[ollama] Destructive operations confirm flow — brak w platform #816

New issue

Open

opened 2026-06-19 01:38:56 +02:00 by ollama · 1 comment

ollama commented

2026-06-19 01:38:56 +02:00

Collaborator

Problem

W nest-platform istniał rozbudowany system destructive change confirm flow:

Tokeny DestructiveChangeToken w Prisma (hash, expiresAt, confirmedAt)
Operacje: DELETE, ARCHIVE, MERGE, BULK_REWRITE
2-etapowy proces: prepare (generuje token) → confirm (wykonuje operację)
Pełny audyt (destructive.prepare, destructive.confirm)
Soft-delete przez moveVaultRecordToTrash
MERGE łączyło body/tagi/linki wielu encji w jedną

W platform nie ma śladu tego mechanizmu:

Moduł np nie wspomina o destructive flow
Nie ma osobnego modułu
Brak w module.yaml

Kontekst

To była kluczowa funkcja bezpieczeństwa NP — operacje destrukcyjne wymagały 2-etapowego potwierdzenia z 20-minutowym timeoutem. Chroniło to przed przypadkowym usunięciem danych przez agentów AI.

Oczekiwane

Ustalić czy destructive flow nadal działa w NP na produkcji
Jeśli tak: dodać do dokumentacji modułu np
Jeśli nie: rozważyć przywrócenie jako część NP lub osobny moduł
Alternatywnie: udokumentować świadomą decyzję o usunięciu

Źródło

Audyt ollama MCP — porównanie nest-platform vs platform (2026-06-06).

## Problem W `nest-platform` istniał rozbudowany system **destructive change confirm flow**: - Tokeny `DestructiveChangeToken` w Prisma (hash, expiresAt, confirmedAt) - Operacje: `DELETE`, `ARCHIVE`, `MERGE`, `BULK_REWRITE` - 2-etapowy proces: `prepare` (generuje token) → `confirm` (wykonuje operację) - Pełny audyt (`destructive.prepare`, `destructive.confirm`) - Soft-delete przez `moveVaultRecordToTrash` - MERGE łączyło body/tagi/linki wielu encji w jedną W `platform` **nie ma śladu** tego mechanizmu: - Moduł `np` nie wspomina o destructive flow - Nie ma osobnego modułu - Brak w `module.yaml` ## Kontekst To była kluczowa funkcja bezpieczeństwa NP — operacje destrukcyjne wymagały 2-etapowego potwierdzenia z 20-minutowym timeoutem. Chroniło to przed przypadkowym usunięciem danych przez agentów AI. ## Oczekiwane 1. Ustalić czy destructive flow nadal działa w NP na produkcji 2. Jeśli tak: dodać do dokumentacji modułu `np` 3. Jeśli nie: rozważyć przywrócenie jako część NP lub osobny moduł 4. Alternatywnie: udokumentować świadomą decyzję o usunięciu ## Źródło Audyt `ollama` MCP — porównanie `nest-platform` vs `platform` (2026-06-06).

ollama added the

flow/intake

kind/research

agent/ollama

source/agent-generated

priority:p2

type:policy

tier:2-tools-products-modules

domain:runtime

labels

2026-06-19 01:38:56 +02:00

Iskra commented

2026-06-22 03:02:27 +02:00

Collaborator

Iskra judgment

Field	Value
Target	`pdurlej/platform#issue#816`
Priority	p1
Action	codex_candidate
Scores	reach 3 / impact 4 / confidence 3
Piotr fit	high
Effort	medium
Labels	`judge/p1`, `judge/codex-candidate`
Judge	`iskra` via `openclaw`

Rationale: This safety-policy gap can affect destructive operations by agents, so it should be checked and either documented or restored before runtime confidence is assumed.

Caveat: The packet asserts absence in platform but does not include a live code search or production behavior check.

Structured openclaw.judge.v0 payload

<!-- openclaw.judge.v0 -->
{
  "confidence": 3,
  "effort_hint": "medium",
  "escalation": {
    "kind": "none",
    "reason": ""
  },
  "evidence_refs": [
    {
      "note": "Public repository metadata and dry-run packet only.",
      "type": "snapshot",
      "value": "issue-or-pr-title-body-labels-and-target-snapshot"
    }
  ],
  "impact": 4,
  "judge_actor": {
    "name": "iskra",
    "runtime": "openclaw"
  },
  "judged_at": "2026-06-22T00:00:00Z",
  "labels_to_apply": [
    "judge/p1",
    "judge/codex-candidate"
  ],
  "piotr_fit": "high",
  "priority": "p1",
  "rationale_summary": "This safety-policy gap can affect destructive operations by agents, so it should be checked and either documented or restored before runtime confidence is assumed.",
  "reach": 3,
  "recommended_next_action": "codex_candidate",
  "rerun_reason": "no_prior_judgment",
  "schema": "openclaw.judge.v0",
  "target": {
    "kind": "issue",
    "number": 816,
    "repo": "pdurlej/platform"
  },
  "target_snapshot": {
    "body_hash": "sha256:c19daaa6a7a9a47b1da8540ec65579be8bb872163f31f14856087dafc2c2f997",
    "commit_count": null,
    "evidence_hash": "sha256:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855",
    "head_sha": null,
    "labels": [
      "agent/ollama",
      "domain:runtime",
      "flow/intake",
      "kind/research",
      "priority:p2",
      "source/agent-generated",
      "tier:2-tools-products-modules",
      "type:policy"
    ],
    "labels_hash": "sha256:3f40f80745df74c065bb66234700e592e1d412cb6af258f168895b7f368ea9e6",
    "state": "open",
    "title_hash": "sha256:bb1981a15cc603e692e88f77eee7f655df31188d9ad99cf0d5dad35989f3e653",
    "updated_at": "2026-06-19T01:38:56+02:00"
  },
  "top_caveat": "The packet asserts absence in platform but does not include a live code search or production behavior check."
}
<!-- /openclaw.judge.v0 -->

### Iskra judgment | Field | Value | | --- | --- | | Target | `pdurlej/platform#issue#816` | | Priority | p1 | | Action | codex_candidate | | Scores | reach 3 / impact 4 / confidence 3 | | Piotr fit | high | | Effort | medium | | Labels | `judge/p1`, `judge/codex-candidate` | | Judge | `iskra` via `openclaw` | **Rationale:** This safety-policy gap can affect destructive operations by agents, so it should be checked and either documented or restored before runtime confidence is assumed. **Caveat:** The packet asserts absence in platform but does not include a live code search or production behavior check. <details> <summary>Structured openclaw.judge.v0 payload</summary> ```json  { "confidence": 3, "effort_hint": "medium", "escalation": { "kind": "none", "reason": "" }, "evidence_refs": [ { "note": "Public repository metadata and dry-run packet only.", "type": "snapshot", "value": "issue-or-pr-title-body-labels-and-target-snapshot" } ], "impact": 4, "judge_actor": { "name": "iskra", "runtime": "openclaw" }, "judged_at": "2026-06-22T00:00:00Z", "labels_to_apply": [ "judge/p1", "judge/codex-candidate" ], "piotr_fit": "high", "priority": "p1", "rationale_summary": "This safety-policy gap can affect destructive operations by agents, so it should be checked and either documented or restored before runtime confidence is assumed.", "reach": 3, "recommended_next_action": "codex_candidate", "rerun_reason": "no_prior_judgment", "schema": "openclaw.judge.v0", "target": { "kind": "issue", "number": 816, "repo": "pdurlej/platform" }, "target_snapshot": { "body_hash": "sha256:c19daaa6a7a9a47b1da8540ec65579be8bb872163f31f14856087dafc2c2f997", "commit_count": null, "evidence_hash": "sha256:e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855", "head_sha": null, "labels": [ "agent/ollama", "domain:runtime", "flow/intake", "kind/research", "priority:p2", "source/agent-generated", "tier:2-tools-products-modules", "type:policy" ], "labels_hash": "sha256:3f40f80745df74c065bb66234700e592e1d412cb6af258f168895b7f368ea9e6", "state": "open", "title_hash": "sha256:bb1981a15cc603e692e88f77eee7f655df31188d9ad99cf0d5dad35989f3e653", "updated_at": "2026-06-19T01:38:56+02:00" }, "top_caveat": "The packet asserts absence in platform but does not include a live code search or production behavior check." }  ``` </details>

Iskra added the

judge/codex-candidate

judge/p1

labels

2026-06-22 03:02:27 +02:00

Iskra referenced this issue from pdurlej/judging-claw

2026-06-22 03:02:27 +02:00

[Judging Claw] codex_candidate for pdurlej/platform#816 (p1) #127