openclaw/apps/macos
Patrick Ulrich 0abcc80b2a feat(nostr): add NIP-46 bunker authentication for user signing
Add support for users to connect their own Nostr identities via NIP-46
remote signers (bunkers) so agents can post, react, and repost on their
behalf.

New features:
- Multi-account bunker connection management (bunker-store.ts)
- Event posting: notes (NIP-10), reactions (NIP-25), reposts (NIP-18),
  long-form articles (NIP-23)
- 8 agent tools: nostr_connect, nostr_post, nostr_react, nostr_repost,
  nostr_fetch, nostr_article, nostr_disconnect, nostr_status
- HTTP endpoints for bunker management via web UI
- bunkerAccounts array in config schema for multi-bunker support
- Shared pool utility for bunker tools

Excludes NIP-09 deletion for safety (no agent deletion capability).

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-26 22:00:05 -05:00
..
Icon.icon feat: add prek pre-commit hooks and dependabot (#1720) 2026-01-25 10:53:23 +00:00
Sources feat(nostr): add NIP-46 bunker authentication for user signing 2026-01-26 22:00:05 -05:00
Tests/ClawdbotIPCTests feat: add beta googlechat channel 2026-01-24 23:30:45 +00:00
Package.resolved macOS: bump Textual to 0.3.1 (#2033) 2026-01-25 21:02:18 -06:00
Package.swift refactor: consolidate mac debug CLI 2026-01-20 19:17:31 +00:00
README.md fix: harden macOS signing flow 2026-01-18 16:28:39 +00:00

Clawdbot macOS app (dev + signing)

Quick dev run

# from repo root
scripts/restart-mac.sh

Options:

scripts/restart-mac.sh --no-sign   # fastest dev; ad-hoc signing (TCC permissions do not stick)
scripts/restart-mac.sh --sign      # force code signing (requires cert)

Packaging flow

scripts/package-mac-app.sh

Creates dist/Clawdbot.app and signs it via scripts/codesign-mac-app.sh.

Signing behavior

Auto-selects identity (first match):

  1. Developer ID Application
  2. Apple Distribution
  3. Apple Development
  4. first available identity

If none found:

  • errors by default
  • set ALLOW_ADHOC_SIGNING=1 or SIGN_IDENTITY="-" to ad-hoc sign

Team ID audit (Sparkle mismatch guard)

After signing, we read the app bundle Team ID and compare every Mach-O inside the app. If any embedded binary has a different Team ID, signing fails.

Skip the audit:

SKIP_TEAM_ID_CHECK=1 scripts/package-mac-app.sh

Library validation workaround (dev only)

If Sparkle Team ID mismatch blocks loading (common with Apple Development certs), opt in:

DISABLE_LIBRARY_VALIDATION=1 scripts/package-mac-app.sh

This adds com.apple.security.cs.disable-library-validation to app entitlements. Use for local dev only; keep off for release builds.

Useful env flags

  • SIGN_IDENTITY="Apple Development: Your Name (TEAMID)"
  • ALLOW_ADHOC_SIGNING=1 (ad-hoc, TCC permissions do not persist)
  • CODESIGN_TIMESTAMP=off (offline debug)
  • DISABLE_LIBRARY_VALIDATION=1 (dev-only Sparkle workaround)
  • SKIP_TEAM_ID_CHECK=1 (bypass audit)