惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

N
News and Events Feed by Topic
Malwarebytes
Malwarebytes
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
C
Cybersecurity and Infrastructure Security Agency CISA
F
Future of Privacy Forum
C
Cisco Blogs
T
The Exploit Database - CXSecurity.com
A
Arctic Wolf
S
Securelist
K
Kaspersky official blog
S
Schneier on Security
T
ThreatConnect
T
Tenable Blog
Spread Privacy
Spread Privacy
T
True Tiger Recordings
AWS News Blog
AWS News Blog
F
Fox-IT International blog
量子位
T
Threatpost
V
Vulnerabilities – Threatpost
C
CERT Recently Published Vulnerability Notes
Cisco Talos Blog
Cisco Talos Blog
GbyAI
GbyAI
宝玉的分享
宝玉的分享
腾讯CDC
G
Google Developers Blog
aimingoo的专栏
aimingoo的专栏
Cyberwarzone
Cyberwarzone
有赞技术团队
有赞技术团队
S
SegmentFault 最新的问题
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
V
Visual Studio Blog
U
Unit 42
雷峰网
雷峰网
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Simon Willison's Weblog
Simon Willison's Weblog
O
OpenAI News
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
The GitHub Blog
The GitHub Blog
The Register - Security
The Register - Security
MyScale Blog
MyScale Blog
小众软件
小众软件
A
About on SuperTechFans
Last Week in AI
Last Week in AI
Y
Y Combinator Blog
博客园 - 三生石上(FineUI控件)
美团技术团队
Google Online Security Blog
Google Online Security Blog
P
Proofpoint News Feed
MongoDB | Blog
MongoDB | Blog

Recent Commits to openclaw:main

docs: clarify config default review policy (#86329) docs: clean changelog script entries fix(scripts): budget restart benchmark timeouts fix: align ui vitest config assertion · openclaw/openclaw@730fd19 fix: route unit ui vitest targets narrowly · openclaw/openclaw@777402e fix: route explicit ui vitest targets narrowly · openclaw/openclaw@56a383c fix(android): harden play media permission removal fix(webchat): stabilize live transcript run state · openclaw/openclaw@119a01c fix(scripts): fail restart benchmark regressions · openclaw/openclaw@95d1b39 fix(openai): scope external codex auth to realtime fix(openai): prefer codex auth for GPT realtime · openclaw/openclaw@48c4f57 fix(openai): discover codex cli auth for provider checks · openclaw/openclaw@4656275 fix(android): keep talk mode on realtime relay · openclaw/openclaw@70614f8 test(android): add gateway connect adb probe · openclaw/openclaw@d7aa1f3 fix(android): stabilize realtime talk connection state · openclaw/openclaw@ffb02a5 test(android): add voice mode adb e2e harness · openclaw/openclaw@e52a3b3 fix(ci): stabilize deadcode and catalog checks · openclaw/openclaw@3db1508 fix(scripts): prebuild gateway cpu bench · openclaw/openclaw@ca70015 fix(e2e): harden bundled lifecycle probe on Windows · openclaw/openclaw@4798264 test(e2e): sample kitchen sink rpc peak rss · openclaw/openclaw@60c0f24 fix(scripts): remove stale deadcode allowlist entries · openclaw/openclaw@ea3bb92 fix(telegram): route polling diagnostics away from errors · openclaw/openclaw@b5c1199 fix(plugins): support linked source checkouts on Windows · openclaw/openclaw@793e300 fix(gateway): back off session tool mirrors under pressure (#84846) · openclaw/openclaw@42bdc94 fix(config): skip shell env fallback on Windows (#85739) · openclaw/openclaw@06bf302 fix(gateway): avoid duplicate session message broadcasts · openclaw/openclaw@1459044 fix: repair anchorless iMessage watch payloads · openclaw/openclaw@f37fbc9 fix(cli): route node status hints to stdout (#85780) · openclaw/openclaw@749692e fix(oc-path): support deep config edits (#86060) · openclaw/openclaw@3a72a30 fix(config): quiet benign metadata anomaly output · openclaw/openclaw@f3f4f29 fix(test): fail multi-node update regressions · openclaw/openclaw@732cf54 fix(google-vertex): support production ADC modes (#83971) · openclaw/openclaw@f09b4eb test(e2e): expose corrupt plugin deps smoke · openclaw/openclaw@fa3ff4d fix(codex): log app-server approval promotion trigger · openclaw/openclaw@d9af23f test(e2e): harden multi-node update smoke Clean up browser MCP subprocess tree (#85832) · openclaw/openclaw@8dc6b4d fix(agents): log warnings instead of swallowing subagent errors (#82943) · openclaw/openclaw@907bc03 fix(compaction): preserve partial summary on mid-chain chunk failure … · openclaw/openclaw@f0061dd fix(config): do not suppress recovery retry after failed backup resto… · openclaw/openclaw@5d174a5 chore: release 2026.5.25 fix(installer): support alpine cli installs · openclaw/openclaw@f68ed72 test(agents): keep runtime-plan provider mock current fix(scripts): launch env package scripts on Windows · openclaw/openclaw@4d4ce9e fix(agents): cache fallback provider resolution · openclaw/openclaw@3c8d101 fix(test): make import timing scripts Windows-safe · openclaw/openclaw@8ae9977 fix(telegram): transient Telegram pairing prompts (#85555) · openclaw/openclaw@8209426 fix(test): make max Vitest scripts Windows-safe · openclaw/openclaw@b681d5d fix(doctor): migrate Feishu account bot names (#86081) · openclaw/openclaw@9e8cc7e fix(scripts): prefilter conflict marker scans docs: add ClawSweeper review policy to AGENTS (#86197) · openclaw/openclaw@242e876 fix(installer): avoid before with npm release-age configs (#85491) · openclaw/openclaw@4742db6 fix(e2e): retry Windows kitchen sink probes · openclaw/openclaw@3e275a5 fix(installer): install node with apk on alpine fix(installer): detect musl linux shells · openclaw/openclaw@acfed37 perf(plugins,gateway): thread metadata snapshot + discovery through h… · openclaw/openclaw@8ccb11c fix(ui): split control ui runtime chunks · openclaw/openclaw@8bf4f7d refactor(config): extract GoogleChat schema into zod-schema.providers… · openclaw/openclaw@fe34141 fix(update): suppress internal handoff version warnings · openclaw/openclaw@6cc8244 test(e2e): select installable bundled plugins · openclaw/openclaw@0acc3e3 fix(scripts): harden Windows native opus install · openclaw/openclaw@43252c8 fix(agents): match runtime policy entries when session provider is em… fix(scripts): harden Windows generated formatting · openclaw/openclaw@0a98559 fix(mcp): bound tools/list during catalog discovery (#85063) · openclaw/openclaw@07f500a fix(test): focus plugin binding Docker smoke · openclaw/openclaw@dfa1a51 test(e2e): fail release memory indexing errors test(daemon): fail launchd integration bootstrap errors · openclaw/openclaw@af07769 feat(imessage): support thumb approval reactions (#85952) · openclaw/openclaw@5c7980f fix(crabbox): default macos aws runs on demand fix(scripts): preserve test passthrough args · openclaw/openclaw@e4332f7 fix(e2e): harden Windows plugin assertions fix(test): mount upgrade survivor helper · openclaw/openclaw@5f03154 fix(android): prevent stale chat during session switches fix(android): keep permission setup action visible · openclaw/openclaw@94bc18a style(android): sharpen voice mode surfaces · openclaw/openclaw@c452510 fix(android): hide internal chat content blocks · openclaw/openclaw@d86ed21 style(android): refine list surface spacing · openclaw/openclaw@955909c feat(android): add pair new gateway action · openclaw/openclaw@cc5eb97 Advance iMessage catchup cursor after live handling (#85475) · openclaw/openclaw@102555c fix(scripts): ignore forwarded arg separator · openclaw/openclaw@79ee70c fix(test): fail empty gateway startup samples · openclaw/openclaw@5a8ce6a fix(e2e): harden Windows kitchen sink assertions · openclaw/openclaw@87a2eba fix(e2e): harden Telegram credential paths on Windows · openclaw/openclaw@c643370 fix(android): align setup pairing scopes fix(android): complete qr setup operator handoff · openclaw/openclaw@be9bb77 fix(test): copy cleanup smoke prepare hook · openclaw/openclaw@dbc08f6 fix(secrets): allow hash in exec SecretRef ids (#86072) · openclaw/openclaw@675158c fix(media): use static image compression metadata · openclaw/openclaw@694d45e fix(release): verify large plugin npm packs fix(test): require kitchen sink diagnostic canaries · openclaw/openclaw@7e51f83 fix(scripts): harden Windows upgrade survivor recipe · openclaw/openclaw@483d7be fix(installer): count verify progress stage fix: Refine PR template for review state (#86054) fix(test): repair split agent shard runs · openclaw/openclaw@125d82c fix(codex): harden Windows protocol formatting · openclaw/openclaw@ce48e4c fix(openrouter): use endpoint context limits (#86041) · openclaw/openclaw@dd01a2e test(qa): remove brittle capability flip setup turn fix(telegram): migrate legacy cache sidecars · openclaw/openclaw@eb9b882 fix(telegram): migrate account topic cache sidecars · openclaw/openclaw@5cfb12f fix(scripts): harden Windows ZAI fallback repro · openclaw/openclaw@5be62e7 style(android): sharpen v2 screen rhythm · openclaw/openclaw@400d90a
fix(docker): restore config parent ownership · openclaw/openclaw@908b894
sallyom · 2026-05-25 · via Recent Commits to openclaw:main

@@ -327,15 +327,24 @@ describe("Dockerfile", () => {

327327

it("pre-creates named-volume mount points before switching to the node user", async () => {

328328

const dockerfile = await readFile(dockerfilePath, "utf8");

329329

const runtimeStageIndex = dockerfile.lastIndexOf("FROM base-runtime");

330-

const stateDirIndex = dockerfile.indexOf(

331-

"RUN install -d -m 0700 -o node -g node \\",

330+

const parentConfigDirIndex = dockerfile.indexOf(

331+

"RUN install -d -m 0755 -o node -g node /home/node/.config",

332332

runtimeStageIndex,

333333

);

334+

const stateDirIndex = dockerfile.indexOf(

335+

"install -d -m 0700 -o node -g node \\",

336+

parentConfigDirIndex,

337+

);

334338

const userIndex = dockerfile.indexOf("USER node", runtimeStageIndex);

335339336340

expect(runtimeStageIndex).toBeGreaterThan(-1);

341+

// Regression: /home/node/.config parent must be created with node ownership

342+

// before the leaf .config/openclaw dir (issue #85968).

343+

expect(parentConfigDirIndex).toBeGreaterThan(-1);

337344

expect(stateDirIndex).toBeGreaterThan(-1);

338345

expect(userIndex).toBeGreaterThan(-1);

346+

expect(parentConfigDirIndex).toBeGreaterThan(runtimeStageIndex);

347+

expect(parentConfigDirIndex).toBeLessThan(stateDirIndex);

339348

expect(stateDirIndex).toBeGreaterThan(runtimeStageIndex);

340349

expect(stateDirIndex).toBeLessThan(userIndex);

341350

expect(dockerfile).not.toContain("mkdir -p /home/node/.openclaw");

@@ -347,6 +356,10 @@ describe("Dockerfile", () => {

347356

expect(dockerfile).toContain(

348357

"stat -c '%U:%G %a' /home/node/.openclaw/workspace | grep -qx 'node:node 700'",

349358

);

359+

// Regression: assert parent /home/node/.config is also node-owned (issue #85968).

360+

expect(dockerfile).toContain(

361+

"stat -c '%U:%G %a' /home/node/.config | grep -qx 'node:node 755'",

362+

);

350363

expect(dockerfile).toContain(

351364

"stat -c '%U:%G %a' /home/node/.config/openclaw | grep -qx 'node:node 700'",

352365

);

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。