclaw/openclaw@a61d530 fix(codex): recover stale preflight bindings (#86602) · openclaw/openclaw@9b9d897 fix(cron): preserve unsupported payload rows on writes · openclaw/openclaw@c916906 fix(cron): canonicalize preserved row ids · openclaw/openclaw@985bc93 test(cron): pin sequential duration regression · openclaw/openclaw@8351556 docs: update changelog for cron preservation (#86415) · openclaw/openclaw@bdc6b32 build: bump qs to patched release · openclaw/openclaw@9330b76 fix(status): prefer active OAuth for runtime aliases chore(acpx): bump bundled acpx to 0.10.0 · openclaw/openclaw@407cf8e docs: make changelog release-owned · openclaw/openclaw@c0f2d89 fix(google): stop appending preview to flash lite · openclaw/openclaw@915c820 docs: update changelog for bug sweep landings · openclaw/openclaw@cd7994f fix(crabbox): detect timed macos js commands · openclaw/openclaw@44bb0be fix(mantis): release telegram user leases on startup failure · openclaw/openclaw@cf27567 fix(agents): keep cron media completions run-scoped · openclaw/openclaw@f5d2db2 fix(agents): deliver stale cron media completions · openclaw/openclaw@f01b2a8 fix(agents): notify stale cron media failures · openclaw/openclaw@baf469f guide workspace-only scratch paths fix(cron): gate lifecycle diagnostic events behind isDiagnosticsEnabled · openclaw/openclaw@4853222 fix(cron): emit message.queued/processed for isolated-agent turns fix(cron): address review — drop unsupported taskLabel, pair with ses… · openclaw/openclaw@804a31e fix(cron): report rotated session in final diagnostics · openclaw/openclaw@207a5a2 fix: hydrate current turn image attachments · openclaw/openclaw@b5ada80 fix(gateway): ignore inherited launchd env for respawn · openclaw/openclaw@177ebdc fix(test): preserve undici exports in discord proxy tests · openclaw/openclaw@b0c8a4d fix: raise default cron concurrency · openclaw/openclaw@bc12e04 fix(doctor): skip restart prompt when gateway is healthy after recent… · openclaw/openclaw@6e8d2db fix: emit agent.send lifecycle hooks on rotation (#85875) · openclaw/openclaw@8129dba fix(crabbox): bootstrap macos shell js commands · openclaw/openclaw@7cd15d2 fix: preflight malformed openshell exec commands fix: tighten openshell exec preflight · openclaw/openclaw@822ee62 docs: clarify unshipped compat policy · openclaw/openclaw@f87aa0f fix(update): allow package-manager hardlinks in swaps · openclaw/openclaw@8061d66 docs: ban repo-hosted proof artifacts · openclaw/openclaw@17954a4 fix(discord): restore bare numeric channel sends (#86571) · openclaw/openclaw@c5b9872 fix(installer): handle alpine apk runtime floors · openclaw/openclaw@b83dfcb fix(security): audit Claude permission overrides under YOLO (#86557) · openclaw/openclaw@bd65b42 fix: speed up Discord voice wake consults · openclaw/openclaw@5ae91f0 fix(qa): harden restart inflight Windows scenario · openclaw/openclaw@3eb06e3 Recover Codex context overflow prompt errors (#85542) · openclaw/openclaw@5cfa577 docs: update changelog for #70473 · openclaw/openclaw@d967760 fix(agents): derive overflow budgets from provider errors · openclaw/openclaw@d5b0174 fix(plugins): only memoize complete metadata snapshots · openclaw/openclaw@3137622 docs: update changelog for media wake fallback (#85489) · openclaw/openclaw@a11d4e6 fix: fallback after active media wake failure (#85489) · openclaw/openclaw@1b64ccb perf(plugins): reuse derived metadata snapshots · openclaw/openclaw@159e440 docs: require maintainer-editable PR branches · openclaw/openclaw@f271f00 fix: scan OpenClaw sessions in agent transcript finder · openclaw/openclaw@4012ae4 docs: note agent transcript OpenClaw session scan · openclaw/openclaw@dd375f9 docs: require generic local fixes · openclaw/openclaw@fc93af5 fix: broaden leading voice wake fuzzing · openclaw/openclaw@a9c91ca test(agents): preserve provider hook mock exports (#86523) · openclaw/openclaw@657b246 Policy: add agent-scoped policy overlays (#85817) · openclaw/openclaw@fbb6340 fix(kilocode): normalize string stop param to array in stream wrapper… · openclaw/openclaw@abe9923 Doctor: expose shell completion health findings (#85566) · openclaw/openclaw@dc17412 fix(agents): honor effective exec policy for Claude live Bash (#86330) fix(test): stabilize e2e runtime imports fix(test): clean plugin gauntlet temp roots · openclaw/openclaw@633e4b8 perf: cache plugin package realpaths (#86517) · openclaw/openclaw@69d728a fix(qa): settle restart races with live budget · openclaw/openclaw@2cac9e5 fix(crabbox): sync full sparse lease runs · openclaw/openclaw@e97e831 fix(qa): extend config mutation Windows budget fix(qa): extend config cleanup Windows budget · openclaw/openclaw@8a93851 test(crabbox): tolerate Windows shell capture · openclaw/openclaw@50d6611 fix(sessions): stop doctor OOM on large session stores and reclaim st… · openclaw/openclaw@89aea9b fix(ollama): strip inline kimi cloud reasoning leak (#86515) fix(discord): merge media captions into one message (#86487) · openclaw/openclaw@bc10fad fix(utils): clamp fetch timeout timers (#85985) fix(ui): preserve user code block rendering (#85942) fix(memory): prevent silent vector index degradation when embedding p… docs: clarify agent transcript placeholders · openclaw/openclaw@8da8bc4 test(qa): annotate live transport RTT measurements · openclaw/openclaw@bb6f37e fix(qqbot): derive outbound watchdog from configured timeouts (#85267… · openclaw/openclaw@aa702cf fix(test): clean kitchen sink rpc temp state · openclaw/openclaw@6f695c1 fix: quiet missing daily memory reads fix: tighten empty plugin registry reuse · openclaw/openclaw@026cfb6

fix(security): guard plugin modelPatterns with compileSafeRegex · openclaw/openclaw@117e082

SebTardif · 2026-05-26 · via Recent Commits to openclaw:main

Original file line number	Diff line number	Diff line change
`@@ -1705,6 +1705,24 @@ describe("resolvePluginProviders", () => {`
`1705`	`1705`	`expectModelOwningPluginIds("gpt-5.4", ["workspace-openai"]);`
`1706`	`1706`	`});`
`1707`	`1707`
	`1708`	`+it("rejects ReDoS modelPatterns via compileSafeRegex guard", () => {`
	`1709`	`+setManifestPlugins([`
	`1710`	`+createManifestProviderPlugin({`
	`1711`	`+id: "malicious",`
	`1712`	`+providerIds: ["malicious"],`
	`1713`	`+modelSupport: {`
	`1714`	`+modelPatterns: ["(a+)+$"],`
	`1715`	`+},`
	`1716`	`+}),`
	`1717`	`+]);`
	`1718`	`+`
	`1719`	`+// Without the guard, this input causes catastrophic backtracking.`
	`1720`	`+// With compileSafeRegex, the pattern is rejected and the plugin is not matched.`
	`1721`	`+const start = performance.now();`
	`1722`	`+expectModelOwningPluginIds("a".repeat(30) + "!", undefined);`
	`1723`	`+expect(performance.now() - start).toBeLessThan(50);`
	`1724`	`+});`
	`1725`	`+`
`1708`	`1726`	`it("preserves LM Studio @iq* quant suffixes when resolving model-owned provider plugins", () => {`
`1709`	`1727`	`setManifestPlugins([`
`1710`	`1728`	`createManifestProviderPlugin({`

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。