feat: security posture fix and egress UI in agent detail#72
Merged
Conversation
Replace all em dashes with hyphens or commas in: - checks_openclaw.go (10 occurrences) - checks_nanoclaw.go (6 occurrences) - checks_mcp.go (4 occurrences) - sarif.go (1 occurrence) - auditcheck_test.go (2 occurrences) - tmpl_audit.go sandbox label - handlers.go OpenClaw product description
New "Egress" tab on agent detail showing: - Active integration presets (colored pills) - Allowed/blocked domains - Per-tool restrictions table (tool -> allowed domains) - Available presets list with descriptions - Instructions for YAML config Also: fix em dash in OpenClaw product description
Security Posture: - Severity badges are now filled pills (background + text color) matching the dashboard design system, not just text with border Agent detail: - New "Sessions" section in Overview tab showing recent sessions for this agent with events, duration, threats, and risk score - Links to session trace page Egress tab: - Shows integration presets, allowed/blocked domains, tool restrictions - Available presets list with descriptions
Full CRUD for egress policies from the dashboard:
- Integration presets as checkboxes (16 services)
- Allowed/blocked domains as text inputs
- Per-tool restrictions with add/remove
- Saves to config on submit, persists to oktsec.yaml
- POST /dashboard/agents/{name}/egress endpoint
- listContains template function for checkbox state
Hero stat cells use flexbox column with justify-content:center so all 4 cells align vertically regardless of content height (the posture score ring is taller than plain numbers).
Move Sessions table out of the comm partners grid row into a new ad-grid alongside Recent Messages so they display as 2 columns.
Row 1: Sessions + Recent Messages (2 columns) Row 2: Top Triggered Rules + Communication Partners (2 columns) Row 3: LLM Threat Intelligence (full width, if data exists)
Agents page uses 2-column layout when discovered agents exist: left column is the registered agents grid, right column (280px) is the discovered from traffic sidebar with register buttons.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Two fixes in one PR:
Security Posture: em dash cleanup
Agent Detail: Egress tab
Files changed
internal/auditcheck/checks_openclaw.gointernal/auditcheck/checks_nanoclaw.gointernal/auditcheck/checks_mcp.gointernal/auditcheck/sarif.gointernal/auditcheck/auditcheck_test.gointernal/dashboard/tmpl_audit.gointernal/dashboard/handlers.gointernal/dashboard/templates.goTest plan
go test ./...all green