diff --git a/sandboxes/base/Dockerfile b/sandboxes/base/Dockerfile index 78b51e7..986dc22 100644 --- a/sandboxes/base/Dockerfile +++ b/sandboxes/base/Dockerfile @@ -31,6 +31,8 @@ RUN apt-get update && apt-get install -y --no-install-recommends \ iputils-ping \ net-tools \ netcat-openbsd \ + openssh-sftp-server \ + procps \ python3 \ python3-pip \ python3-venv \ @@ -54,6 +56,11 @@ RUN curl -fsSL https://deb.nodesource.com/setup_22.x | bash - && \ nano \ && rm -rf /var/lib/apt/lists/* +# Fix transitive tar vulnerabilities (GHSA-qffp-2rhf-9h96, +# GHSA-9ppj-qmqm-q256, GHSA-8qq5-rm4j-mr97, GHSA-r6q2-hw4h-h46w, +# GHSA-34x7-hfp2-rc4v, GHSA-83g3-92jg-28cx). +RUN npm install -g tar@7.5.11 + # GitHub CLI RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg \ -o /usr/share/keyrings/githubcli-archive-keyring.gpg && \ diff --git a/sandboxes/nemoclaw/Dockerfile b/sandboxes/nemoclaw/Dockerfile index 5b91c7d..c19d87b 100644 --- a/sandboxes/nemoclaw/Dockerfile +++ b/sandboxes/nemoclaw/Dockerfile @@ -27,6 +27,9 @@ COPY policy-proxy.js /usr/local/lib/policy-proxy.js COPY proto/ /usr/local/lib/nemoclaw-proto/ RUN npm install -g @grpc/grpc-js @grpc/proto-loader js-yaml +# Fix @hono/node-server authorization bypass (GHSA-wc8c-qw6v-h7f6) +RUN npm install -g @hono/node-server@1.19.11 + # Allow the sandbox user to read the default policy (the startup script # copies it to a writable location; this chown covers non-Landlock envs) RUN chown -R sandbox:sandbox /etc/navigator diff --git a/sandboxes/openclaw/Dockerfile b/sandboxes/openclaw/Dockerfile index 36e53a0..cbd8761 100644 --- a/sandboxes/openclaw/Dockerfile +++ b/sandboxes/openclaw/Dockerfile @@ -14,8 +14,8 @@ FROM ${BASE_IMAGE} USER root -# Install OpenClaw CLI -RUN npm install -g openclaw +# Install OpenClaw CLI (pinned to fix GHSA-rchv-x836-w7xp, GHSA-6mgf-v5j7-45cr) +RUN npm install -g openclaw@2026.3.7 # Copy sandbox policy COPY policy.yaml /etc/navigator/policy.yaml