security(feishu): bind doc create grants to trusted requester context (#31184)

Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com>
2026-05-11 07:24:32 +00:00 · 2026-03-01 20:51:45 -06:00
parent e482da6682
commit bbab94c1fe
9 changed files with 142 additions and 91 deletions
--- a/src/plugins/types.ts
+++ b/src/plugins/types.ts
@@ -63,6 +63,10 @@ export type OpenClawPluginToolContext = {
  sessionKey?: string;
  messageChannel?: string;
  agentAccountId?: string;
+  /** Trusted sender id from inbound context (runtime-provided, not tool args). */
+  requesterSenderId?: string;
+  /** Whether the trusted sender is an owner. */
+  senderIsOwner?: boolean;
  sandboxed?: boolean;
 };