LLM/moltbot
1
0
Fork 0
mirror of https://github.com/moltbot/moltbot.git synced 2026-05-22 06:08:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
90b405ecb51981ebb9199ddf800d03436fe1d85c
moltbot/src/config/state-dir-dotenv.ts
Peter Steinberger 2b01bcf6c8 refactor: source service env install planning
2026-05-04 01:47:02 +01:00

93 lines
2.8 KiB
TypeScript
Raw Blame History

import fs from "node:fs";
import path from "node:path";
import dotenv from "dotenv";
import {
isDangerousHostEnvOverrideVarName,
isDangerousHostEnvVarName,
normalizeEnvVarKey,
} from "../infra/host-env-security.js";
import { collectConfigServiceEnvVars } from "./config-env-vars.js";
import { resolveStateDir } from "./paths.js";
import type { OpenClawConfig } from "./types.js";
function isBlockedServiceEnvVar(key: string): boolean {
return isDangerousHostEnvVarName(key) || isDangerousHostEnvOverrideVarName(key);
}
function parseStateDirDotEnvContent(content: string): Record<string, string> {
const parsed = dotenv.parse(content);
const entries: Record<string, string> = {};
for (const [rawKey, value] of Object.entries(parsed)) {
if (!value?.trim()) {
continue;
}
const key = normalizeEnvVarKey(rawKey, { portable: true });
if (!key) {
continue;
}
if (isBlockedServiceEnvVar(key)) {
continue;
}
entries[key] = value;
}
return entries;
}
export function readStateDirDotEnvVarsFromStateDir(stateDir: string): Record<string, string> {
const dotEnvPath = path.join(stateDir, ".env");
try {
return parseStateDirDotEnvContent(fs.readFileSync(dotEnvPath, "utf8"));
} catch {
return {};
}
}
/**
* Read and parse `~/.openclaw/.env` (or `$OPENCLAW_STATE_DIR/.env`), returning
* a filtered record of key-value pairs suitable for a managed service
* environment source.
*/
export function readStateDirDotEnvVars(
env: Record<string, string | undefined>,
): Record<string, string> {
const stateDir = resolveStateDir(env as NodeJS.ProcessEnv);
return readStateDirDotEnvVarsFromStateDir(stateDir);
}
export type DurableServiceEnvVarSources = {
stateDirDotEnvEnvironment: Record<string, string>;
configEnvironment: Record<string, string>;
durableEnvironment: Record<string, string>;
};
export function collectDurableServiceEnvVarSources(params: {
env: Record<string, string | undefined>;
config?: OpenClawConfig;
}): DurableServiceEnvVarSources {
const stateDirDotEnvEnvironment = readStateDirDotEnvVars(params.env);
const configEnvironment = collectConfigServiceEnvVars(params.config);
return {
stateDirDotEnvEnvironment,
configEnvironment,
durableEnvironment: {
...stateDirDotEnvEnvironment,
...configEnvironment,
},
};
}
/**
* Durable service env sources survive beyond the invoking shell and are safe to
* persist into owner-only gateway service environment sources.
*
* Precedence:
* 1. state-dir `.env` file vars
* 2. config service env vars
*/
export function collectDurableServiceEnvVars(params: {
env: Record<string, string | undefined>;
config?: OpenClawConfig;
}): Record<string, string> {
return collectDurableServiceEnvVarSources(params).durableEnvironment;
}
Reference in New Issue View Git Blame Copy Permalink