openclaw

romtuck/openclaw

Fork 0

Commit Graph

Author	SHA1	Message	Date
Leszek Szpunar	7e2f656cf8	security(crypto): replace SHA-1 with SHA-256 in all hash operations SHA-1 is cryptographically broken and vulnerable to collision attacks. Replace all internal usages with SHA-256: - sandbox session key slugs (shared.ts) - sandbox config change detection (config-hash.ts) - tool call ID generation (tool-call-id.ts) - gateway lock file naming (gateway-lock.ts) All hashes are ephemeral (session-scoped slugs, lock filenames, tool IDs) so the algorithm change has no persistence impact. Fixes #2994	2026-01-30 12:49:20 +01:00
Peter Steinberger	c379191f80	chore: migrate to oxlint and oxfmt Co-authored-by: Christoph Nakazawa <christoph.pojer@gmail.com>	2026-01-14 15:02:19 +00:00
Peter Steinberger	bcbfb357be	refactor(src): split oversized modules	2026-01-14 01:17:56 +00:00

Author

SHA1

Message

Date

Leszek Szpunar

7e2f656cf8

security(crypto): replace SHA-1 with SHA-256 in all hash operations

SHA-1 is cryptographically broken and vulnerable to collision
attacks. Replace all internal usages with SHA-256:

- sandbox session key slugs (shared.ts)
- sandbox config change detection (config-hash.ts)
- tool call ID generation (tool-call-id.ts)
- gateway lock file naming (gateway-lock.ts)

All hashes are ephemeral (session-scoped slugs, lock filenames,
tool IDs) so the algorithm change has no persistence impact.

Fixes #2994

2026-01-30 12:49:20 +01:00

Peter Steinberger

c379191f80

chore: migrate to oxlint and oxfmt

Co-authored-by: Christoph Nakazawa <christoph.pojer@gmail.com>

2026-01-14 15:02:19 +00:00

Peter Steinberger

bcbfb357be

refactor(src): split oversized modules

2026-01-14 01:17:56 +00:00

3 Commits