lyx/youlu-openclaw-workspace
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

calendar: use himalaya wrapper for email sending (defense-in-depth)

Browse Source 
cal_tool.py now calls himalaya.sh wrapper instead of himalaya directly,
so recipients are validated at both the calendar layer (contacts.py
resolve) and the himalaya layer (wrapper header parsing).
This commit is contained in:
Yanxin Lu
2026-03-31 13:16:36 -07:00
parent f05a84d8ca
commit 732a86cf09
1 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
skills/calendar/scripts/cal_tool.py
View File

@@ -65,9 +65,12 @@ def _sync_calendar():
print("Warning: CalDAV sync failed (will retry on next heartbeat)") print("Warning: CalDAV sync failed (will retry on next heartbeat)")
HIMALAYA_WRAPPER = Path(__file__).resolve().parent.parent.parent / "himalaya" / "scripts" / "himalaya.sh"
def _send_email(email_str, account=None): def _send_email(email_str, account=None):
"""Send a raw MIME email via himalaya message send (stdin).""" """Send a raw MIME email via himalaya wrapper (validates recipients)."""
cmd = ["himalaya"] cmd = [str(HIMALAYA_WRAPPER)]
if account: if account:
cmd += ["--account", account] cmd += ["--account", account]
cmd += ["message", "send"] cmd += ["message", "send"]