| Quellcodebibliothek Statistik Leitseite products/Sources/formale Sprachen/JAVA/Openclaw/src/security/ (KI Agentensystem Version 22©) Datei vom 26.3.2026 mit Größe 1 kB |
|
Quelle audit-channel-account-metadata.test.tsSprache: JAVA |
|||||||||
|
Spracherkennung für: .ts vermutete Sprache: Unknown {[0] [0] [0]} [Methode: Schwerpunktbildung, einfache Gewichte, sechs Dimensionen] import { describe, expect, it } from "vitest";
import type { ChannelPlugin } from "../channels/plugins/types.js"; import type { OpenClawConfig } from "../config/config.js"; import { collectChannelSecurityFindings } from "./audit-channel.js"; function stubChannelPlugin(): ChannelPlugin { return { id: "discord", meta: { id: "discord", label: "Discord", selectionLabel: "Discord", docsPath: "/docs/testing", blurb: "test stub", }, capabilities: { chatTypes: ["direct", "group"], }, config: { listAccountIds: () => [], defaultAccountId: () => "toString", inspectAccount: () => ({ accountId: "toString", enabled: true, configured: true, config: { dangerouslyAllowNameMatching: true }, }), resolveAccount: () => ({ accountId: "toString", enabled: true, config: { dangerouslyAllowNameMatching: true }, }), isEnabled: () => true, isConfigured: () => true, }, security: {}, }; } describe("security audit channel account metadata", () => { it("does not treat prototype properties as explicit account config paths", async () => { const cfg: OpenClawConfig = { channels: { discord: { enabled: true, token: "t", dangerouslyAllowNameMatching: true, accounts: {}, }, }, }; const findings = await collectChannelSecurityFindings({ cfg, plugins: [stubChannelPlugin()], }); const dangerousMatchingFinding = findings.find( (entry) => entry.checkId === "channels.discord.allowFrom.dangerous_name_matching_enab ); expect(dangerousMatchingFinding).toBeDefined(); expect(dangerousMatchingFinding?.title).not.toContain("(account: toString)"); }); }); ¤ Dauer der Verarbeitung: 0.1 Sekunden (vorverarbeitet am 2026-04-27) ¤*© Formatika GbR, Deutschland |
|
2026-05-26