github/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-07 18:01:23 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(security): harden Windows child process spawning

Browse Source
This commit is contained in:
Peter Steinberger
2026-02-15 03:24:21 +01:00
parent 7b697d6128
commit a7eb0dd9a5
7 changed files with 29 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tui/tui-local-shell.ts
View File

@@ -107,6 +107,8 @@ export function createLocalShellRunner(deps: LocalShellDeps) {
await new Promise<void>((resolve) => {
const child = spawnCommand(cmd, {
// Intentionally a shell: this is an operator-only local TUI feature (prefixed with `!`)
// and is gated behind an explicit in-session approval prompt.
shell: true,
cwd: getCwd(),
env,