fix(memory): prevent QMD scope deny bypass

2026-04-19 04:57:26 +00:00 · 2026-02-15 02:41:30 +00:00
parent 014b42dd45
commit f9bb748a6c
11 changed files with 80 additions and 6 deletions
--- a/docs/concepts/session.md
+++ b/docs/concepts/session.md
@@ -123,6 +123,8 @@ Block delivery for specific session types without listing individual ids.
      rules: [
        { action: "deny", match: { channel: "discord", chatType: "group" } },
        { action: "deny", match: { keyPrefix: "cron:" } },
+        // Match the raw session key (including the `agent:<id>:` prefix).
+        { action: "deny", match: { rawKeyPrefix: "agent:main:discord:" } },
      ],
      default: "allow",
    },