chore(sync): mirror docs from openclaw/openclaw@cd6efd1a42

This commit is contained in:
openclaw-docs-sync[bot] 2026-04-29 20:51:43 +00:00
parent 8ac0aa4336
commit 1a18e1719c
2 changed files with 7 additions and 2 deletions

View File

@ -1,5 +1,5 @@
{
"repository": "openclaw/openclaw",
"sha": "2fa5590a93468c83d323ac3d5312276ad8bf2c46",
"syncedAt": "2026-04-29T20:43:26.780Z"
"sha": "cd6efd1a42acbdbdff90f37f96f114323e701dfa",
"syncedAt": "2026-04-29T20:50:02.103Z"
}

View File

@ -267,6 +267,11 @@ JS/TS category. The network-ssrf-boundary job scans core SSRF, IP parsing,
network guard, web-fetch, and Plugin SDK SSRF policy surfaces under the
`/codeql-critical-security/network-ssrf-boundary` category so network trust
boundary signal stays separate from the broader JS/TS security baseline.
The mcp-process-tool-boundary job scans MCP servers, process execution helpers,
outbound delivery, and agent tool-execution gates under the
`/codeql-critical-security/mcp-process-tool-boundary` category so command and
tool boundary signal stays separate from both the general JS/TS baseline and
the non-security MCP/process quality shard.
The `CodeQL Android Critical Security` workflow is the scheduled Android
security shard. It builds the Android app manually for CodeQL on the smallest