openclawd/config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Business: HIGH security issues ARE launch blockers — fix before Phase 2

Browse source
This commit is contained in:
Hoid 2026-02-14 16:48:40 +00:00
parent e5b8769f7c
commit c6010f1b6a
5 changed files with 472 additions and 59 deletions
Download patch file Download diff file Expand all files Collapse all files

3
projects/business/memory/decisions.md
View file

@ -34,3 +34,6 @@ Reduced from 100 to 50 for free tier enforcement. In-memory tracking for MVP (re
## 2026-02-14 — URL→PDF endpoint added
High-demand feature that differentiates from simpler HTML-only converters. Validates URLs (http/https only), 30s timeout, configurable wait strategy. Security note: may need SSRF protection before production (block private IPs).
## 2026-02-14 — Phase 2: All bugs resolved, QA passed
After 4 QA rounds and multiple fix cycles, all 11 test cases pass. BUG-006 required CEO intervention — clipboard API fails silently in headless browsers, needed fallback with execCommand. Moving to security audit before marketing.