Skip to content

Commit 0e8c5fd

Browse files
committed
docs: document security audit helpers
1 parent 8408c16 commit 0e8c5fd

24 files changed

Lines changed: 24 additions & 0 deletions

src/config/plugin-auto-enable.core.test.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Covers core plugin auto-enable behavior and bundled plugin defaults.
12
import fs from "node:fs";
23
import path from "node:path";
34
import { afterAll, afterEach, describe, expect, it, vi } from "vitest";

src/security/audit-channel-test-helpers.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Provides channel plugin fixtures for security audit tests.
12
import type { ChannelPlugin } from "../channels/plugins/types.js";
23
import type { OpenClawConfig } from "../config/config.js";
34

src/security/audit-channel.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Audits channel configuration for exposure, auth, and trust risks.
12
import { uniqueStrings } from "@openclaw/normalization-core/string-normalization";
23
import {
34
hasConfiguredUnavailableCredentialStatus,

src/security/audit-deep-code-safety.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Audits code paths for deep safety risks that require manual review.
12
import type { OpenClawConfig } from "../config/types.openclaw.js";
23
import type { SecurityAuditFinding } from "./audit.types.js";
34

src/security/audit-exec-safe-bins.test.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Covers safe-bin audit decisions for exec commands.
12
import { describe, expect, it } from "vitest";
23
import type { OpenClawConfig } from "../config/config.js";
34
import { collectExecRuntimeFindings } from "./audit.js";

src/security/audit-exec-sandbox-host.test.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Covers exec sandbox host audit findings.
12
import { describe, expect, it } from "vitest";
23
import type { OpenClawConfig } from "../config/config.js";
34
import { collectExecRuntimeFindings } from "./audit.js";

src/security/audit-extra.async.test.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Covers asynchronous extra security audit checks.
12
import fs from "node:fs/promises";
23
import os from "node:os";
34
import path from "node:path";

src/security/audit-extra.sync.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Runs synchronous extra security audit checks.
12
import {
23
normalizeOptionalLowercaseString,
34
normalizeOptionalString,

src/security/audit-filesystem-windows.test.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Covers Windows filesystem security audit behavior.
12
import fs from "node:fs/promises";
23
import path from "node:path";
34
import { afterAll, beforeAll, describe, expect, it } from "vitest";

src/security/audit-gateway-auth-selection.test.ts

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,4 @@
1+
// Verifies gateway auth selection audit behavior.
12
import { describe, expect, it } from "vitest";
23
import type { OpenClawConfig } from "../config/config.js";
34
import { resolveGatewayProbeAuthSafe, resolveGatewayProbeTarget } from "../gateway/probe-auth.js";

0 commit comments

Comments
 (0)