goclaw

mirror of https://github.com/tiennm99/goclaw.git synced 2026-06-10 06:10:46 +00:00

Files

T

viettranx 843b550651 feat: runtime packages UI, pkg-helper, configurable shell deny groups (#244 )

Runtime package management with security hardening:

- pkg-helper: root-privileged daemon for apk install/uninstall via Unix socket
- HTTP API: /v1/packages (list/install/uninstall/runtimes), admin role required for writes
- Shell deny groups: 15 configurable groups (per-agent overrides via context)
- Packages UI: Web page for managing system/pip/npm packages with confirmation dialogs
- Docker: privilege separation (root entrypoint → su-exec drop), init for zombie reaping
- Security: umask socket creation, persist file validation, deny pattern hardening
  (Node.js fetch/http, Python from/import, curl localhost, sensitive env vars)
- Auth: empty gateway token → admin role (dev/single-user mode)

2026-03-17 19:50:26 +07:00

dep_checker.go

feat(skills): system skills integration — toggle, dep checking, per-item install (#161 )

2026-03-12 09:20:41 +07:00

dep_installer.go

feat: runtime packages UI, pkg-helper, configurable shell deny groups (#244 )

2026-03-17 19:50:26 +07:00

dep_scanner.go

feat(skills): system skills integration — toggle, dep checking, per-item install (#161 )

2026-03-12 09:20:41 +07:00

guard.go

feat(skills): skill_manage tool + skill_evolve learning loop (#218 )