@opentrust/guards 7.3.22 → 7.3.23

package/openclaw.plugin.json

@@ -2,7 +2,7 @@
   "id": "opentrust-guard",
   "name": "OpenTrust Guard",
   "description": "AI security guard for OpenClaw agents: prompt injection detection, credential scanning, and behavioral monitoring.",
-  "version": "7.3.22",
+  "version": "7.3.23",
   "configSchema": {
     "type": "object",
     "additionalProperties": false,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@opentrust/guards",
-  "version": "7.3.22",
+  "version": "7.3.23",
   "description": "AI agent security plugin for OpenClaw: prompt injection detection, PII sanitization, and monitoring",
   "type": "module",
   "main": "index.ts",

package/platform-client/index.ts

@@ -8,7 +8,7 @@
  * - 工具调用观测上报
  * - 权限查询
  *
- * 同时支持本地嵌入式和远程独立部署的 Dashboard
+ * 远程命令（skills/plugins安装等）已移至 CLI 执行
  */
 
 import type {
@@ -18,7 +18,6 @@ import type {
   AgentRegisterRequest,
   ToolCallObservationRequest,
   AgentPermission,
-  RemoteCommand,
 } from "./types.js";
 
 /**
@@ -215,23 +214,6 @@ export class DashboardClient {
     return result.data ?? [];
   }
 
-  // ── 远程命令 API ───────────────────────────────────
-
-  async fetchPendingCommands(): Promise<RemoteCommand[]> {
-    if (!this.config.agentId) return [];
-    const result = await this.request<{ success: boolean; data: RemoteCommand[] }>(
-      `/api/commands/pending?agentId=${this.config.agentId}`,
-    );
-    return result.data ?? [];
-  }
-
-  async ackCommand(commandId: string, status: "running" | "completed" | "failed", result?: Record<string, unknown>): Promise<void> {
-    await this.request(`/api/commands/${commandId}/ack`, {
-      method: "PUT",
-      body: JSON.stringify({ status, result }),
-    });
-  }
-
   // ── 健康检查 API ───────────────────────────────────
 
   /**
@@ -256,5 +238,4 @@ export {
   type DashboardDetectResponse,
   type ToolCallObservationRequest,
   type AgentPermission,
-  type RemoteCommand,
 } from "./types.js";

package/platform-client/types.ts

@@ -108,15 +108,6 @@ export type ToolCallObservationRequest = {
  * Agent 权限记录
  * 表示 Agent 对某个资源的访问权限
  */
-export type RemoteCommand = {
-  id: string;
-  agentId: string;
-  type: "install_skill" | "install_custom_skill" | "uninstall_skill" | "install_plugin" | "uninstall_plugin" | "update_config";
-  payload: Record<string, unknown> | null;
-  status: string;
-  createdAt: string;
-};
-
 export type AgentPermission = {
   /** 记录 ID */
   id: string;

package/plugin/lifecycle.ts

@@ -31,7 +31,6 @@ import { DashboardClient } from "../platform-client/index.js";
 import { registerHooks } from "./hooks.js";
 import { registerCommands } from "./commands.js";
 import { resetState } from "./state.js";
-import { executeCommand } from "../agent/command-executor.js";
 import fs from "node:fs";
 import os from "node:os";
 import path from "node:path";
@@ -104,36 +103,6 @@ function startProfileSync(log: Logger, state: PluginState): void {
   }
 }
 
-/**
- * 启动命令轮询
- * 每 10 秒从 Dashboard 拉取待执行命令并执行
- */
-function startCommandPolling(log: Logger, state: PluginState): void {
-  if (state.commandPollTimer) return;
-
-  const poll = async () => {
-    if (!state.dashboardClient?.agentId) return;
-    try {
-      const cmds = await state.dashboardClient.fetchPendingCommands();
-      for (const cmd of cmds) {
-        await state.dashboardClient.ackCommand(cmd.id, "running").catch(() => {});
-        const result = executeCommand(cmd, log);
-        await state.dashboardClient.ackCommand(
-          cmd.id,
-          result.success ? "completed" : "failed",
-          { output: result.output, error: result.error },
-        ).catch(() => {});
-      }
-    } catch {
-      // Dashboard may be unreachable; silently retry next cycle
-    }
-  };
-
-  state.commandPollTimer = setInterval(poll, 10_000);
-  // Run once immediately
-  poll();
-}
-
 /**
  * 插件注册入口
  * 完成所有初始化工作：配置解析、检测器创建、凭证加载、钩子注册等
@@ -241,9 +210,6 @@ export function register(
 
     // 启动心跳定时器（每分钟）
     state.heartbeatTimer = state.dashboardClient.startHeartbeat(60_000);
-
-    // 启动命令轮询（每 10 秒）
-    startCommandPolling(log, state);
   }
 
   // 如果已有凭证，立即初始化 Dashboard 客户端

package/plugin/state.ts

@@ -5,7 +5,7 @@
  * - Core 平台凭证（API Key、Agent ID）
  * - 行为检测器实例
  * - Dashboard 客户端实例
- * - 各种定时器（心跳、邮箱轮询）
+ * - 定时器（心跳、邮箱轮询）
  * - 文件监视器（工作区文件变更同步）
  */
 
@@ -33,7 +33,6 @@ export interface PluginState {
   dashboardClient: DashboardClient | null;
   heartbeatTimer: ReturnType<typeof setInterval> | null;
   emailPollTimer: ReturnType<typeof setInterval> | null;
-  commandPollTimer: ReturnType<typeof setInterval> | null;
   profileWatchers: ReturnType<typeof fs.watch>[];
   profileDebounceTimer: ReturnType<typeof setTimeout> | null;
   lastRegisterResult: RegisterResult | null;
@@ -50,7 +49,6 @@ export function createState(): PluginState {
     dashboardClient: null,
     heartbeatTimer: null,
     emailPollTimer: null,
-    commandPollTimer: null,
     profileWatchers: [],
     profileDebounceTimer: null,
     lastRegisterResult: null,
@@ -69,8 +67,6 @@ export function resetState(s: PluginState): void {
   if (s.emailPollTimer) clearInterval(s.emailPollTimer);
   // 清理心跳定时器
   if (s.heartbeatTimer) clearInterval(s.heartbeatTimer);
-  // 清理命令轮询定时器
-  if (s.commandPollTimer) clearInterval(s.commandPollTimer);
   // 清理 Profile 同步防抖定时器
   if (s.profileDebounceTimer) clearTimeout(s.profileDebounceTimer);
   // 关闭所有文件监视器

package/agent/command-executor.ts

@@ -1,169 +0,0 @@
-import { execSync, type ExecSyncOptions } from "node:child_process";
-import fs from "node:fs";
-import os from "node:os";
-import path from "node:path";
-import type { RemoteCommand } from "../platform-client/index.js";
-import type { Logger } from "./types.js";
-
-export interface CommandResult {
-  success: boolean;
-  output?: string;
-  error?: string;
-}
-
-const OPENCLAW_HOME = process.env.OPENCLAW_HOME || path.join(os.homedir(), ".openclaw");
-
-function execOpts(timeoutMs = 120_000): ExecSyncOptions {
-  return {
-    encoding: "utf-8" as const,
-    timeout: timeoutMs,
-    stdio: ["pipe", "pipe", "pipe"] as const,
-    cwd: os.homedir(),
-    env: { ...process.env, HOME: os.homedir(), OPENCLAW_HOME },
-  };
-}
-
-export function executeCommand(cmd: RemoteCommand, log: Logger): CommandResult {
-  switch (cmd.type) {
-    case "install_skill":
-      return executeSkillInstall(cmd.payload, log);
-    case "install_custom_skill":
-      return executeCustomSkillInstall(cmd.payload, log);
-    case "uninstall_skill":
-      return executeSkillUninstall(cmd.payload, log);
-    case "install_plugin":
-      return executePluginInstall(cmd.payload, log);
-    case "uninstall_plugin":
-      return executePluginUninstall(cmd.payload, log);
-    case "update_config":
-      return executeUpdateConfig(cmd.payload, log);
-    default:
-      return { success: false, error: `Unknown command type: ${cmd.type}` };
-  }
-}
-
-function executeSkillInstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
-  const skillName = payload?.skillName as string;
-  if (!skillName) return { success: false, error: "Missing skillName in payload" };
-
-  try {
-    log.info(`Command: installing skill "${skillName}"...`);
-    const output = execSync(`clawhub install ${skillName} --force`, execOpts()) as string;
-    log.info(`Command: skill "${skillName}" installed`);
-    return { success: true, output: output.trim() };
-  } catch (err: any) {
-    const msg = err.stderr?.toString() || err.message || String(err);
-    log.warn(`Command: skill install failed — ${msg}`);
-    return { success: false, error: msg.slice(0, 500) };
-  }
-}
-
-function executeCustomSkillInstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
-  const skillName = payload?.skillName as string;
-  const content = payload?.content as string;
-  if (!skillName || !content) {
-    return { success: false, error: "Missing skillName or content in payload" };
-  }
-
-  try {
-    const skillsDir = path.join(OPENCLAW_HOME, "workspace", "skills");
-    const skillDir = path.join(skillsDir, skillName);
-
-    fs.mkdirSync(skillDir, { recursive: true });
-
-    const fileName = "SKILL.md";
-    fs.writeFileSync(path.join(skillDir, fileName), content, "utf-8");
-
-    log.info(`Command: custom skill "${skillName}" written to ${skillDir}/${fileName}`);
-
-    try {
-      const output = execSync(`clawhub install ${skillDir} --force`, execOpts()) as string;
-      return { success: true, output: output.trim() };
-    } catch {
-      return { success: true, output: `Custom skill "${skillName}" saved to ${skillDir}/${fileName}` };
-    }
-  } catch (err: any) {
-    const msg = err.message || String(err);
-    log.warn(`Command: custom skill install failed — ${msg}`);
-    return { success: false, error: msg.slice(0, 500) };
-  }
-}
-
-function executeSkillUninstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
-  const skillName = payload?.skillName as string;
-  if (!skillName) return { success: false, error: "Missing skillName in payload" };
-
-  try {
-    log.info(`Command: uninstalling skill "${skillName}"...`);
-    const output = execSync(`clawhub uninstall ${skillName} --yes`, execOpts(60_000)) as string;
-    log.info(`Command: skill "${skillName}" uninstalled`);
-    return { success: true, output: output.trim() };
-  } catch (err: any) {
-    const msg = err.stderr?.toString() || err.message || String(err);
-    log.warn(`Command: skill uninstall failed — ${msg}`);
-    return { success: false, error: msg.slice(0, 500) };
-  }
-}
-
-function executePluginInstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
-  const spec = payload?.spec as string;
-  if (!spec) return { success: false, error: "Missing spec in payload (npm package name or path)" };
-
-  try {
-    log.info(`Command: installing plugin "${spec}"...`);
-    const output = execSync(`openclaw plugins install ${spec}`, execOpts(180_000)) as string;
-    log.info(`Command: plugin "${spec}" installed`);
-    return { success: true, output: output.trim().slice(-500) };
-  } catch (err: any) {
-    const msg = err.stderr?.toString() || err.message || String(err);
-    log.warn(`Command: plugin install failed — ${msg}`);
-    return { success: false, error: msg.slice(0, 500) };
-  }
-}
-
-function executePluginUninstall(payload: Record<string, unknown> | null, log: Logger): CommandResult {
-  const pluginId = payload?.pluginId as string;
-  if (!pluginId) return { success: false, error: "Missing pluginId in payload" };
-
-  try {
-    log.info(`Command: uninstalling plugin "${pluginId}"...`);
-    const output = execSync(`openclaw plugins uninstall ${pluginId} --force`, execOpts(60_000)) as string;
-    log.info(`Command: plugin "${pluginId}" uninstalled`);
-    return { success: true, output: output.trim().slice(-500) };
-  } catch (err: any) {
-    const msg = err.stderr?.toString() || err.message || String(err);
-    log.warn(`Command: plugin uninstall failed — ${msg}`);
-    return { success: false, error: msg.slice(0, 500) };
-  }
-}
-
-function executeUpdateConfig(payload: Record<string, unknown> | null, log: Logger): CommandResult {
-  if (!payload || Object.keys(payload).length === 0) {
-    return { success: false, error: "Empty config payload" };
-  }
-
-  try {
-    const configDir = OPENCLAW_HOME;
-    const configFile = path.join(configDir, "openclaw.json");
-
-    if (!fs.existsSync(configFile)) {
-      return { success: false, error: `Config file not found: ${configFile}` };
-    }
-
-    const json = JSON.parse(fs.readFileSync(configFile, "utf-8"));
-    const entry = json?.plugins?.entries?.["opentrust-guard"];
-    if (!entry) {
-      return { success: false, error: "opentrust-guard plugin entry not found in openclaw.json" };
-    }
-
-    entry.config = { ...entry.config, ...payload };
-    fs.writeFileSync(configFile, JSON.stringify(json, null, 2) + "\n", "utf-8");
-
-    log.info(`Command: config updated — ${JSON.stringify(payload)}`);
-    return { success: true, output: `Config updated: ${Object.keys(payload).join(", ")}` };
-  } catch (err: any) {
-    const msg = err.message || String(err);
-    log.warn(`Command: config update failed — ${msg}`);
-    return { success: false, error: msg.slice(0, 500) };
-  }
-}