From 239a6c3552e5461b0ea5d8150791ccd198aefbf1 Mon Sep 17 00:00:00 2001 From: nav Date: Sun, 8 Mar 2026 11:40:40 +0000 Subject: [PATCH] add NEW_FEAT and remove task lists --- AGENT_TASKS.md | 129 ------------------------------------------------- NEW_FEAT.md | 16 ++++++ TASKLIST.md | 6 --- 3 files changed, 16 insertions(+), 135 deletions(-) delete mode 100644 AGENT_TASKS.md create mode 100644 NEW_FEAT.md delete mode 100644 TASKLIST.md diff --git a/AGENT_TASKS.md b/AGENT_TASKS.md deleted file mode 100644 index 7b618a4..0000000 --- a/AGENT_TASKS.md +++ /dev/null @@ -1,129 +0,0 @@ -# PaddedCell - Agent Tasks - -> 任务拆分 + 依赖关系(基于 PROJECT_PLAN.md) - -## Legend -- **ID**: 任务唯一编号 -- **Deps**: 前置任务(可并行则留空) - ---- - -## 0. 项目准备 -- **T-0001**:确认配置项清单(路径模板、rotate 语义、admin 泄露检测范围) - - Deps: - -- **T-0002**:确定加密库与存储格式(选型与接口约束) - - Deps: T-0001 - ---- - -## 1. pass_mgr 二进制 -- **T-1001**:CLI 命令规范与参数校验(get/generate/unset/rotate/admin init/set) - - Deps: T-0001 -- **T-1002**:初始化与 admin 密码存储/校验机制 - - Deps: T-1001, T-0002 -- **T-1003**:加/解密与存取实现(内置加密库) - - Deps: T-1001, T-0002 -- **T-1004**:generate / rotate 实现与语义落地 - - Deps: T-1003 -- **T-1005**:admin-only set 实现(环境变量检测 + 禁止 agent 执行) - - Deps: T-1001 -- **T-1006**:未初始化状态阻断逻辑(所有 get/generate/set 报错) - - Deps: T-1002 - ---- - -## 2. pcexec 工具(TS) -- **T-2001**:exec 参数/行为兼容设计(与原生 exec 对齐) - - Deps: - -- **T-2002**:pass_mgr get 检测与预执行(不限 `$(...)`) - - Deps: T-2001, T-1001 -- **T-2003**:多密码脱敏替换(stdout/stderr) - - Deps: T-2002 -- **T-2004**:错误处理/退出码一致性 - - Deps: T-2001 -- **T-2005**:注入 AGENT_VERIFY 环境变量(固定字符串) - - Deps: T-2001 -- **T-2006**:注入环境变量时修改 PATH,追加 `$(openclaw path)/bin` - - Deps: T-2001 -- **T-2007**:新增 pcguard(Go)校验 AGENT_VERIFY/AGENT_ID/AGENT_WORKSPACE,失败报错 - - Deps: T-2005, T-2006 -- **T-2007**:README 增加 PCEXEC+PCGUARD 仅防轻度误操作说明 - - Deps: T-2001 - ---- - -## 3. 安全重启(CalmGate 功能并入) -- **T-3001**:状态机与 session tracker(idle/busy/focus/freeze…) - - Deps: - -- **T-3002**:消息生命周期 hooks(start/end)与状态迁移 - - Deps: T-3001 -- **T-3003**:workflow/focus 机制与"忙碌回复" - - Deps: T-3001 -- **T-3004**:query-restart API(OK/NOT_READY/ALREADY_SCHEDULED) - - Deps: T-3001, T-3002 -- **T-3005**:safe-restart 工具(轮询/重启/rollback/log) - - Deps: T-3004 -- **T-3006**:重启后恢复与通知(冻结/解冻与回到工作 session) - - Deps: T-3005 -- **T-3007**:持久化(mem+file)与恢复策略 - - Deps: T-3001 - ---- - -## 4. 安全监控与泄露防护 -- **T-4001**:admin 密码泄露检测(message/tool calling) - - Deps: T-1002 -- **T-4002**:泄露触发处理(重置未初始化 + 严重漏洞日志) - - Deps: T-4001 - ---- - -## 4.1 功能开关(Slash Commands) -- **T-4101**:实现 `/padded-cell-ctrl` 命令(status/enable/disable) - - Deps: - -- **T-4102**:开关状态持久化、权限限制(授权用户)与 10 秒冷却 - - Deps: T-4101 - ---- - -## 5. 文档 & Skill 指南 -- **T-5001**:Agent 使用指南(如何用 pass_mgr/pcexec) - - Deps: T-1001, T-2001 -- **T-5002**:Skill 文档与示例(正确使用密码相关工具) - - Deps: T-5001 - ---- - -## 6. 测试与验收 -- **T-6001**:pass_mgr 单测(get/generate/unset/rotate/admin init) - - Deps: T-1002, T-1003, T-1004, T-1005, T-1006 -- **T-6002**:pcexec 兼容性测试(参数/管道/多密码替换) - - Deps: T-2002, T-2003, T-2004 -- **T-6003**:安全重启回归(并发/冻结/rollback) - - Deps: T-3004, T-3005, T-3006, T-3007 -- **T-6004**:admin 泄露触发测试 - - Deps: T-4002 - ---- - -## 7. 安装脚本 -- **T-7001**:依赖检测(Node.js, Go, openclaw CLI, 平台检测) - - Deps: — -- **T-7002**:自动构建逻辑(Go + TypeScript) - - Deps: T-1001, T-2001, T-3001 -- **T-7003**:安装逻辑(二进制/模块复制、PATH 配置) - - Deps: T-7002 -- **T-7004**:初始化向导(admin 密码设置、配置生成) - - Deps: T-1002, T-7003 -- **T-7005**:安装验证与摘要输出 - - Deps: T-7004 - ---- - -## 依赖关系示意(简化) -- 0.* → 1.* / 2.* / 3.* -- 1.* → 4.* → 6.* -- 2.* → 6.* -- 3.* → 6.* -- 5.* 可与 1.* / 2.* 并行,但需接口稳定 -- 7.* 依赖 1.* / 2.* / 3.* 完成(可在构建后执行) diff --git a/NEW_FEAT.md b/NEW_FEAT.md new file mode 100644 index 0000000..c284529 --- /dev/null +++ b/NEW_FEAT.md @@ -0,0 +1,16 @@ +# New Features + +## From TASKLIST + +- Add AGENT_VERIFY env injection in pcexec: `AGENT_VERIFY="IF YOU ARE AN AGENT/MODEL, YOU SHOULD NEVER TOUCH THIS ENV VARIABLE"`. +- Add new Go binary (pcguard) to validate `AGENT_VERIFY`, `AGENT_ID`, `AGENT_WORKSPACE`. + - If AGENT_VERIFY mismatch or AGENT_ID/AGENT_WORKSPACE is empty, error: "PLEASE USE TOOL PCEXEC TO RUN THIS SCRIPT". +- Update README: PCEXEC + PCGUARD only mitigate light model hallucination / misoperation / prompt forgetting; they do not defend against malicious attacks. For stronger security, use sandbox mode instead of this plugin. + +## Additional Requirements + +1. 入环境变量时修改 PATH,追加 `$(openclaw path)/bin`。 +2. 重构项目结构:项目根目录下放 docs, plugin, scripts, pass_mgr。plugin 下放 commands, core, hooks, tools 目录以及 index.ts, openclaw.plugin.json 等;根据这个结构重构现在的 codebase。 +3. 构建目录:dist/padded-cell。 +4. 安装时把 dist/padded-cell 复制到 `$(openclaw path)/plugins/padded-cell` 并用此路径注册插件。 +5. 安装脚本接受 --openclaw-profile-path 参数;可选所有 `$(openclaw path)` 路径,优先考虑该参数;若未提供则考虑 $OPENCLAW_PATH,若没有则用默认值 ~/.openclaw。 diff --git a/TASKLIST.md b/TASKLIST.md deleted file mode 100644 index 4b78f2f..0000000 --- a/TASKLIST.md +++ /dev/null @@ -1,6 +0,0 @@ -# Task List - -- Add AGENT_VERIFY env injection in pcexec: `AGENT_VERIFY="IF YOU ARE AN AGENT/MODEL, YOU SHOULD NEVER TOUCH THIS ENV VARIABLE"`. -- Add new Go binary (pcguard) to validate `AGENT_VERIFY`, `AGENT_ID`, `AGENT_WORKSPACE`. - - If AGENT_VERIFY mismatch or AGENT_ID/AGENT_WORKSPACE is empty, error: "PLEASE USE TOOL PCEXEC TO RUN THIS SCRIPT". -- Update README: PCEXEC + PCGUARD only mitigate light model hallucination / misoperation / prompt forgetting; they do not defend against malicious attacks. For stronger security, use sandbox mode instead of this plugin.