will/flynn
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docs: add safety docs and OpenClaw gap roadmap

Browse Source
This commit is contained in:
William Valentin
2026-02-15 10:17:07 -08:00
parent 28304ac397
commit f2cdd1abd2
14 changed files with 3869 additions and 40 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/plans/state.json
+57 -3
View File
@@ -1,14 +1,68 @@
{
"version": "1.0",
"updated_at": "2026-02-14",
"updated_at": "2026-02-15",
"description": "Tracks the status of all Flynn plans and implementation phases",
"plans": {
"openclaw-gap-roadmap": {
"file": "2026-02-15-openclaw-gap-roadmap.md",
"status": "planned",
"date": "2026-02-15",
"updated": "2026-02-15",
"summary": "Roadmap to close remaining OpenClaw gap analysis MISSING items, prioritizing per-tier credential system v2 (API + OAuth/token), Vercel AI Gateway provider, skill safety scanner, elevated mode, Matrix adapter, and deployment targets (Nix + PaaS)."
},
"credential-system-v2-api-and-oauth": {
"file": "2026-02-15-credential-system-v2-api-and-oauth-checklist.md",
"status": "planned",
"date": "2026-02-15",
"updated": "2026-02-15",
"summary": "Executable PR-sized checklist to implement per-tier auth_mode with both API-key and OAuth/token credential sources, adding OpenAI API-key storage, Anthropic auth-token storage, CLI/TUI login UX, model factory enforcement, and doctor reporting."
},
"vercel-ai-gateway-provider": {
"file": "2026-02-15-vercel-ai-gateway-provider-checklist.md",
"status": "planned",
"date": "2026-02-15",
"updated": "2026-02-15",
"summary": "Executable checklist to add a first-class Vercel AI Gateway model provider (OpenAI-compatible baseURL), including schema/provider registration, model factory wiring, doctor/setup updates, and tests."
},
"skill-safety-scanner": {
"file": "2026-02-15-skill-safety-scanner-checklist.md",
"status": "planned",
"date": "2026-02-15",
"updated": "2026-02-15",
"summary": "Executable checklist to implement a static skill/plugin safety scanner integrated into skill load/install paths with audit events and tests, preventing unsafe skill packages from being injected into prompts or used via routing."
},
"openclaw-style-personal-agent-without-openclaw-risks": {
"file": "2026-02-14-openclaw-style-personal-agent-without-openclaw-risks-plan.md",
"status": "planned",
"status": "completed",
"date": "2026-02-14",
"summary": "Milestone plan to reach OpenClaw-style personal-assistant efficiency with a safer trust boundary: capability-declared skills, sandbox-by-default for high-risk tools, prompt-injection firewall, secret scoping, and audit logging."
"updated": "2026-02-14",
"summary": "Implemented safe-by-default personal-agent hardening: capability-declared skills enforced via ToolPolicy + ToolExecutor, skill intent routing with sandbox-by-default for high-risk tools, prompt-injection provenance tags + tool-call guard, secret-scope gating for credentialed tools, and audit log hardening (redaction + correlation IDs).",
"files_modified": [
"README.md",
"config/default.yaml",
"docs/api/TOOLS.md",
"docs/plans/2026-02-14-openclaw-safe-agent-implementation.md",
"src/skills/types.ts",
"src/skills/loader.ts",
"src/tools/types.ts",
"src/tools/policy.ts",
"src/tools/executor.ts",
"src/backends/native/agent.ts",
"src/daemon/routing.ts",
"src/daemon/index.ts",
"src/daemon/services.ts",
"src/cli/skills.ts",
"src/cli/setup/security.ts",
"src/gateway/handlers/services.ts",
"src/audit/types.ts",
"src/audit/logger.ts"
],
"files_created": [
"docs/security/SAFE_PERSONAL_AGENT.md",
"src/audit/redact.ts"
],
"test_status": "pnpm test:run + pnpm typecheck passing"
},
"openclaw-feature-gap-analysis": {
"file": "2026-02-06-openclaw-feature-gap-analysis.md",