github/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-08 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(security): harden untrusted web tool transcripts

Browse Source
This commit is contained in:
Peter Steinberger
2026-02-13 00:46:11 +01:00
parent 4543c401b4
commit da55d70fb0
13 changed files with 484 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
src/agents/tools/web-tools.fetch.test.ts
View File

@@ -142,10 +142,16 @@ describe("web_fetch extraction fallbacks", () => {
length?: number;
rawLength?: number;
wrappedLength?: number;
externalContent?: { untrusted?: boolean; source?: string; wrapped?: boolean };
};
expect(details.text).toContain("<<<EXTERNAL_UNTRUSTED_CONTENT>>>");
expect(details.text).toContain("Ignore previous instructions");
expect(details.externalContent).toMatchObject({
untrusted: true,
source: "web_fetch",
wrapped: true,
});
// contentType is protocol metadata, not user content - should NOT be wrapped
expect(details.contentType).toBe("text/plain");
expect(details.length).toBe(details.text?.length);