import type { OpenClawConfig, ConfigFileSnapshot } from "../config/config.js"; import type { ExecFn } from "./windows-acl.js"; export type SecurityAuditFinding = { checkId: string; severity: "info" | "warn" | "critical"; title: string; detail: string; remediation?: string; }; type CollectPluginsTrustFindingsParams = Parameters[0]; type ExecDockerRawFn = (args: string[], opts?: { allowFailure?: boolean; input?: Buffer | string; signal?: AbortSignal; }) => Promise; type CodeSafetySummaryCache = Map>; export declare function collectPluginsTrustFindings(params: CollectPluginsTrustFindingsParams): Promise; export declare function collectSandboxBrowserHashLabelFindings(params?: { execDockerRawFn?: ExecDockerRawFn; }): Promise; export declare function collectIncludeFilePermFindings(params: { configSnapshot: ConfigFileSnapshot; env?: NodeJS.ProcessEnv; platform?: NodeJS.Platform; execIcacls?: ExecFn; }): Promise; export declare function collectStateDeepFilesystemFindings(params: { cfg: OpenClawConfig; env: NodeJS.ProcessEnv; stateDir: string; platform?: NodeJS.Platform; execIcacls?: ExecFn; }): Promise; export declare function readConfigSnapshotForAudit(params: { env: NodeJS.ProcessEnv; configPath: string; }): Promise; export declare function collectPluginsCodeSafetyFindings(params: { stateDir: string; summaryCache?: CodeSafetySummaryCache; }): Promise; export declare function collectInstalledSkillsCodeSafetyFindings(params: { cfg: OpenClawConfig; stateDir: string; summaryCache?: CodeSafetySummaryCache; }): Promise; export {};