claudia.keller/openclaw-matrix-multiaccounts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openclaw-matrix-multiaccounts/src/config
History
Jamieson O'Reilly a1f9825d63
security: add mDNS discovery config to reduce information disclosure (#1882) 
* security: add mDNS discovery config to reduce information disclosure

mDNS broadcasts can expose sensitive operational details like filesystem
paths (cliPath) and SSH availability (sshPort) to anyone on the local
network. This information aids reconnaissance and should be minimized
for gateways exposed beyond trusted networks.

Changes:
- Add discovery.mdns.enabled config option to disable mDNS entirely
- Add discovery.mdns.minimal option to omit cliPath/sshPort from TXT records
- Update security docs with operational security guidance

Minimal mode still broadcasts enough for device discovery (role, gatewayPort,
transport) while omitting details that help map the host environment.
Apps that need CLI path can fetch it via the authenticated WebSocket.

* fix: default mDNS discovery mode to minimal (#1882) (thanks @orlyjamie)

---------

Co-authored-by: theonejvo <orlyjamie@users.noreply.github.com>
Co-authored-by: Peter Steinberger <steipete@gmail.com>
2026-01-26 13:32:11 +00:00
..
sessions TTS: gate auto audio on inbound voice notes (#1667) 2026-01-25 04:35:20 +00:00
agent-dirs.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
agent-limits.ts refactor: centralize concurrency resolution 2026-01-20 10:41:56 +00:00
cache-utils.ts fix: persist topic session files 2026-01-07 22:56:50 +00:00
channel-capabilities.test.ts feat: Add Line plugin (#1630) 2026-01-25 12:22:36 +00:00
channel-capabilities.ts refactor: normalize channel capabilities typing 2026-01-17 08:06:35 +00:00
commands.test.ts feat: expand skill command registration 2026-01-16 20:17:32 +00:00
commands.ts feat: expand skill command registration 2026-01-16 20:17:32 +00:00
config-paths.test.ts feat: improve gateway services and auto-reply commands 2026-01-11 02:27:16 +01:00
config-paths.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
config.agent-concurrency-defaults.test.ts refactor: centralize concurrency resolution 2026-01-20 10:41:56 +00:00
config.backup-rotation.test.ts fix: enforce plugin config schemas (#1272) (thanks @thewilloftheshadow) 2026-01-20 11:03:17 +00:00
config.broadcast.test.ts refactor(src): split oversized modules 2026-01-14 01:17:56 +00:00
config.compaction-settings.test.ts fix: add safeguard compaction tool summaries 2026-01-19 01:44:17 +00:00
config.discord.test.ts chore: run format and fix sandbox browser timeouts 2026-01-16 09:18:58 +00:00
config.env-vars.test.ts fix: enforce strict config validation 2026-01-19 03:39:25 +00:00
config.gateway-remote-transport.test.ts feat(macos): add direct gateway transport 2026-01-24 21:02:13 +00:00
config.identity-avatar.test.ts feat: add agent identity avatars (#1329) (thanks @dlauer) 2026-01-22 05:37:15 +00:00
config.identity-defaults.test.ts chore: fix lint/format 2026-01-20 13:52:59 +00:00
config.legacy-config-detection.accepts-imessage-dmpolicy.test.ts TTS: gate auto audio on inbound voice notes (#1667) 2026-01-25 04:35:20 +00:00
config.legacy-config-detection.rejects-routing-allowfrom.test.ts fix: avoid whatsapp config resurrection 2026-01-22 04:49:56 +00:00
config.msteams.test.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
config.multi-agent-agentdir-validation.test.ts fix: enforce strict config validation 2026-01-19 03:39:25 +00:00
config.nix-integration-u3-u5-u9.test.ts fix: enforce plugin config schemas (#1272) (thanks @thewilloftheshadow) 2026-01-20 11:03:17 +00:00
config.plugin-validation.test.ts fix: normalize heartbeat targets 2026-01-24 13:53:00 +00:00
config.preservation-on-validation-failure.test.ts fix: enforce strict config validation 2026-01-19 03:39:25 +00:00
config.pruning-defaults.test.ts feat: add auth-aware cache defaults 2026-01-21 20:23:39 +00:00
config.sandbox-docker.test.ts style: oxfmt fixes (#925) (thanks @grp06) 2026-01-15 03:22:54 +00:00
config.skills-entries-config.test.ts fix: allow custom skill config bag 2026-01-20 15:57:08 +00:00
config.talk-api-key-fallback.test.ts refactor(src): split oversized modules 2026-01-14 01:17:56 +00:00
config.talk-voicealiases.test.ts refactor(src): split oversized modules 2026-01-14 01:17:56 +00:00
config.telegram-custom-commands.test.ts fix: add telegram custom commands (#860) (thanks @nachoiacovino) 2026-01-16 08:22:09 +00:00
config.ts fix: enforce plugin config schemas (#1272) (thanks @thewilloftheshadow) 2026-01-20 11:03:17 +00:00
config.web-search-provider.test.ts Config: allow Perplexity web_search provider 2026-01-19 13:03:59 -05:00
defaults.ts fix: default custom provider model fields 2026-01-25 00:02:53 +00:00
env-substitution.test.ts fix: harden env var substitution parsing (#1044) (thanks @sebslight) 2026-01-17 00:29:08 +00:00
env-substitution.ts refactor: simplify env var substitution scan 2026-01-17 00:34:00 +00:00
env-vars.ts fix: propagate config env vars to gateway services (#1735) (thanks @Seredeep) 2026-01-25 10:37:35 +00:00
group-policy.ts Channels: add per-group tool policies 2026-01-24 05:49:39 +00:00
includes.test.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
includes.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
io.ts Config: apply config.env before substitution (#1813) 2026-01-25 21:22:25 -06:00
legacy-migrate.ts fix: enforce plugin config schemas (#1272) (thanks @thewilloftheshadow) 2026-01-20 11:03:17 +00:00
legacy.migrations.part-1.ts fix: harden Mattermost plugin gating (#1428) (thanks @damoahdominic) 2026-01-23 01:23:23 +00:00
legacy.migrations.part-2.ts style: oxfmt format 2026-01-17 05:48:56 +00:00
legacy.migrations.part-3.ts TTS: gate auto audio on inbound voice notes (#1667) 2026-01-25 04:35:20 +00:00
legacy.migrations.ts refactor(config): split legacy handling 2026-01-14 05:39:51 +00:00
legacy.rules.ts TTS: gate auto audio on inbound voice notes (#1667) 2026-01-25 04:35:20 +00:00
legacy.shared.ts feat: add inbound media understanding 2026-01-17 03:54:46 +00:00
legacy.ts refactor(config): split legacy handling 2026-01-14 05:39:51 +00:00
logging.ts refactor: add config logging helpers 2026-01-23 04:16:39 +00:00
markdown-tables.ts fix: add per-channel markdown table conversion (#1495) (thanks @odysseus0) 2026-01-23 18:39:25 +00:00
merge-config.ts refactor!: rename chat providers to channels 2026-01-13 08:40:39 +00:00
merge-patch.ts fix: prevent config clobbering 2026-01-15 04:06:11 +00:00
model-alias-defaults.test.ts fix: default custom provider model fields 2026-01-25 00:02:53 +00:00
normalize-paths.test.ts feat: add exec pathPrepend config 2026-01-19 00:35:43 +00:00
normalize-paths.ts feat: add exec pathPrepend config 2026-01-19 00:35:43 +00:00
paths.test.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
paths.ts fix: move gateway lock to temp dir 2026-01-25 09:21:46 +00:00
plugin-auto-enable.test.ts fix: clarify doctor auto-enable hint 2026-01-20 15:58:30 +00:00
plugin-auto-enable.ts fix: clarify doctor auto-enable hint 2026-01-20 15:58:30 +00:00
port-defaults.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
runtime-overrides.test.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
runtime-overrides.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
schema.test.ts fix: normalize heartbeat targets 2026-01-24 13:53:00 +00:00
schema.ts security: add mDNS discovery config to reduce information disclosure (#1882) 2026-01-26 13:32:11 +00:00
sessions.cache.test.ts fix: harden session cache + heartbeat restore 2026-01-15 07:07:12 +00:00
sessions.test.ts fix: guard session store against array corruption 2026-01-24 04:51:46 +00:00
sessions.ts feat(session): add daily reset policy 2026-01-18 06:37:37 +00:00
slack-http-config.test.ts feat(slack): add HTTP receiver webhook mode (#1143) - thanks @jdrhyne 2026-01-18 15:04:07 +00:00
slack-token-validation.test.ts feat(slack): add userToken for read-only access to DMs and private channels (#981) 2026-01-16 00:11:33 +00:00
talk.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
telegram-custom-commands.ts fix: add telegram custom commands (#860) (thanks @nachoiacovino) 2026-01-16 08:22:09 +00:00
test-helpers.ts chore: migrate to oxlint and oxfmt 2026-01-14 15:02:19 +00:00
types.agent-defaults.ts fix: normalize heartbeat targets 2026-01-24 13:53:00 +00:00
types.agents.ts feat: add per-agent heartbeat config 2026-01-16 01:17:34 +00:00
types.approvals.ts feat(discord): add exec approval forwarding to DMs (#1621) 2026-01-24 20:56:40 +00:00
types.auth.ts refactor(src): split oversized modules 2026-01-14 01:17:56 +00:00
types.base.ts feat: add diagnostics flags 2026-01-25 10:40:27 +00:00
types.browser.ts fix: add browser snapshot default mode (#1336) 2026-01-21 03:03:10 +00:00
types.channels.ts feat: add beta googlechat channel 2026-01-24 23:30:45 +00:00
types.clawdbot.ts feat(discord): add exec approval forwarding to DMs (#1621) 2026-01-24 20:56:40 +00:00
types.cron.ts refactor(src): split oversized modules 2026-01-14 01:17:56 +00:00
types.discord.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
types.gateway.ts security: add mDNS discovery config to reduce information disclosure (#1882) 2026-01-26 13:32:11 +00:00
types.googlechat.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
types.hooks.ts feat: add beta googlechat channel 2026-01-24 23:30:45 +00:00
types.imessage.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
types.messages.ts feat: move TTS into core (#1559) (thanks @Glucksberg) 2026-01-24 08:00:44 +00:00
types.models.ts fix: refine bedrock discovery defaults (#1543) (thanks @fal3) 2026-01-24 01:18:33 +00:00
types.msteams.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
types.node-host.ts feat: add node browser proxy routing 2026-01-24 04:21:47 +00:00
types.plugins.ts feat(plugins): add memory slot plugin 2026-01-18 02:12:10 +00:00
types.queue.ts feat: add beta googlechat channel 2026-01-24 23:30:45 +00:00
types.sandbox.ts refactor(src): split oversized modules 2026-01-14 01:17:56 +00:00
types.signal.ts fix: configurable signal startup timeout 2026-01-25 04:51:35 +00:00
types.skills.ts fix: allow custom skill config bag 2026-01-20 15:57:08 +00:00
types.slack.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
types.telegram.ts feat(telegram): add linkPreview config option 2026-01-25 06:00:05 +00:00
types.tools.ts Add link understanding tool support (#1637) 2026-01-25 00:15:54 +00:00
types.ts feat: add beta googlechat channel 2026-01-24 23:30:45 +00:00
types.tts.ts TTS: gate auto audio on inbound voice notes (#1667) 2026-01-25 04:35:20 +00:00
types.whatsapp.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
ui-seam-color.test.ts feat: add ui.seamColor accent 2025-12-30 04:14:36 +01:00
validation.ts fix: normalize heartbeat targets 2026-01-24 13:53:00 +00:00
version.ts fix: stabilize tests and logging 2026-01-18 18:43:31 +00:00
zod-schema.agent-defaults.ts feat: add elevated ask/full modes 2026-01-22 05:41:11 +00:00
zod-schema.agent-runtime.ts Add link understanding tool support (#1637) 2026-01-25 00:15:54 +00:00
zod-schema.agents.ts fix: enforce strict config validation 2026-01-19 03:39:25 +00:00
zod-schema.approvals.ts feat(discord): add exec approval forwarding to DMs (#1621) 2026-01-24 20:56:40 +00:00
zod-schema.channels.ts feat(heartbeat): add configurable visibility for heartbeat responses 2026-01-24 09:07:03 +00:00
zod-schema.core.ts TTS: gate auto audio on inbound voice notes (#1667) 2026-01-25 04:35:20 +00:00
zod-schema.hooks.ts fix: harden Mattermost plugin gating (#1428) (thanks @damoahdominic) 2026-01-23 01:23:23 +00:00
zod-schema.providers-core.ts feat(telegram): add linkPreview config option 2026-01-25 06:00:05 +00:00
zod-schema.providers-whatsapp.ts fix: newline chunking across channels 2026-01-25 04:11:36 +00:00
zod-schema.providers.ts feat: add beta googlechat channel 2026-01-24 23:30:45 +00:00
zod-schema.session.ts feat: move TTS into core (#1559) (thanks @Glucksberg) 2026-01-24 08:00:44 +00:00
zod-schema.ts security: add mDNS discovery config to reduce information disclosure (#1882) 2026-01-26 13:32:11 +00:00