github/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-21 12:04:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

scanner: downgrade pipe-to-shell markdown pattern to warn

Browse Source
This commit is contained in:
Vincent Koc
2026-02-27 11:05:53 -08:00
parent b7bf6c6120
commit d40a017a44
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/security/skill-scanner.ts
View File

@@ -324,7 +324,7 @@ const SKILL_MD_RULES: MarkdownRule[] = [
},
{
ruleId: "suspicious.script",
severity: "critical",
severity: "warn",
message: "Pipe-to-shell pattern detected",
pattern: /(curl[^\n]+\|\s*(sh|bash))/i,
},