npm - @xdarkicex/openclaw-memory-libravdb - Versions diffs - 1.4.53 → 1.4.55 - Mend

@xdarkicex/openclaw-memory-libravdb 1.4.53 → 1.4.55

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/README.md CHANGED Viewed

@@ -154,7 +154,7 @@ openclaw memory search "prior context"
 openclaw memory export --user-id <userId>
 openclaw memory flush --user-id <userId>
 openclaw memory journal --limit 50
-openclaw memory dream-promote --user-id <userId> --dream-file /path/to/DREAMS.md
+openclaw memory dream-promote --user-id <userId> --dream-file ~/DREAMS.md
 ```
 Use [Install](./docs/install.md) for service lifecycle commands and

package/dist/context-engine.js CHANGED Viewed

@@ -312,7 +312,10 @@ function escapeMemoryFactText(text) {
         .replaceAll("<", "&lt;")
         .replaceAll(">", "&gt;")
         .replaceAll('"', "&quot;")
-        .replaceAll("'", "&#39;");
+        .replaceAll("'", "&#39;")
+        .replaceAll("\r", "&#13;")
+        .replaceAll("\n", "&#10;")
+        .replaceAll("\t", "&#9;");
 }
 function buildExactRecallFact(result, token) {
     const factText = extractExactRecallFactText(result.text, token);

package/dist/dream-promotion.js CHANGED Viewed

@@ -1,5 +1,6 @@
 import fs from "node:fs";
 import fsp from "node:fs/promises";
+import os from "node:os";
 import path from "node:path";
 import { getHashBackendName, hashBytes } from "./markdown-hash.js";
 import { formatError } from "./format-error.js";
@@ -10,9 +11,16 @@ const DEFAULT_MIN_UNIQUE_QUERIES = 2;
 const DREAM_PROMOTION_VERSION = 1;
 const DREAM_SOURCE_KIND = "dream";
 export function createDreamPromotionHandle(cfg, getRpc, logger = console, fsApi = createRealFsApi()) {
-    const diaryPath = normalizeDiaryPath(cfg.dreamPromotionDiaryPath);
     const userId = cfg.dreamPromotionUserId?.trim() ?? "";
-    if (cfg.dreamPromotionEnabled !== true || !diaryPath || !userId) {
+    if (cfg.dreamPromotionEnabled !== true || !userId) {
+        return {
+            async start() { },
+            async refresh() { },
+            async stop() { },
+        };
+    }
+    const diaryPath = normalizeDiaryPath(cfg.dreamPromotionDiaryPath);
+    if (!diaryPath) {
         return {
             async start() { },
             async refresh() { },
@@ -341,7 +349,26 @@ function normalizeDiaryPath(value) {
     if (!trimmed) {
         return "";
     }
-    return path.resolve(trimmed);
+    // Reject traversal components — even though path.resolve collapses them,
+    // their presence signals an attempt to escape intended boundaries.
+    const segments = trimmed.split(/[/\\]+/);
+    if (segments.some((s) => s === "..")) {
+        throw new Error(`dream diary path must not contain ".." traversal: ${trimmed}`);
+    }
+    const resolved = path.resolve(trimmed);
+    // Restrict to known-safe locations to prevent arbitrary file reads.
+    // Allowed roots: home directory and the configured OpenClaw state dir.
+    const allowedRoots = [
+        os.homedir(),
+        process.env.OPENCLAW_STATE_DIR,
+    ]
+        .filter((r) => typeof r === "string" && r.trim().length > 0)
+        .map((root) => path.resolve(root));
+    const isAllowed = allowedRoots.some((root) => resolved.startsWith(root + path.sep) || resolved === root);
+    if (!isAllowed) {
+        throw new Error(`dream diary path must be within an allowed root: ${allowedRoots.join(", ")}. Got: ${resolved}`);
+    }
+    return resolved;
 }
 function createRealFsApi() {
     return {

package/dist/index.js CHANGED Viewed

@@ -9467,7 +9467,7 @@ var require_service_config = __commonJS({
     exports2.validateRetryThrottling = validateRetryThrottling;
     exports2.validateServiceConfig = validateServiceConfig;
     exports2.extractAndSelectServiceConfig = extractAndSelectServiceConfig;
-    var os2 = __require("os");
+    var os3 = __require("os");
     var constants_1 = require_constants();
     var DURATION_REGEX = /^\d+(\.\d{1,9})?s$/;
     var CLIENT_LANGUAGE_STRING = "node";
@@ -9766,7 +9766,7 @@ var require_service_config = __commonJS({
         if (Array.isArray(validatedConfig.clientHostname)) {
           let hostnameMatched = false;
           for (const hostname2 of validatedConfig.clientHostname) {
-            if (hostname2 === os2.hostname()) {
+            if (hostname2 === os3.hostname()) {
               hostnameMatched = true;
             }
           }
@@ -24066,7 +24066,7 @@ var require_subchannel_call = __commonJS({
     Object.defineProperty(exports2, "__esModule", { value: true });
     exports2.Http2SubchannelCall = void 0;
     var http2 = __require("http2");
-    var os2 = __require("os");
+    var os3 = __require("os");
     var constants_1 = require_constants();
     var metadata_1 = require_metadata();
     var stream_decoder_1 = require_stream_decoder();
@@ -24074,7 +24074,7 @@ var require_subchannel_call = __commonJS({
     var constants_2 = require_constants();
     var TRACER_NAME = "subchannel_call";
     function getSystemErrorName(errno) {
-      for (const [name, num] of Object.entries(os2.constants.errno)) {
+      for (const [name, num] of Object.entries(os3.constants.errno)) {
         if (num === errno) {
           return name;
         }
@@ -32292,6 +32292,7 @@ function formatError(error) {
 // src/dream-promotion.ts
 import fs from "node:fs";
 import fsp from "node:fs/promises";
+import os from "node:os";
 import path from "node:path";
 // src/markdown-hash.ts
@@ -32505,9 +32506,19 @@ var DEFAULT_DEBOUNCE_MS = 150;
 var DREAM_PROMOTION_VERSION = 1;
 var DREAM_SOURCE_KIND = "dream";
 function createDreamPromotionHandle(cfg, getRpc, logger = console, fsApi = createRealFsApi()) {
-  const diaryPath = normalizeDiaryPath(cfg.dreamPromotionDiaryPath);
   const userId = cfg.dreamPromotionUserId?.trim() ?? "";
-  if (cfg.dreamPromotionEnabled !== true || !diaryPath || !userId) {
+  if (cfg.dreamPromotionEnabled !== true || !userId) {
+    return {
+      async start() {
+      },
+      async refresh() {
+      },
+      async stop() {
+      }
+    };
+  }
+  const diaryPath = normalizeDiaryPath(cfg.dreamPromotionDiaryPath);
+  if (!diaryPath) {
     return {
       async start() {
       },
@@ -32836,7 +32847,26 @@ function normalizeDiaryPath(value) {
   if (!trimmed) {
     return "";
   }
-  return path.resolve(trimmed);
+  const segments = trimmed.split(/[/\\]+/);
+  if (segments.some((s) => s === "..")) {
+    throw new Error(
+      `dream diary path must not contain ".." traversal: ${trimmed}`
+    );
+  }
+  const resolved = path.resolve(trimmed);
+  const allowedRoots = [
+    os.homedir(),
+    process.env.OPENCLAW_STATE_DIR
+  ].filter((r) => typeof r === "string" && r.trim().length > 0).map((root) => path.resolve(root));
+  const isAllowed = allowedRoots.some(
+    (root) => resolved.startsWith(root + path.sep) || resolved === root
+  );
+  if (!isAllowed) {
+    throw new Error(
+      `dream diary path must be within an allowed root: ${allowedRoots.join(", ")}. Got: ${resolved}`
+    );
+  }
+  return resolved;
 }
 function createRealFsApi() {
   return {
@@ -33889,7 +33919,7 @@ function extractExactRecallFactText(text, token) {
   return factSentence ?? tail.split("\n")[0]?.trim() ?? tail;
 }
 function escapeMemoryFactText(text) {
-  return text.replaceAll("&", "&amp;").replaceAll("<", "&lt;").replaceAll(">", "&gt;").replaceAll('"', "&quot;").replaceAll("'", "&#39;");
+  return text.replaceAll("&", "&amp;").replaceAll("<", "&lt;").replaceAll(">", "&gt;").replaceAll('"', "&quot;").replaceAll("'", "&#39;").replaceAll("\r", "&#13;").replaceAll("\n", "&#10;").replaceAll("	", "&#9;");
 }
 function buildExactRecallFact(result, token) {
   const factText = extractExactRecallFactText(result.text, token);
@@ -39324,7 +39354,7 @@ var GrpcKernelClient = class {
 // src/sidecar.ts
 import fs3 from "node:fs";
 import net from "node:net";
-import os from "node:os";
+import os2 from "node:os";
 import path4 from "node:path";
 var STARTUP_CONNECT_MAX_RETRIES = 5;
 var STARTUP_CONNECT_BASE_DELAY_MS = 100;
@@ -39566,7 +39596,7 @@ function resolveConfiguredEndpoint(cfg) {
 function daemonProvisioningHint() {
   return "If you installed the npm package, install and start libravdbd separately; the package does not provision the daemon binary, ONNX Runtime, or model assets.";
 }
-function defaultEndpoint(platform = process.platform, homeDir = os.homedir(), pathExists = fs3.existsSync) {
+function defaultEndpoint(platform = process.platform, homeDir = os2.homedir(), pathExists = fs3.existsSync) {
   const envEndpoint = process.env.LIBRAVDB_RPC_ENDPOINT?.trim();
   if (envEndpoint && isConfiguredEndpoint(envEndpoint)) {
     return envEndpoint;

package/docs/configuration.md CHANGED Viewed

@@ -103,7 +103,7 @@ The plugin exposes `ingestionGateThreshold` for host-side gating decisions:
 | Key | Type | Default | Notes |
 |---|---|---|---|
 | `dreamPromotionEnabled` | boolean | `false` | Enable dream diary promotion |
-| `dreamPromotionDiaryPath` | string | — | Path to dream diary markdown file |
+| `dreamPromotionDiaryPath` | string | — | Path to dream diary markdown file under the operator home directory or `OPENCLAW_STATE_DIR` |
 | `dreamPromotionUserId` | string | — | User ID for dream collection scoping |
 | `dreamPromotionDebounceMs` | number | `150` | Debounce window for dream diary changes |

package/docs/features.md CHANGED Viewed

@@ -105,11 +105,12 @@ Automatic diary watching:
 Manual run:
 ```bash
-openclaw memory dream-promote --user-id <userId> --dream-file /path/to/DREAMS.md
+openclaw memory dream-promote --user-id <userId> --dream-file ~/DREAMS.md
 ```
-The manual command and watcher both use the same sidecar promotion RPC, so
-admission gates and provenance metadata are identical.
+Dream diary files must live under the operator's home directory or the configured
+`OPENCLAW_STATE_DIR`. The manual command and watcher both use the same sidecar
+promotion RPC, so admission gates and provenance metadata are identical.
 ## Memory CLI
@@ -126,7 +127,7 @@ CLI API.
 | `openclaw memory flush --user-id <userId>` | Delete one durable user namespace after confirmation. |
 | `openclaw memory flush --session-key <sessionKey>` | Delete a namespace derived from a session key after confirmation. |
 | `openclaw memory journal --limit 50` | Inspect bounded lifecycle hints recorded by the sidecar. |
-| `openclaw memory dream-promote --user-id <userId> --dream-file <path>` | Promote vetted dream diary bullets. |
+| `openclaw memory dream-promote --user-id <userId> --dream-file <path>` | Promote vetted dream diary bullets from a file under the operator home directory or `OPENCLAW_STATE_DIR`. |
 Use `--yes` with `flush` only when you intentionally want to skip the
 confirmation prompt.

package/openclaw.plugin.json CHANGED Viewed

@@ -2,7 +2,7 @@
   "id": "libravdb-memory",
   "name": "LibraVDB Memory",
   "description": "Persistent vector memory with three-tier hybrid scoring",
-  "version": "1.4.53",
+  "version": "1.4.55",
   "kind": [
     "memory",
     "context-engine"

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@xdarkicex/openclaw-memory-libravdb",
-  "version": "1.4.53",
+  "version": "1.4.55",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",