Skip to content

v2026.2.17-beta.0

Pre-release
Pre-release

Choose a tag to compare

View all tags
@github-actions github-actions released this 16 Feb 02:15
· 12 commits to main since this release
v2026.2.17-beta.0
7064be6

This beta focuses on OpenClaw/Clawhub hardening: split skills, remove runtime dynamic package execution, and tighten file/key safety policies.

What changed

  • Split the legacy mixed leak OpenClaw skill into two scoped skills:
    • leak-buy: buy/download only
    • leak-publish: publish/sell only
  • Converted leak into a migration stub (compatibility shim) that redirects users to the split skills.
  • Removed runtime npx -y leak-cli@... fallback from skill scripts; hardened skills now require a preinstalled leak binary on PATH.
  • leak-buy hardening:
    • file-based key input only (--buyer-private-key-file)
    • blocks raw key arg mode and blocks stdin key mode
    • removes key creation/generation flows from the skill workflow
  • leak-publish hardening:
    • persistent-by-default execution using detached supervisors (systemd --user, launchd, tmux, screen, nohup)
    • script-level file safety checks before running leak:
      • rejects symlinks and directories
      • blocks sensitive paths (including macOS /private/etc aliasing) like ~/.ssh, ~/.aws, ~/.gnupg, ~/.config/gcloud, /etc, /private/etc, /proc, /sys, /var/run/secrets, /private/var/run/secrets
    • --public still requires explicit confirmation phrase (non-interactive requires --public-confirm I_UNDERSTAND_PUBLIC_EXPOSURE)
  • Added repo guardrails to prevent scanner regressions:
    • new scripts/check_skill_security.sh
    • new npm script check:skill-security
    • CI now runs check:skill-security
    • version sync now validates all skills/*/SKILL.md match package.json

Breaking changes (Skill UX)

  • The leak skill no longer runs buy/publish workflows; it is a migration stub.
  • If you relied on skill-side npx fallback, you must now install leak-cli so leak is on PATH.
  • The hardened leak-buy skill does not support stdin key mode; use a key file path.

Upgrade / migration steps

  1. Install CLI (required for skills):
    • npm i -g leak-cli
  2. For buyers: install and use leak-buy
    • Script entrypoint: bash skills/leak-buy/scripts/buy.sh "<url>" --buyer-private-key-file <path>
  3. For sellers: install and use leak-publish
    • Script entrypoint: bash skills/leak-publish/scripts/publish.sh --run-mode auto ...
  4. Optional runtime check on a new host:
    • bash skills/leak-publish/scripts/smoke_persistent_runner.sh --mode auto --sleep-seconds 8

Clawhub publish order (recommended)

  1. Publish leak-buy
  2. Publish leak-publish
  3. Publish leak (migration stub) last

Rollback

  • Revert to tag v2026.2.16 if you need the legacy single-skill behavior and/or runtime fallback behavior (note: this reintroduces the scanner concerns that motivated this beta).

Full Changelog: v2026.2.16...v2026.2.17-beta.0

Assets 2
Loading