security(cli): redact sensitive values in config get output

[SleuthCo]

Summary

runConfigGet() reads raw config values but never applies redaction before printing. Running openclaw config get gateway.token leaks the real credential to the terminal — visible in shell history, scrollback, and screenshots.

This is a 1-line fix using the existing redactConfigObject() from redact-snapshot.ts (already used by the Web UI path) to scrub sensitive fields before output.

Supersedes #13777 (rebased against current HEAD after upstream refactored config get into runConfigGet()).

Fixes #13683

Changes

• Import redactConfigObject from ../config/redact-snapshot.js
• Apply redactConfigObject(snapshot.config) before getAtPath() in runConfigGet()

Test plan

• openclaw config get gateway.token → prints __OPENCLAW_REDACTED__ instead of real token
• openclaw config get gateway.token --json → prints "__OPENCLAW_REDACTED__"
• openclaw config get agents → non-sensitive paths return real values unchanged

🤖 Generated with Claude Code

Co-Authored-By: Claude Opus 4.6 noreply@anthropic.com

Greptile Summary

This PR fixes a security vulnerability where openclaw config get commands leaked sensitive credentials (tokens, passwords, API keys) to terminal output, shell history, and screenshots. The fix applies the existing redactConfigObject() function from src/config/redact-snapshot.ts before retrieving the config value, ensuring sensitive fields are replaced with __OPENCLAW_REDACTED__ sentinel values.

• Imported redactConfigObject from ../config/redact-snapshot.js in src/cli/config-cli.ts:4
• Applied redaction to snapshot.config before getAtPath() in runConfigGet() at src/cli/config-cli.ts:236-237
• The redaction logic is well-tested and already used by the Web UI path and other config endpoints
• Sensitive field detection uses regex patterns matching token, password, secret, apiKey (with exceptions for fields like maxTokens)
• Non-sensitive paths return actual values unchanged

Confidence Score: 5/5

• This PR is safe to merge with minimal risk
• The fix is a targeted 2-line security patch that reuses existing, well-tested redaction infrastructure (redactConfigObject()) already used by the Web UI and gateway config endpoints. The change is minimal, focused, and follows established patterns in the codebase. The redaction function has comprehensive test coverage and handles edge cases (environment variable placeholders, whitelisted fields like maxTokens). No breaking changes or performance concerns.
• No files require special attention

_{Last reviewed commit: 92dace9}

[SleuthCo]

@vincentkoc — small security follow-up to the prototype pollution fix you merged in #22213.

runConfigGet() (extracted in the recent refactor) reads raw config but never calls redactConfigObject() before printing. So openclaw config get gateway.token leaks the real credential to the terminal.

This is a 1-line fix using the existing redactConfigObject() from redact-snapshot.ts that's already wired into the Web UI path. Happy to adjust if needed.

[vincentkoc]

Looks good after validation.

I pushed two follow-ups to this PR branch:

• Added a changelog entry under 2026.2.22 (Unreleased) -> Fixes
• Added a regression test in src/cli/config-cli.test.ts for redacted config get output

Thanks @SleuthCo.