nanoclaw

Files

Cole 1a07869329 security: sanitize env vars from agent Bash subprocesses (#171 )

Use a PreToolUse SDK hook to prepend `unset ANTHROPIC_API_KEY
CLAUDE_CODE_OAUTH_TOKEN` to every Bash command Kit runs, preventing
secret leakage via env/printenv/echo/$PROC. Secrets are now passed
via stdin JSON instead of mounted env files, closing all known
exfiltration vectors.

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-13 22:33:39 +02:00

channels

fix: WhatsApp auth improvements and LID translation for DMs

2026-02-12 22:49:04 +02:00

config.ts

fix: prevent infinite message replay on container timeout (#164 )

2026-02-11 17:25:42 +02:00

container-runner.test.ts

fix: prevent infinite message replay on container timeout (#164 )

2026-02-11 17:25:42 +02:00

container-runner.ts

security: sanitize env vars from agent Bash subprocesses (#171 )

2026-02-13 22:33:39 +02:00

db.test.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

db.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

formatting.test.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

group-queue.test.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

group-queue.ts

Adds Agent Swarms

2026-02-09 02:50:43 +02:00

index.ts

fix: prevent infinite message replay on container timeout (#164 )

2026-02-11 17:25:42 +02:00

ipc-auth.test.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

ipc.ts

fix: pass requiresTrigger through IPC and auto-discover additional directories

2026-02-13 12:18:16 +02:00

logger.ts

Adds Agent Swarms

2026-02-09 02:50:43 +02:00

mount-security.ts

Adds Agent Swarms

2026-02-09 02:50:43 +02:00

router.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

routing.test.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

task-scheduler.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

types.ts

Refactor index (#156 )

2026-02-11 00:36:37 +02:00

whatsapp-auth.ts

fix: WhatsApp auth improvements and LID translation for DMs

2026-02-12 22:49:04 +02:00