Skip to content

fix(security): remaining session file writes missing 0o600 permissions#18288

Merged
steipete merged 1 commit intoopenclaw:mainfrom
xinhuagu:fix/session-file-permissions-followup
Feb 16, 2026
Merged

fix(security): remaining session file writes missing 0o600 permissions#18288
steipete merged 1 commit intoopenclaw:mainfrom
xinhuagu:fix/session-file-permissions-followup

Conversation

@xinhuagu
Copy link
Contributor

@xinhuagu xinhuagu commented Feb 16, 2026
edited by greptile-apps bot
Loading

Problem

#18066 hardened session transcript creation with 0o600 permissions in transcript.ts and chat.ts, but three other session file write sites were missed:

  1. src/auto-reply/reply/session.ts — forked session transcript header (writeFileSync)
  2. src/agents/pi-embedded-runner/session-manager-init.ts — session file reset (writeFile)
  3. src/gateway/server-methods/sessions.ts — compacted transcript rewrite (writeFileSync)

All three create or rewrite session transcript files that may contain conversation content.

Fix

Set mode: 0o600 on all three write calls, consistent with the pattern established in #18066.

Test

Existing tests pass. The two pre-existing failures on main (server.post-tabs-open-profile-unknown-returns-404 and server-runtime-config) are unrelated.

Follow-up to #18066.

Greptile Summary

Follow-up to #18066: applies mode: 0o600 (owner read/write only) to the three remaining session file write sites that were missed in the initial security hardening. The changes are minimal and mechanical — each converts a string encoding argument to an options object with both encoding and mode fields, consistent with the pattern already established across the codebase.

  • src/agents/pi-embedded-runner/session-manager-init.ts: session file reset during embedded runner initialization
  • src/auto-reply/reply/session.ts: forked session transcript header creation
  • src/gateway/server-methods/sessions.ts: compacted transcript rewrite

No issues found. All three changes correctly use the Node.js writeFile/writeFileSync options object API.

Confidence Score: 5/5

  • This PR is safe to merge — it makes minimal, mechanical changes to add file permissions on three session file writes.
  • All three changes follow an identical, well-established pattern (converting string encoding to options object with mode: 0o600). The changes are purely additive security hardening with no behavioral impact on file content. The Node.js API usage is correct in all cases. No new code paths, no logic changes, no risk of regression.
  • No files require special attention.

Last reviewed commit: 2b43cc5

@xinhuagu
fix(security): set 0o600 on remaining session file write paths
2b43cc5 
Follow-up to openclaw#18066 — three session file write sites were missed:

- auto-reply/reply/session.ts: forked session transcript header
- pi-embedded-runner/session-manager-init.ts: session file reset
- gateway/server-methods/sessions.ts: compacted transcript rewrite

All now use mode 0o600 consistent with transcript.ts and chat.ts.
@openclaw-barnacle openclaw-barnacle bot added gateway Gateway runtime agents Agent runtime and tooling size: XS labels Feb 16, 2026
@xinhuagu xinhuagu mentioned this pull request Feb 16, 2026
Closed
@steipete steipete merged commit ae0b110 into openclaw:main Feb 16, 2026
27 checks passed
@sebslight sebslight mentioned this pull request Feb 17, 2026
Merged
@sebslight
Copy link
Member

sebslight commented Feb 17, 2026

Reverted after an accidental merge.

Revert commit(s):

Revert PR: #19224

@xinhuagu
Copy link
Contributor Author

xinhuagu commented Feb 17, 2026

ops....

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

agents Agent runtime and tooling gateway Gateway runtime size: XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@xinhuagu @sebslight @steipete

Comments