refactor(security): reuse shared allowlist normalization

2026-05-08 00:41:25 +00:00 · 2026-02-18 23:48:23 +00:00
parent 54e9924fc3
commit 89a0b95af4
2 changed files with 6 additions and 5 deletions
--- a/src/commands/doctor-security.ts
+++ b/src/commands/doctor-security.ts
@@ -6,6 +6,7 @@ import type { OpenClawConfig, GatewayBindMode } from "../config/config.js";
 import { resolveGatewayAuth } from "../gateway/auth.js";
 import { isLoopbackHost, resolveGatewayBindHost } from "../gateway/net.js";
 import { readChannelAllowFromStore } from "../pairing/pairing-store.js";
+import { normalizeStringEntries } from "../shared/string-normalization.js";
 import { note } from "../terminal/note.js";

 export async function noteSecurityWarnings(cfg: OpenClawConfig) {
@@ -84,7 +85,9 @@ export async function noteSecurityWarnings(cfg: OpenClawConfig) {
  }) => {
    const dmPolicy = params.dmPolicy;
    const policyPath = params.policyPath ?? `${params.allowFromPath}policy`;
-    const configAllowFrom = (params.allowFrom ?? []).map((v) => String(v).trim());
+    const configAllowFrom = normalizeStringEntries(
+      Array.isArray(params.allowFrom) ? params.allowFrom : undefined,
+    );
    const hasWildcard = configAllowFrom.includes("*");
    const storeAllowFrom = await readChannelAllowFromStore(params.provider).catch(() => []);
    const normalizedCfg = configAllowFrom