Summary
The default sandbox policy (nemoclaw-blueprint/policies/openclaw-sandbox.yaml L58-L67) defines GET/POST rules for statsig.anthropic.com and sentry.io, but both endpoints are missing protocol: rest, enforcement: enforce, and tls: terminate.
Without protocol: rest, the proxy treats these as L4-only connections (no HTTP inspection). The method/path rules are never evaluated — any HTTP method is allowed through.
Impact
Low severity — these are telemetry endpoints (statsig = feature flags, sentry = error reporting), both locked to the claude binary. But the policy expresses an intent to restrict methods that isn't actually enforced.
Fix
Add protocol: rest, enforcement: enforce, and tls: terminate to both endpoints, matching api.anthropic.com and all other REST endpoints in the file.
Credit: Alex Watson (policy prover analysis)
Summary
The default sandbox policy (
nemoclaw-blueprint/policies/openclaw-sandbox.yamlL58-L67) defines GET/POST rules forstatsig.anthropic.comandsentry.io, but both endpoints are missingprotocol: rest,enforcement: enforce, andtls: terminate.Without
protocol: rest, the proxy treats these as L4-only connections (no HTTP inspection). The method/path rules are never evaluated — any HTTP method is allowed through.Impact
Low severity — these are telemetry endpoints (statsig = feature flags, sentry = error reporting), both locked to the
claudebinary. But the policy expresses an intent to restrict methods that isn't actually enforced.Fix
Add
protocol: rest,enforcement: enforce, andtls: terminateto both endpoints, matchingapi.anthropic.comand all other REST endpoints in the file.Credit: Alex Watson (policy prover analysis)