fix(ci): enable CGO for all builds, fix diagram and approval channels docs

Author: nnemirovsky

.github/workflows/release.yml

@@ -8,7 +8,7 @@ permissions:
   contents: write
 
 jobs:
-  goreleaser:
+  release-linux:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
@@ -19,9 +19,39 @@ jobs:
         with:
           go-version-file: go.mod
 
+      - name: Install arm64 cross-compiler
+        run: sudo apt-get update && sudo apt-get install -y gcc-aarch64-linux-gnu
+
       - uses: goreleaser/goreleaser-action@v6
         with:
           version: latest
           args: release --clean
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+  release-darwin:
+    runs-on: macos-latest
+    needs: release-linux
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+
+      - name: Build darwin binaries
+        run: |
+          CGO_ENABLED=1 GOOS=darwin GOARCH=arm64 go build -ldflags='-s -w' -o sluice_darwin_arm64 ./cmd/sluice/
+          CGO_ENABLED=1 GOOS=darwin GOARCH=amd64 go build -ldflags='-s -w' -o sluice_darwin_amd64 ./cmd/sluice/
+
+      - name: Upload darwin binaries to release
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          tag="${GITHUB_REF#refs/tags/}"
+          version="${tag#v}"
+          mv sluice_darwin_arm64 "sluice_${version}_darwin_arm64"
+          mv sluice_darwin_amd64 "sluice_${version}_darwin_amd64"
+          gh release upload "$tag" "sluice_${version}_darwin_arm64" "sluice_${version}_darwin_amd64"

.goreleaser.yml

@@ -4,12 +4,21 @@ builds:
   - id: sluice
     main: ./cmd/sluice
     binary: sluice
+    env:
+      - CGO_ENABLED=1
     goos:
-      - darwin
       - linux
     goarch:
       - amd64
       - arm64
+    overrides:
+      - goos: linux
+        goarch: arm64
+        env:
+          - CGO_ENABLED=1
+          - CC=aarch64-linux-gnu-gcc
+    ldflags:
+      - -s -w -linkmode external -extldflags "-static"
 
 archives:
   - id: sluice

Dockerfile

@@ -1,9 +1,10 @@
 FROM golang:1.26-alpine AS builder
+RUN apk add --no-cache gcc musl-dev
 WORKDIR /build
 COPY go.mod go.sum ./
 RUN go mod download
 COPY . .
-RUN CGO_ENABLED=0 go build -o /sluice ./cmd/sluice/
+RUN go build -ldflags='-s -w -linkmode external -extldflags "-static"' -o /sluice ./cmd/sluice/
 
 FROM alpine:3.21
 RUN apk add --no-cache ca-certificates wget && \

README.md

@@ -26,22 +26,27 @@ flowchart LR
         PX[SOCKS5 Proxy<br/>network policy + MITM]
     end
 
-    TG[Telegram Bot<br/>approve / deny]
+    subgraph Approval["Approval Channels"]
+        TG[Telegram<br/>primary]
+        WH[HTTP Webhooks]
+    end
+
     HM[Human]
     UP[Upstream<br/>MCP Servers]
     IN[Internet]
 
     OC -- "MCP tool calls" --> GW
     OC -- "all TCP/UDP<br/>(via tun2proxy)" --> PX
-    GW --> UP
+    GW -- "allowed" --> UP
+    GW -. "ask verdict" .-> Approval
     PX -- "phantom -> real<br/>credential swap" --> IN
-    PX -. "ask verdict" .-> TG
-    TG -. "allow / deny" .-> HM
-    HM -. "respond" .-> TG
-    TG -. "resolve" .-> PX
+    PX -. "ask verdict" .-> Approval
+    Approval -. "allow / deny" .-> HM
+    HM -. "respond" .-> Approval
+    Approval -. "resolve" .-> Sluice
 ```
 
-**OpenClaw** uses phantom tokens for all API calls. **tun2proxy** routes all traffic to sluice's SOCKS5 proxy (runs as a container in Docker, on the host for Apple Container/macOS VM). **Sluice** evaluates every connection against policy rules (allow / deny / ask). "Ask" verdicts send a Telegram notification with inline buttons. The MITM proxy swaps phantom tokens for real credentials in-flight. Credentials are managed via Telegram or CLI, stored encrypted with age, and hot-reloaded into OpenClaw without restarts.
+**OpenClaw** uses phantom tokens for all API calls. **tun2proxy** routes all traffic to sluice's SOCKS5 proxy (runs as a container in Docker, on the host for Apple Container/macOS VM). Both the MCP gateway and SOCKS5 proxy evaluate requests against policy rules (allow / deny / ask). "Ask" verdicts are broadcast to all configured approval channels (Telegram, HTTP webhooks). The first channel to respond wins. The MITM proxy swaps phantom tokens for real credentials in-flight. Credentials are managed via approval channels or CLI, stored encrypted with age, and hot-reloaded into OpenClaw without restarts.
 
 ## Quick Start
 
@@ -200,9 +205,13 @@ Sluice supports multiple credential backends. Set `provider` in `[vault]` config
 
 Chain multiple providers with `providers = ["1password", "age"]`. First provider with the credential wins.
 
-## Telegram Bot
+## Approval Channels
+
+Sluice broadcasts "ask" verdicts to all configured approval channels. The first channel to respond wins. Other channels get a cancellation notice.
 
-Manage sluice from your phone. Approve connections, add credentials, update policy.
+### Telegram (primary)
+
+Manage sluice from your phone. Approve connections and tool calls, add credentials, update policy.
 
 | Command | Description |
 |---------|-------------|
@@ -214,6 +223,10 @@ Manage sluice from your phone. Approve connections, add credentials, update poli
 | `/status` | Proxy stats and pending approvals |
 | `/audit recent [N]` | Last N audit entries |
 
+### HTTP Webhooks
+
+REST API on port 3000 for programmatic approval integration. `GET /api/approvals` lists pending requests, `POST /api/approvals/{id}/resolve` resolves them. Use this to build custom approval UIs or integrate with existing workflows.
+
 ## Audit Log
 
 Tamper-evident JSON Lines log with blake3 hash chaining. Every connection, tool call, approval, and denial is recorded.