Initial commit: hardened DeerFlow factory

Vendored deer-flow upstream (bytedance/deer-flow) plus prompt-injection hardening: - New deerflow.security package: content_delimiter, html_cleaner, sanitizer (8 layers — invisible chars, control chars, symbols, NFC, PUA, tag chars, horizontal whitespace collapse with newline/tab preservation, length cap) - New deerflow.community.searx package: web_search, web_fetch, image_search backed by a private SearX instance, every external string sanitized and wrapped in <<<EXTERNAL_UNTRUSTED_CONTENT>>> delimiters - All native community web providers (ddg_search, tavily, exa, firecrawl, jina_ai, infoquest, image_search) replaced with hard-fail stubs that raise NativeWebToolDisabledError at import time, so a misconfigured tool.use path fails loud rather than silently falling back to unsanitized output - Native client back-doors (jina_client.py, infoquest_client.py) stubbed too - Native-tool tests quarantined under tests/_disabled_native/ (collect_ignore_glob via local conftest.py) - Sanitizer Layer 7 fix: only collapse horizontal whitespace, preserve newlines and tabs so list/table structure survives - Hardened runtime config.yaml references only the searx-backed tools - Factory overlay (backend/) kept in sync with deer-flow tree as a reference / source See HARDENING.md for the full audit trail and verification steps.
2026-04-12 14:23:57 +02:00
commit 6de0bf9f5b
889 changed files with 173052 additions and 0 deletions
--- a/deer-flow/scripts/cleanup-containers.sh
+++ b/deer-flow/scripts/cleanup-containers.sh
@@ -0,0 +1,95 @@
+#!/usr/bin/env bash
+#
+# cleanup-containers.sh - Clean up DeerFlow sandbox containers
+#
+# This script cleans up both Docker and Apple Container runtime containers
+# to ensure compatibility across different container runtimes.
+#
+
+set -e
+
+PREFIX="${1:-deer-flow-sandbox}"
+
+# Colors for output
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+NC='\033[0m' # No Color
+
+echo "Cleaning up sandbox containers with prefix: ${PREFIX}"
+
+# Function to clean up Docker containers
+cleanup_docker() {
+    if command -v docker &> /dev/null; then
+        echo -n "Checking Docker containers... "
+        DOCKER_CONTAINERS=$(docker ps -q --filter "name=${PREFIX}" 2>/dev/null || echo "")
+
+        if [ -n "$DOCKER_CONTAINERS" ]; then
+            echo ""
+            echo "Found Docker containers to clean up:"
+            docker ps --filter "name=${PREFIX}" --format "table {{.ID}}\t{{.Names}}\t{{.Status}}"
+            echo "Stopping Docker containers..."
+            echo "$DOCKER_CONTAINERS" | xargs docker stop 2>/dev/null || true
+            echo -e "${GREEN}✓ Docker containers stopped${NC}"
+        else
+            echo -e "${GREEN}none found${NC}"
+        fi
+    else
+        echo "Docker not found, skipping..."
+    fi
+}
+
+# Function to clean up Apple Container containers
+cleanup_apple_container() {
+    if command -v container &> /dev/null; then
+        echo -n "Checking Apple Container containers... "
+
+        # List all containers and filter by name
+        CONTAINER_LIST=$(container list --format json 2>/dev/null || echo "[]")
+
+        if [ "$CONTAINER_LIST" != "[]" ] && [ -n "$CONTAINER_LIST" ]; then
+            # Extract container IDs that match our prefix
+            CONTAINER_IDS=$(echo "$CONTAINER_LIST" | python3 -c "
+import json
+import sys
+try:
+    containers = json.load(sys.stdin)
+    if isinstance(containers, list):
+        for c in containers:
+            if isinstance(c, dict):
+                # Apple Container uses 'id' field which contains the container name
+                cid = c.get('configuration').get('id', '')
+                if '${PREFIX}' in cid:
+                    print(cid)
+except:
+    pass
+" 2>/dev/null || echo "")
+
+            if [ -n "$CONTAINER_IDS" ]; then
+                echo ""
+                echo "Found Apple Container containers to clean up:"
+                echo "$CONTAINER_IDS" | while read -r cid; do
+                    echo "  - $cid"
+                done
+
+                echo "Stopping Apple Container containers..."
+                echo "$CONTAINER_IDS" | while read -r cid; do
+                    container stop "$cid" 2>/dev/null || true
+                done
+                echo -e "${GREEN}✓ Apple Container containers stopped${NC}"
+            else
+                echo -e "${GREEN}none found${NC}"
+            fi
+        else
+            echo -e "${GREEN}none found${NC}"
+        fi
+    else
+        echo "Apple Container not found, skipping..."
+    fi
+}
+
+# Clean up both runtimes
+cleanup_docker
+cleanup_apple_container
+
+echo -e "${GREEN}✓ Container cleanup complete${NC}"