Peter Steinberger
|
9d30159fcd
|
refactor: dedupe channel and gateway surfaces
|
2026-03-02 19:57:33 +00:00 |
|
Peter Steinberger
|
155118751f
|
refactor!: remove versioned system-run approval contract
|
2026-03-02 01:12:53 +00:00 |
|
Peter Steinberger
|
78a7ff2d50
|
fix(security): harden node exec approvals against symlink rebind
|
2026-02-26 21:47:45 +01:00 |
|
Peter Steinberger
|
10481097f8
|
refactor(security): enforce v1 node exec approval binding
|
2026-02-26 18:09:01 +01:00 |
|
Peter Steinberger
|
4894d907fa
|
refactor(exec-approvals): unify system.run binding and generate host env policy
|
2026-02-26 16:58:01 +01:00 |
|
Peter Steinberger
|
9a4b2266cc
|
fix(security): bind node system.run approvals to env
|
2026-02-26 16:38:07 +01:00 |
|
Peter Steinberger
|
92eb3dfc9d
|
refactor(security): unify exec approval request matching
|
2026-02-26 03:54:37 +01:00 |
|
Peter Steinberger
|
03e689fc89
|
fix(security): bind system.run approvals to argv identity
|
2026-02-26 03:41:31 +01:00 |
|
Peter Steinberger
|
803e02d8df
|
fix: adapt landed fixups to current type and approval constraints
|
2026-02-24 04:20:30 +00:00 |
|
Brian Mendonca
|
3f5e7f8156
|
fix(gateway): consume allow-once approvals to prevent replay
(cherry picked from commit 6adacd447c61b7b743d49e8fabab37fb0b2694c5)
|
2026-02-24 04:20:30 +00:00 |
|
Peter Steinberger
|
4a3f8438e5
|
fix(gateway): bind node exec approvals to nodeId
|
2026-02-24 03:05:58 +00:00 |
|
Peter Steinberger
|
75423a00d6
|
refactor: deduplicate shared helpers and test setup
|
2026-02-23 20:40:44 +00:00 |
|
Brian Mendonca
|
bd8b9af9a7
|
fix(exec): bind env-prefixed shell wrappers to full approval text
(cherry picked from commit 1edf9579882d427322129dc434d0dadc0699102d)
|
2026-02-23 18:56:14 +00:00 |
|
Peter Steinberger
|
6007941f04
|
fix(security): harden and refactor system.run command resolution
|
2026-02-21 11:49:38 +01:00 |
|