Release and CI
v2026.7.1
OpenClaw v2026.7.1 Release Notes (2026-07-13)
OpenClaw v2026.7.1 brings major Control UI and onboarding overhauls, major updates to the official iOS, Android, and macOS apps, expanded model and provider support including GPT-5.6 compatibility, Tencent Hy3, and Meta Muse Spark 1.1, and stronger Codex and connected coding-agent workflows. Telegram, Slack, Discord, and Apple Messages each receive substantial updates, while Gateway crash loops, scheduled work, remote browser control, workspace terminals, sessions, and goals also improve. There are also many general fixes and refinements throughout OpenClaw.
Highlights
Control UI overhaul: chat, sessions, workspaces, and usage
The Control UI now works more like one browser workspace for conversations and parallel work. Chats receive clearer titles, recent sessions are easier to find, pin, group, rename, fork, archive, and mark read, and multiple sessions can sit in resizable panes that return after a reload. Drag-and-drop placement, a denser Sessions page, and a live Tasks view make it easier to move between active work without juggling browser tabs.
Chat controls are clearer while work is in progress. The composer keeps attachments, model choice, voice, reasoning, send and stop state, and message actions usable across screen sizes; Talk users can choose or refresh a microphone from settings and get readable permission guidance on narrow screens; quoted replies preserve the point being answered; and compact tool rows keep inputs, results, images, progress, errors, approvals, and steering available without overwhelming the conversation.
Usage information is easier to understand from both status views and the browser. The Usage page compares recent estimated spend and daily values without repeated reloads or hovering, shows each provider, model, agent, or channel's share, and can include provider-reported plans, quotas, balances, budgets, and Anthropic or OpenAI billing details. Seven-, thirty-, and ninety-day charts now keep zero-activity days visible, large all-agent reports limit concurrent work to reduce slowdowns and memory pressure, and chat-level context panels and completed-message details show the active model, tokens, cache use, context pressure, and estimated cost.
Mobile pairing, Gateway health, desktop-node approvals, linked GitHub work, workspace files, scheduled jobs, worktrees, Workboard items, and background tasks are now available closer to the conversation. Their status, permissions, and next steps are also clearer.
The rework also strengthens the paths underneath those controls. Dashboard connects and reconnects use less temporary Gateway memory, reducing false pressure warnings, while temporary Gateway restarts and stale assets recover more cleanly. Path-routed Gateways keep the right destination and credentials, saved choices survive refreshes, and authentication, protocol, update, and pairing failures show more useful next steps instead of leaving the page stuck or ambiguous.
Responsive layouts keep chat history and controls usable on phones, tablets, short landscape screens, and large desktops. Keyboard and focus behavior, contrast, assistive labels, copying, scrolling, and touch targets are more consistent, while navigation, pairing, voice, schedule, and status text reaches more supported languages.
Sources and contributors
- New Control UI chats now receive concise sidebar titles from their first message, and operators can route dashboard, Telegram topic, and Discord thread title generation through a smaller
utilityModel. #87643 Thanks @juliangsm, @zhangguiping-xydt. - Paired administrators can now create a mobile setup QR or copyable code from Control UI Nodes and use it to connect an official iOS or Android app. #94672 Thanks @bkudiess, @douhualili.
- Control UI now makes conversations easier to create, find, and switch from a populated session sidebar, while keeping context pressure and provider quota information close at hand. #99289 Related #99288.
- The Control UI sidebar now focuses on sessions and a few default destinations while letting users pin their preferred pages and keep those choices across reloads. #100296
- The redesigned Control UI composer keeps attachments, provider and model selection, voice, run state, and message actions clearer and more stable across mobile and desktop layouts. #100461 Thanks @fuller-stack-dev.
- Control UI Talk users can choose and refresh a microphone on narrow screens and read clear permission guidance when browser access is blocked. #101377 Thanks @fuller-stack-dev.
- Control UI chat can now show multiple resizable sessions side by side or stacked, preserve the pane layout across reloads, and keep the active pane usable on narrow screens. #100754
- The Control UI now has a live Tasks page where operators can inspect active and recent background work, open its session, refresh details, and cancel queued or running tasks when authorized. #100789
- Session lists across web and mobile now support pinned and custom groups, shared read and unread status, background-output indicators, transcript forking, and in-place rename, archive, move, and delete actions. #100814
- The Control UI Sessions page now fits more useful status and actions on a typical screen, with row details opening to reveal labels, tuning controls, and checkpoint history instead of forcing routine sideways scrolling. #100943
- Control UI users can drag a session directly into the current pane or onto any side to create a split, with a preview showing where it will land. #101191
- Operators can configure token or full per-reply usage footers once with
messages.responseUsage, while users can turn them off or reset a session to the inherited default. #89762 Thanks @marvinthebored, @obviyus, @peetiegonzalez. - The Control UI Usage page now makes recent estimated costs, daily values, and each provider, model, agent, or channel's share easier to compare without repeated reloads or hovering. #100432
- The Usage page now shows provider-reported plans, quotas, reset times, balances, spending, and budgets alongside OpenClaw session analysis, including OpenRouter and Venice coverage. #100520
- Control UI Usage can now show Anthropic and OpenAI daily spend, tokens, requests, top models, and billing categories for today, seven days, and thirty days when admin credentials are configured. #100672
- Daily token and cost charts now include zero-activity days across bounded date ranges, so 7-day, 30-day, and 90-day views show the full calendar period instead of shrinking around active days. #81467 Thanks @adapepper.
- All-agent cost reports on large installations now limit concurrent Gateway work so the dashboard is less likely to slow down, time out, or add memory pressure. #101589 Thanks @vincentkoc, @zw-xysk.
- Hovering or keyboard-focusing a public GitHub issue or pull request in Control UI chat now previews its status, title, author, activity, comments, and change size without leaving the conversation. #100434
- File paths in Control UI chats are now clickable, opening a searchable syntax-highlighted preview at the cited line with options to reveal, copy, or open the file in a supported editor. #100679
- Control UI connection failures now show actionable messages such as "Pairing required" instead of replacing them with a generic gateway disconnect. #54758 Thanks @ruanrrn.
- Control UI sessions using full verbose output now open tool inputs and results by default, reducing repeated clicks during debugging and review. #74398 Thanks @samrusani.
- The Control UI context indicator now remains visible with an approximate cached total while a response is active, without using stale data for urgent warnings or the Compact action. #89772 Thanks @bladin.
- Control UI and WebChat no longer let a non-terminal internal tool failure dominate the transcript with a red error banner after the assistant has already produced a normal final answer. #90122 Thanks @harjothkhara.
- A default agent selected in the Control UI now remains selected after refresh without saving unrelated unfinished settings. #91457 Thanks @zengwen-dt.
- Segmented streaming replies in Control UI WebChat now stay under one assistant avatar and footer instead of appearing as several separate responses. #92063 Related #63956. Thanks @contentfree, @harjothkhara.
- Dashboard WebChat users can right-click a completed message and reply with visible quote context instead of manually copying and formatting it. #92654 Thanks @programmingwtf, @vincentkoc.
- After an update installs, the Control UI now says when a Gateway restart is already in progress instead of making the Update button appear unresponsive. #93082 Thanks @goutamadwant.
- Live tool-using replies in Control UI WebChat now keep the assistant's introduction ahead of the tool card, even when browser and Gateway clocks differ. #93184 Thanks @pick-cat.
- Control UI Quick Create now lets users choose a model for an agent-turn cron job and shows whether existing jobs use that model or the default. #95341 Thanks @ly85206559.
- Control UI WebChat can now show Codex preamble and commentary while tools are running, with a choice to hide or retain that progress after the final answer. #95708 Thanks @obviyus, @ragesaq.
- Long reply IDs containing emoji or other supplementary characters now remain valid when shortened for WebChat and Gateway reply directives instead of being cut into malformed text. #96938 Thanks @ly-wang19.
- Long tool activity details now remain readable when shortened for chat, UI, or logs, even when an emoji or other supplementary character falls at the cutoff. #96958 Thanks @bartok9, @ly-wang19, @vincentkoc.
- WebChat now shows long provider and model names together with the selected reasoning level in the composer, while narrow screens retain a sensible overflow limit. #96990 Thanks @maweibin, @xiayingren123.
- Agents can use targetless
message.sendfor progress or intermediate updates in the current WebChat without an explicit destination. #97167 Related #96840. Thanks @mantiscartography, @zhangguiping-xydt. - New Control UI chats now use the selected model's current context window instead of inheriting an outdated, smaller limit from a parent session. #97332 Thanks @galiniliev.
- WebChat stays on the newest reply when assistant audio or video finishes loading, while respecting readers who intentionally scrolled upward. #97575 Thanks @turbotheturtle.
- Control UI pages for multiple Gateways on one domain now stay connected to the Gateway named by their path instead of reusing a sibling page's saved destination. #97665 Thanks @alix-007.
/pair qrnow delivers a scannable code in Telegram and Control UI or a readable code in the TUI without storing the one-time setup secret in chat history. #97933 Thanks @joshavant.- Expired
/pair qrcards in Control UI now clearly say the code is unusable and direct users to generate a fresh one. #98049 Related #98039. Thanks @ooiuuii. - Expired mobile-pairing codes now explain how to run
/pair qragain in the selected language. Sources: bb4afe4, da9308d, dfaec18, 6b7986e, 21af6e7, 4e62124, 6cd0106, a72a641, a143ae4, cd30b1c, f69e27a, ccddbee, 9ed03df, f84243f, 3d06ee9, 9bd071e, 405b7a5, 1a160ce. - Control UI now shows channel-triggered agent runs as in progress, so users can tell that messages from channels such as Weixin are actively being handled. #98257 Thanks @scotthuang.
- The Control UI workspace rail now gives long Project files lists their own scrollbar so files remain browsable without spilling off screen. #98646 Related #98566. Thanks @645648406-max, @wuqxuan.
- Session Workspace file paths can now be copied from Chat even when the Control UI runs over plain HTTP or another context without the standard Clipboard API. #98764 Related #98759. Thanks @adinballew, @zengwen-dt.
- Tool-heavy Control UI chats now use compact expandable activity rows, so commands and results take less space while full details stay one click away. #99763
- The Control UI now stays fixed during trackpad overscroll on Mac and desktop browsers while chat threads and lists continue scrolling normally. #99830
- Control UI chat is easier to scan with quieter composer controls, a Faster-to-Smarter reasoning slider, and connection status that no longer competes with persistent version text. #99838 Related #99837.
- Mounted deep links, Set Default, authenticated avatars, cron alerts, and Workboard scrolling now behave correctly again across the Control UI. #100106
- Administrators can now open mobile pairing from any Control UI page or Quick Settings, while non-admin operators continue to see the action disabled with an access explanation. #100157
- The Control UI now shows a ready mobile-pairing QR code immediately even when the pending-device list is slow, then adds approval requests when they arrive. #100179
- Control UI users can select and copy tool activity without toggling its row, and failed tools no longer repeat redundant error indicators. #100199 Thanks @steipete-oai.
- The Gateway Dashboard login now fits and behaves better on phones and short windows, with larger touch targets, easier URL entry, and reachable recovery help. #100208
- Control UI users can organize large session lists by custom group, channel, kind, agent, or date, with persistent assignments and drag-and-drop management. #100262
- Users can open the Control UI context ring to inspect exact context use, the latest input and output token counts, and the active model without leaving chat. #100264
- Images returned by tools such as
readnow appear directly in the Control UI conversation instead of only being mentioned in text. #100295 Thanks @lzyyzznl, @pandah97, @rquinones84. - Control UI tool activity now combines matching calls and results into one consistent row, removes repeated labels and categories, and keeps inputs, outputs, previews, and real errors accessible. #100318
- The Control UI context panel now shows the latest run's estimated total cost and available input, output, cache-read, and cache-write breakdowns beside the provider and model. #100379
- The Control UI sidebar now keeps all pinned chats visible alongside nine ordinary recent chats in a more compact, conversation-focused desktop and tablet layout. #100386
- The Control UI composer now shows reasoning level clearly, keeps Talk and its settings together, and preserves usable model controls on phone and landscape layouts. #100445
- Control UI Talk now starts from a simpler composer while administrators can set durable provider, transport, timing, and reasoning defaults in Settings. #100453
- Temporary Gateway disconnects no longer replace an authenticated Control UI page with the login screen, preserving dashboard context while automatic reconnection continues. #100479
- The Control UI Cron Jobs page now uses compact summaries, clear status cues, expandable details, and an overflow menu so large job lists are faster to review. #100646
- The Control UI sidebar now keeps recent chats in place while switching, combines search entry points, supports touch session actions, and reduces unnecessary chrome. #100648
- Images received through Telegram, iMessage, and other channels now reappear inline when users revisit Control UI chat history after a reload. #100725 Thanks @sweetcornna, @vergissberlin.
- The Control UI goal pill now supports pause, resume, clear, inspection, and edit preparation with live timing and token details, while command and TUI users can reword a goal without resetting its budget. #100736
- The Control UI keeps Overview, Workboard, Agents, and More visible while allowing the session list to use available height and scroll independently. #100742
- Assistant documents downloaded from the Control UI now keep recognizable original filenames instead of exposing UUID-suffixed staging names. #100743
- Copying code from a long Control UI reply now keeps the chat at the same reading position instead of jumping upward. #100807 Thanks @jvlegod.
- Desktop Control UI users can choose whether Enter sends or inserts a new line, with Command+Enter or Ctrl+Enter available as the send shortcut and the choice retained for that Gateway. #100810 Thanks @moomx, @vincentkoc.
- Switching Control UI chats no longer unexpectedly moves the selected session to the top, and users can choose stable creation order or recently updated order for the sidebar. #100927 Thanks @shakkernerd, @vyctorbrzezowski.
- Control UI Settings now use consistent
/settings/...paths while old bookmarks continue to work, making reloads and links more reliable on hosted or reverse-proxied installations. #100928 Thanks @vyctorbrzezowski. - Control UI navigation now places branding, search, and sidebar controls where desktop and mobile users expect them, with clearer active sessions, compact timestamps, and easier terminal access. #101017 Thanks @shakkernerd, @vyctorbrzezowski.
- The Control UI sidebar collapse control now sits in the sidebar it affects instead of looking like an unrelated topbar or terminal button. #101038
- Control UI Talk users can choose the system default or any browser-visible microphone beside the Talk button and receive a clear message when a saved device is unavailable. #101100
- Sidebar session groups can now be renamed, removed without deleting sessions, created while empty, or disabled to restore one flat recent-session list. #101117
- The Control UI now shows Workboard navigation only when Workboard is enabled and presents a cleaner collapsed sidebar with clearer icons and status spacing. #101123
- The Control UI now puts search, sidebar access, theme choice, and macOS branding in clearer, more predictable locations with accurate screen-reader labels. #101497
- Temporary Gateway drops no longer push Control UI content down with a full-width banner, so the dashboard stays in place while a compact Retry notice appears. #101812
- Temporary Gateway disconnects now use a calmer, dashboard-native reconnect pill with the same Retry and accessibility behavior. #101844
- Control UI commentary settings now use the selected language across the supported translations in this release. Sources: 34badde, a9cb866, ce9166d, 6b67ada, 006c2f7, 6bdffa5, b4476ab, 5b5c623, 1520d09, 6140326, 75bd44a, c1aeaf9, 49edc0a, cb69ce7, bb0af61, 0dcfbb0, db73ece, 21e6fc9.
- The All Sessions sidebar label now uses the selected language across the supported Control UI translations in this release. Sources: b2c3dc2, 61347a5, a2674b6, bbabad4, 8909289, 22552d6, 96e3615, 452351c, 5e9a62c, 0a9648b, a803589, 7c30ff8, e3d2878, 620f2e3, aa0f36c, c336256, 64dd688, e2ecbc8.
- The Control UI mobile-pairing flow now appears in the selected language across 18 supported locales instead of mixing localized screens with English setup text. c78b0d5
- A failed Control UI login or Gateway connection now immediately shows the error, recovery steps, and relevant documentation link instead of hiding them in a collapsed panel. f9e194e
- The web sidebar now reliably fills pinned and overflow navigation routes, keeping destinations such as Worktrees available. 55a0012 Thanks @vincentkoc.
- Non-English Control UI users now see translated cron overflow-menu and "run if due" labels, including the assistive label for more actions. 2585d6b
- The Control UI microphone-access warning for realtime voice input now appears in the user's selected language. 68c85ef
- The Control UI sidebar now builds cleanly with session grouping and drag-to-split behavior intact after stray merge-conflict text was removed. 0e3ce24
- Hindi and Russian users can now receive matching Control UI translations, and documentation operators can generate those language editions through the existing locale workflow. 689baa5 Thanks @vincentkoc.
- During device pairing,
/ pair qrnow follows the same authorized pairing flow as/pair qrwithout starting an agent turn or disrupting the existing Control UI route. #98262 Thanks @brokemac79. - Opening or reconnecting the Control UI dashboard now uses much less temporary Gateway memory, reducing false
rss_growthwarnings while preserving requested usage totals. #100054 Thanks @nianjiuzst. - Control UI Settings now shows a remote Gateway's host identity, address, operating system, runtime, uptime, CPU load, memory, and free disk space without requiring SSH. #100478
- The Control UI now shows execution approvals for supported desktop nodes and rejects pending, unsupported, or policy-blocked requests before they reach the node. #100505 Thanks @vincentkoc.
- A configured
ui.seamColornow changes Control UI buttons, highlights, selections, and focus rings, while invalid values fall back cleanly. #93699 Thanks @dennis-lynch, @goutamadwant. - QR codes and other half-block text art in the Control UI now preserve spacing, scroll when needed, and copy with enough padding to remain usable. #93869 Thanks @emg110, @vincentkoc.
- Open Control UI tabs now switch to the active build after a service-worker update, reducing stale JavaScript, CSS, and protocol mismatch errors after upgrades. #96141 Thanks @andrewccctechlink, @brokemac79.
- Chat clients can now match each pending user message to its exact Gateway-confirmed message, reducing duplicate or mismatched bubbles during interleaved turns. #96273 Thanks @datus1982, @wyf027.
- Clicking a cron job's History button now gives immediate feedback and scrolls directly to that job's updated run history. #96281 Thanks @wyf027, @yzhong52.
- Control UI token totals near one million now display as
1.0Minstead of the confusing1000k. #96298 Thanks @ly-wang19. - Usage Mosaic and usage summaries now show near-million token totals as
1.0Minstead of1000.0K. #96450 Thanks @ly-wang19. - The Voice, Model, and Sensitivity controls in Control UI Talk settings now align consistently in one row without duplicate selected-value text disturbing the layout. #96925 Thanks @evan-ym.
- Control UI approval prompts no longer inherit failures from older requests or re-enable controls while the current decision is still being processed. #98394 Thanks @haruaiclone-droid.
- Control UI now stops retrying after detecting an incompatible Gateway protocol and shows the update or reload guidance needed to reconnect. #98414 Thanks @haruaiclone-droid.
- On phones and other short landscape screens, the Control UI composer now scrolls within a bounded area so chat history and all composing controls remain accessible. #98683 Related #98615. Thanks @jin-li, @qingminglong.
- The Control UI now retries after a temporary failed load during a Gateway restart or stale-asset transition instead of remaining stuck until the page is refreshed manually. #99111 Thanks @zengwen-dt.
- Large pasted PNG screenshots can now be sent through Control UI webchat without failing during attachment processing. #99213 Thanks @jincheng-xydt, @vincentkoc.
- The Control UI mobile-pairing flow is now fully localized for Hindi and Russian users, from setup-code creation through pending-device management. #100040
- The Control UI workspace rail now sits flush with the window and uses less space when collapsed, removing the empty strip without overlapping chat. #100088
- Control UI chat history now hides only exact duplicate final delivery mirrors, leaving legitimate repeated sends, forwards, and distinct replies visible. #100136
- Control UI chats now leave consistent space above the first message across phones, standard desktops, and tall windows. #100144 Thanks @steipete-oai.
- Control UI Settings now offers a persistent Simple/Advanced switch, cleaner Appearance controls, and a Pending label only when a Context Profile change is actually staged. #100147
- Control UI tool-call bubbles and error badges now share clean right-edge alignment, so failed activity is easier to scan on phone-sized and desktop chats. #100163 Thanks @steipete-oai.
- OpenAI users now see only the supported Standard and Fast choices in the Control UI speed picker, with inherited Fast mode shown correctly. #100190
- Short drafts in the Control UI composer no longer show an unnecessary scrollbar gutter, while long drafts still scroll when needed. #100252
- Clearing a session label now removes the old name promptly from other subscribed Control UI clients without requiring a full refresh. #100266
- Desktop Control UI users can hover a shortened recent-session name to reveal its hidden tail and distinguish similar conversations without opening each one. #100276
- The expanded Control UI sidebar no longer repeats provider quota information already available in chat, Overview, and Usage views. #100356 Thanks @shakkernerd.
- Completed Control UI messages now use the timestamp to open token, cache, context, cost, and model details instead of adding a separate Context control to every footer. #100391 Thanks @steipete-oai.
- Autonomous session history now keeps an earlier failed cron or scheduled turn marked as an error even after a later turn succeeds or the page reloads. #100514 Thanks @qingminglong.
- The Control UI Skills page now shows readable Agent and Search labels with aligned filters and correctly sized selection controls. #100526 Thanks @evan-ym.
- After a Control UI reply finishes, the composer now stays on Send despite delayed completed-run state, while a real new run still switches it to Stop. #100527 Thanks @tiffanychum.
- Control UI and Skill Workshop file previews now show a single Escape shortcut hint while retaining Escape-to-close behavior. #100528 Thanks @xianshishan.
- Expanded Control UI tool activity no longer repeats the tool name and icon, making completed and in-progress calls quicker to scan. #100606
- Clearing a Control UI session model override now shows the selected agent's own default model rather than the unrelated global default. #100719 Thanks @hyspacex.
- Assistant-sent documents in WebChat now download with their original server-provided filename, including Unicode names, instead of opening as an unnamed browser document. #100728 Thanks @lptrichor.
- The Control UI now accepts
/steerguidance during an active run instead of incorrectly replyingNo active run. #100803 Thanks @hackerismydream. - New Control UI sessions now stay visible at the front of the sidebar after users switch to another chat, without requiring a page refresh. #100981 Thanks @shakkernerd.
- Worktrees management now lives under Control UI Settings instead of occupying a top-level sidebar item, while existing deep links remain valid. #100995
- Long
/btwanswers in the desktop Control UI now stay within the browser window and scroll inside the result card, while mobile retains full-card scrolling. #101169 Thanks @snoutfirst. - Finished chats no longer remain stuck with a busy spinner in the Control UI sidebar, even when an older Gateway update arrives afterward. #101293 Thanks @fuller-stack-dev.
- Large Skill Workshop support files now scroll, switch, filter, wrap, and copy without freezing or severely slowing the Control UI. #101319 Thanks @shakkernerd, @xianshishan.
- Users can stay signed in to multiple path- or query-routed Control UI gateways on one HTTPS origin without one gateway overwriting another's device token. #101352 Thanks @fuller-stack-dev.
- Control UI users can type
/approveto release a waiting exec prompt without the decision getting queued behind the blocked chat run. #101532 Thanks @vincentkoc. - Control UI build errors now keep emoji and other supplementary characters intact when command output is shortened for display. #101591 Thanks @maweibin.
- Workboard cards can now be edited, moved, archived, stopped, opened, or deleted directly from the detail drawer, while read-only viewers still see no mutation controls. #101658 Thanks @momothemage, @princebansal.
- The Control UI microphone button is now visually quieter while idle and more distinct while recording, making the current voice state easier to recognize. #101843
- Users with saved working dashboard credentials no longer see the login screen flash briefly while Control UI reconnects. #101849
- Typing anywhere in the active Control UI chat now places the first character in the message composer without stealing input from the command palette. #102210 Thanks @shakkernerd.
Easier setup from install to first chat
Onboarding now offers clearer paths to a usable first chat. Fresh CLI installs enter guided setup, configured installs open the TUI, and conversational Crestodian setup remains optional. Android and macOS guide users through pairing, permissions, local or remote setup, and recovery; macOS can also test detected Claude Code, Codex, Gemini CLI, API-key, and supported provider-catalog choices before saving them. Interrupted authentication or channel setup retains earlier choices, while users without a working model are guided through credential and model selection instead of being sent into an unusable chat. Owners and administrators can also renew an expired Codex or OpenAI login through private Telegram, Web UI, Discord, or Slack commands without SSH access.
Existing installations receive safeguards before their working state is changed. Doctor and updates refuse to replace an unreadable configuration, Doctor preserves model tuning while merging retired entries, and extended-stable updates retain the selected release channel. Container upgrades complete migrations and plugin repairs before reporting readiness, and unsafe runtimes are stopped before they can open OpenClaw state databases.
Sources and contributors
openclaw doctorand updates now refuse to replace an unreadableopenclaw.json, preserving existing Gateway, agent, channel, and plugin settings instead of breaking the installation. #96469 Thanks @obviyus, @yetval.openclaw doctor --fixnow preserves aliases, parameters, streaming choices, runtime settings, and other model tuning when several retired model names merge into one current model, and reports any merge conflicts accurately. #96544 Thanks @vincentkoc, @yetval.- Owners and admins can now restore an expired Codex or OpenAI login from a browser through private Telegram, Web UI, Discord, or Slack commands without SSH access. #98006 Thanks @100yenadmin, @jalehman, @obviyus.
- The CLI now guides fresh installs through setup, opens configured installs directly in the TUI, preserves existing choices on reruns, and finishes onboarding in a usable terminal chat. #98218 Thanks @fuller-stack-dev.
- New Android users now get a guided first-run path through setup-code or QR entry, Gateway pairing, node approval, permissions, recovery steps, and confirmed phone readiness before onboarding completes. #98752 Thanks @jesse-merhi.
- New Mac users can now open the app and reach a working local agent without Terminal, Homebrew, administrator access, or an extra approval prompt for the app's own node. #99767 Related #99764.
- Package installs can now select and retain
openclaw update --channel extended-stable, inspect its availability, and fail safely if its npm metadata is incomplete. #99811 Thanks @kevinslin. - Fresh installs can now complete conversational Crestodian setup, approve the proposed plan once, connect channels, and continue into the normal agent while classic and scripted onboarding remain available. #99935
- macOS onboarding now verifies the chosen AI connection before first chat, presents clearer local and remote setup choices, and offers friendly recovery or a verified manual API-key path when authentication fails. #100288
- First-time onboarding now preserves earlier choices after authentication or pairing trouble and gives users an actionable model-configuration next step instead of opening an unusable first chat. #100632
- macOS onboarding now offers the Gateway's supported text-inference provider catalog instead of only Anthropic, OpenAI, and Google, and tests credentials before saving them. #101132
- Container upgrades now finish required migrations and plugin repairs before reporting the Gateway ready, and failed repairs stop with actionable guidance instead of leaving a false-green service. #101881 Thanks @sallyom.
- Crestodian setup now guides users who lack a usable model provider through masked credential entry and model selection, while deterministic setup and repair commands remain available until inference is configured. #101887 Thanks @fuller-stack-dev.
- OpenClaw now blocks unsafe runtimes before they can open SQLite-backed state, guides legacy Bun services to Node, and selects a WAL-safe Node runtime during setup and repair. #106065 Thanks @vincentkoc.
Official apps
The official iOS, Android, and macOS apps received substantial updates across setup, navigation, chat, voice, Apple Watch, permissions, localization, files, scheduled work, native session controls, and Gateway recovery. Recent conversations remain useful through temporary disconnects: cached sessions and transcripts stay available for reading, supported text sends can wait for reconnection in the correct chat, and long conversations are easier to resume without losing the current place or mistaking an offline view for live history.
These improvements also bring the native clients closer together. Mobile queues survive app restarts, the macOS app gains fuller session and transcript tools, and each client refreshes the same conversation when the Gateway returns.
Shared app improvements
Sources and contributors
iOS, iPadOS, and Apple Watch
Sources and contributors
- iPhone and iPad chat now opens with the last known conversation and lets users browse recent cached sessions while the Gateway is unavailable. #100219
- iOS users can queue chat messages while disconnected, keep them through app restarts, and send them in order after reconnection with clear retry and delete controls. #100331
- Apple Watch users can dictate a message and hear OpenClaw's final reply on the Watch, with separate silent-send, cancel, and stop controls. #100283
Android
Sources and contributors
- Android chat now shows the last known transcript immediately and keeps recent cached conversations readable during a Gateway outage, then refreshes them after reconnection. #100227
- Android users can queue text while the Gateway is offline, keep it through an app restart, and send it in order after reconnection with Retry and Delete controls for failures. #100290
macOS
Sources and contributors
- Mac chat now restores recent sessions and transcripts immediately, remains browsable while disconnected, and queues offline sends for the correct Gateway identity. #100275
- The native macOS chat window now provides a full session sidebar, real new-session creation, slash-command completion, context and cost visibility, message copying, transcript export, and compact or clear-history actions. #101103
Models and providers
OpenClaw model selection expands across major hosted, managed, and local choices. Each supported provider route retains its own authentication, model limits, reasoning controls, tool behavior, image support, and usage reporting.
GPT-5.6 and Codex
Organizations with GPT-5.6 preview access can select Sol, Terra, or Luna through supported OpenAI and Codex routes with the expected context metadata, text and image input, reasoning levels, and cache-write accounting when OpenAI supplies it. Fresh OpenAI API-key and ChatGPT/Codex setups choose their intended GPT-5.6 defaults without replacing an explicit model choice. Supported Ultra choices remain aligned across OpenClaw and native Codex, and Codex supervision records native Codex child agents as tasks and returns their results to the parent.
Tencent Hy3
Tencent Hunyuan Hy3 now has a complete setup path through TokenHub or TokenPlan, including first-class authentication choices, CLI onboarding, model discovery, and configuration validation. Existing TokenHub configurations retain access to hy3-preview alongside the stable hy3 model.
Meta Model API and Muse Spark 1.1
Operators can configure Meta Model API with MODEL_API_KEY or the onboarding authentication choice, select meta-model-api/muse-spark-1.1, and use supported streaming, tool calling, image input, and reasoning-effort controls.
Claude models
Claude Sonnet 5 is selectable through direct Anthropic, Claude CLI, supported Vertex regions, Bedrock inference profiles, and Bedrock Mantle with its documented context, output, image, thinking, and pricing behavior. Users with Claude Mythos 5 access can select it through supported Anthropic-family routes with its required context, output, adaptive-thinking, caching, and replay behavior.
Other provider routes
Copilot sessions can explicitly use supported custom OpenAI, Azure OpenAI, Ollama-compatible, or Anthropic providers and start a compatible session when connection or credential settings change. Paired computers can run short tasks on eligible local Ollama models, while ClawRouter can expose the models granted to one managed key and report their usage and budget. Users can also claim active promotional models without replacing existing defaults, install LongCat-2.0 through its official provider, and continue Gemini latest tool-calling conversations across both supported Google transports.
Sources and contributors
- Copilot sessions can now use explicitly selected custom OpenAI, Azure OpenAI, Ollama-compatible, or Anthropic providers and restart cleanly when model, endpoint, credentials, headers, or token limits change. #96345 Thanks @vincentkoc.
- GPT-5.6 users can now select supported Ultra modes consistently, keep model and thinking choices aligned across OpenClaw surfaces, and receive native Codex child-agent results as tracked tasks. #98021 Thanks @anyech.
- Claude Sonnet 5 is now selectable across Anthropic, Claude CLI, supported Vertex regions, Bedrock inference profiles, and Bedrock Mantle with its documented context, output, image, thinking, and pricing behavior. #98254 Thanks @vortexopenclaw.
- Organizations with GPT-5.6 preview access can select Sol, Terra, or Luna across supported OpenAI and Codex paths with correct reasoning controls, context metadata, and cache-write accounting. #98333 Related #98296. Thanks @steipete-oai.
- Tencent Hunyuan Hy3 now has a complete supported OpenClaw setup path through TokenHub or TokenPlan, including first-class authentication, model discovery, configuration validation, CLI onboarding, and compatibility for existing
hy3-previewsetups. #99076 Thanks @moncac. - OpenClaw agents can now run short tasks on chat-capable Ollama models installed on paired macOS, Linux, or Windows nodes, with a separate control for disabling node inference. #99234 Related #99228.
- A single
CLAWROUTER_API_KEYcan now expose only its granted models across supported transports and show managed requests, tokens, spend, and monthly budget in normal status views. #99658 Related #99657. - Users can discover active promotional models and claim them with
openclaw promos claim <slug>without rerunning onboarding or unexpectedly replacing existing defaults and credentials. #100236 Thanks @fuller-stack-dev. - Hosted LongCat-2.0 can now be installed through the official LongCat plugin, configured with
LONGCAT_API_KEYduring onboarding, and selected aslongcat/LongCat-2.0for multi-turn tool use. #100501 Thanks @vincentkoc. - Gemini latest aliases now continue tool-calling conversations across both supported Google transports instead of stopping with a missing-thought-signature HTTP 400. #100605 Thanks @chenxiaoyu209, @guarismo.
- Users with Claude Mythos 5 access can select it through Anthropic, Anthropic Vertex, Amazon Bedrock, or Bedrock Mantle with its required context, output, thinking, caching, and replay behavior. #101238 Thanks @vincentkoc.
- OpenClaw now supports Meta Model API setup and the Muse Spark 1.1 model, including streaming, tool calling, image input, and supported reasoning controls. #102873 Thanks @davemorin, @hamidshojanazeri, @jalehman, @solvely-colin.
- Legacy-state upgrades no longer stall repeatedly, while fresh OpenAI and ChatGPT/Codex setups select the intended GPT-5.6 defaults and use supported temperature and tool-call behavior. #104656 Thanks @bdjben, @obviyus, @sallyom.
Codex and connected coding agents
OpenClaw now works more cleanly with coding agents that live outside the current chat. openclaw attach can open Claude Code against the main or a selected Gateway session with temporary, revocable access instead of process-wide credentials. Codex app-server sessions can resume, delegate to native subagents, and return their results as tracked work, while Copilot sessions can use explicitly selected custom providers and restart when their connection settings change.
The surrounding session workflow is more durable too. Important conversations can be pinned, renamed, archived, restored, and monitored as ongoing work, while active goals remain part of working memory across later turns, compaction, queues, and interruptions.
Sources and contributors
- External tools can now receive session-scoped Gateway access without process-wide credentials or permission to impersonate another session, forming the secure base for
openclaw attach. #96351 Thanks @anagnorisis2peripeteia, @obviyus. openclaw attachnow launches Claude Code with temporary access to the main or selected Gateway session, keeps credentials out of arguments, and revokes the grant when the session ends. #96454 Thanks @anagnorisis2peripeteia, @obviyus.- GPT-5.6 users can now select supported Ultra modes consistently, keep model and thinking choices aligned across OpenClaw surfaces, and receive native Codex child-agent results as tracked tasks. #98021 Thanks @anyech.
- Codex app-server agents can again list allowed agents, spawn OpenClaw or connected subagents, and yield during delegated work without resumed heartbeats hitting incompatible tool definitions. #99561 Related #99464. Thanks @100yenadmin, @joshavant.
- Codex-native delegation from OpenClaw threads now creates native task records again, while unsupported custom Codex app-server versions fail startup with a clear minimum-version error. #101221
- Copilot sessions can now use explicitly selected custom OpenAI, Azure OpenAI, Ollama-compatible, or Anthropic providers and restart cleanly when model, endpoint, credentials, headers, or token limits change. #96345 Thanks @vincentkoc.
- Sessions can now be pinned, archived without losing transcripts, restored, renamed from chat surfaces, and monitored for active runs as durable conversation threads. #98510 Thanks @maziyang2.
- An active
/goalnow keeps guiding later turns and survives compaction, queues, and interruptions until the goal is paused, completed, blocked, or limited. #100468
Telegram
Telegram received broad work across live progress, media, documents, topics, commands, retries, account routing, setup, and delivery. Albums reach the model with every available image, long replies remain easier to follow while they run, and temporary conflicts or network failures are less likely to block later messages or create duplicates.
Messages and actions also stay with the intended bot, topic, and conversation more consistently, while setup and account-health problems provide clearer ways to recover.
Sources and contributors
- Telegram photo albums now give the model every successfully downloaded image in order instead of only one photo and unusable file references, while failed items are omitted. #97045 Thanks @nianjiuzst, @obviyus.
- Telegram's live progress view now keeps reasoning, commentary, formatting, and tool activity readable and stable, then leaves a concise completion summary instead of disappearing. #98907 Thanks @marvinthebored, @peetiegonzalez.
- Telegram users should see fewer failed final replies or bot delivery sends during flaky network handshakes, without increasing duplicate-message risk for failures that may have happened after a request was sent. #101258 Thanks @lzw112.
Signal
Signal replies can now quote the message that triggered them, making busy conversations easier to follow. Friendly aliases such as signal:me or signal:ops also make repeat contacts and groups easier to address without reusing raw identifiers.
Sources and contributors
- Signal auto-replies now quote the message that triggered them, making responses easier to follow in groups and busy conversations. #95718 Thanks @jesse-merhi.
- Signal users can assign stable names such as
signal:meorsignal:opsto repeat contacts and groups instead of reusing raw phone numbers, UUIDs, or IDs. #95738 Thanks @jesse-merhi.
Slack
Slack threads retain their conversation history more consistently, interactive cards and progress stay in the right place, and accepted replies are less likely to be repeated after an uncertain confirmation. Long-running conversations also avoid more unnecessary waits before reaching the agent.
Sources and contributors
- Slack replies stay attached to the root thread's session history instead of accumulating separate, nearly empty child sessions. #97168 Related #96535. Thanks @gorkem2020, @liuwqgit.
- When Slack accepts a reply but the confirmation is lost, OpenClaw can verify the existing post and avoid sending a duplicate. #97480 Thanks @joeyfrasier.
Discord
Discord improves reply visibility, attachments, voice sessions, progress, reconnects, and multi-account behavior. Completed replies produce more useful unread cues, brief Gateway reconnects are less likely to lose outbound messages, and repeated session-resume failures can recover without taking the whole Gateway down.
Sources and contributors
- Completed partial-stream Discord replies now arrive as fresh messages that can trigger normal unread cues after a user leaves the channel. #99711 Thanks @davelutztx.
- Discord replies, cron reports, and other outbound messages are less likely to disappear during a brief Gateway reconnect, without replaying chunks or media Discord already accepted. #100896 Thanks @tiffanychum.
- Discord bots can now recover in place after repeated session-resume rejection, reducing prolonged outages, lost replies, and full Gateway restarts. #103596
WhatsApp reconnects and overlapping replies are less likely to lose, skip, or disorder messages. Logged-out accounts remain stopped until they are deliberately reconnected, while accepted messages and completed replies continue more reliably through brief connection changes.
Sources and contributors
- Logged-out or replaced WhatsApp accounts now stay stopped until reconnection instead of entering repeated restart loops that can consume resources and slow other accounts. #78511 Thanks @openperf.
- Eligible WhatsApp messages received during a brief reconnect now reach OpenClaw for an automatic reply instead of being marked read and silently skipped. #80642 Thanks @vishalj99.
- Concurrent WhatsApp Web replies, media, reactions, and queued messages now send one at a time per account, reducing interference and unpredictable delivery order. #99050 Thanks @ooiuuii.
- Completed WhatsApp replies now continue delivering when another message arrives mid-delivery, so overlapping conversations are less likely to go unexpectedly silent. #100205
Apple Messages
Apple Messages receives broader improvements to replies, typing, media, routing, setup guidance, and chat continuity. Remote Mac attachments can reach the active conversation through a usable local path, replies work in more bridge setups, and ordinary message text is less likely to be mistaken for internal role markers.
Sources and contributors
- Photos bridged from a remote iMessage Mac to a separate Gateway host now arrive in Codex conversations through a readable local path rather than a Mac-only filename. #91803 Thanks @turbotheturtle.
- AppleScript-only and bot-user or SSH iMessage setups now deliver replies even when threading is unavailable, and database changes no longer leave inbound messages hidden behind stale recovery state. #100446 Thanks @omarshahine.
- Direct iMessage chats using the
imsgprivate API bridge now show typing as soon as a slow turn is accepted, without waiting for a read receipt. #95621 Thanks @omarshahine. - iMessage replies no longer lose ordinary sentence text that happens to end with
user:,system:, orassistant:. #96392 Thanks @ly-wang19.
Crash loops now stop for repair
A supervised Gateway that repeatedly fails during startup now leaves operators a stable restart and recovery process to inspect and repair. Instead of relaunching forever, the control path remains available while automatic channel and provider restarts pause until the underlying problem is fixed.
Sources and contributors
- A repeatedly crashing supervised Gateway now leaves a stable control process available for inspection and repair instead of trapping operators in a restart loop. a18708c Thanks @obviyus.
Scheduled work, remote browser control, and workspace terminals
Scheduled work can wake when a command finishes or a watched condition changes, remote browser control can pair selected signed-in tabs and save completed downloads safely, and guarded workspace terminals are available across web and mobile.
Scheduled work that wakes only when needed
Scheduled jobs can react when an external command finishes or a watched condition changes, so the full agent runs only when there is something new to handle. Reapplying the same declaration updates the intended job in place, preserving identity and history instead of creating duplicate schedules.
Sources and contributors
- A cron job can now watch a build, deploy, script, or other command and resume the originating workflow with its exit code and recent output when it finishes. #92037 Thanks @anagnorisis2peripeteia.
- Cron declarations can now be safely reapplied without duplicate jobs or lost history, while ownership, next run, latest result, delivery, and failure notifications are easier to inspect. #100480
- Cron jobs can now watch an outside condition and run their real payload only when that state changes, avoiding full agent wakeups on unchanged polls. #101195
Remote browser pairing and downloads
Browser control is easier to use across machines: operators can pair the bundled Chrome extension with a remote Gateway, share only selected signed-in tabs, diagnose Windows and WSL2 connection details, and revoke access by removing a tab from the OpenClaw group. Agents can also wait for delayed downloads and save the finished file to a guarded local path with its final URL and suggested name.
Sources and contributors
- Windows and WSL2 users now get IPv4 and IPv6 checks plus the matching portproxy guidance needed to restore Chrome browser control without broadening CDP exposure. #100590 Thanks @owlock, @zengwen-dt.
- The bundled Chrome extension now lets users control selected signed-in tabs from a phone or another channel without someone approving remote debugging at the desktop, and removing a tab revokes access. #100619
- Remote Gateway users can pair the bundled Chrome extension from another browser machine with
openclaw browser extension pair --gateway-url wss://..., without installing OpenClaw or Node.js there or opening an inbound port. #101127 - Agents can now save a browser download to a chosen guarded path or wait for a delayed export, receiving the final URL, filename, and local path. #101369 Thanks @grd-chang.
Workspace terminals in web and mobile
Authenticated operators can open a guarded workspace terminal from the Control UI, iOS, or Android without leaving the current workspace. Sessions use the selected agent's workspace and configured shell, can be disabled by policy, and follow the Gateway protocol controls for ownership and connection state. Browser terminals can dock, resize, and run side by side, while iOS and Android provide focused entry points with clear connection guidance.
Same-release browser hardening completes the capability: terminals can reattach after reloads, sleep, or brief network drops and replay recent output; newly enabled support appears without a manual refresh; and closing, reopening, theming, cursor focus, prompt glyphs, and new-tab controls remain usable through repeated sessions.
Sources and contributors
- Authenticated admins can open an interactive terminal in an agent workspace from Gateway-backed controls, while fully sandboxed agents remain blocked and the feature can be disabled with
gateway.terminal.enabled. f083f35 - Control UI admins can now keep chat, session controls, and live shells together by opening multiple dockable, resizable terminal tabs inside the browser workspace. ec72de4
- iOS users can open Terminal directly from the Control hub, see a Gateway setup prompt when disconnected, and keep active shell sessions running through unrelated screen updates. 211e0d7
- Android users can open an agent-workspace shell from Settings > Terminal, with clear connection guidance and Gateway credentials passed without placing the token in the URL when supported. fcd7eb6
- Opt-in Control UI terminal sessions can now survive page reloads, sleep, and brief network drops, letting operators reattach and replay recent output instead of losing running commands. #100089
- Opening a new Control UI terminal after closing the final tab now starts with a blank fresh shell instead of restoring the closed terminal output. #100665
- Control UI terminal tabs now close cleanly while opening, follow theme changes, and reopen at a usable size instead of leaving hidden sessions, stale colors, or unreachable controls. 2399ce7
- An already-open Control UI page now notices when terminal support is enabled and makes the terminal available without requiring a manual refresh. 3f976f9
- Opening a new Control UI terminal tab after closing another no longer inherits an old exited state. 3c03389
- The Control UI terminal no longer crashes when its web component is loaded more than once in a shared browser registry. f2e5159
- Control UI terminals now use installed Nerd Font fallbacks so supported prompt and listing icons render as glyphs instead of placeholder boxes. #100128
- The Control UI integrated terminal now shows one cursor instead of overlapping Chrome and terminal carets, making focus and typing state clearer. #100240
- The Control UI terminal's new-session button now aligns with the surrounding tabs for a cleaner, easier-to-scan tab bar. #100256
More channel improvements
More fixes across messaging channels
Replies and media now stay attached to the intended conversation more consistently across workspace, mobile, and community channels. Telegram handles albums, progress, retries, topics, routing, and delivery with fewer dropped, duplicated, stale, or hard-to-read results.
Discord, Slack, WhatsApp, Apple Messages, and other supported channels also receive clearer command, thread, attachment, proxy, and recovery behavior. The Apple Messages setup and delivery paths in this group preserve the chat context readers expect rather than exposing the routing work underneath.
Sources and contributors
- Telegram photo albums now give the model every successfully downloaded image in order instead of only one photo and unusable file references, while failed items are omitted. #97045 Thanks @nianjiuzst, @obviyus.
- Telegram's live progress view now keeps reasoning, commentary, formatting, and tool activity readable and stable, then leaves a concise completion summary instead of disappearing. #98907 Thanks @marvinthebored, @peetiegonzalez.
- Slack channels can keep ambient OpenClaw participation while the opt-in
ignoreOtherMentionssetting prevents replies to conversations aimed at another person or group and retains that conversation as context for a later bot mention. #53467 Thanks @hanamizuki. - Slack operators running multiple Gateways through one Socket Mode app now receive a startup warning explaining why events may reach another connection and how to choose a safer deployment setup. #79938 Thanks @jeffvsutherland.
- Discord message reads and searches now decode raw compressed responses correctly and return clear errors for unexpected data instead of garbled output or opaque failures. #80788 Thanks @jbetala7.
- Slack operators can now choose
off,first,all, orbatchedreply threading per channel, with automatic replies and message tools following the same effective choice. #82253 - Slack button and select interactions now remain in the correct assistant thread and show a working status there until the follow-up turn finishes. #82895 Thanks @wukongai-cmu.
- Discord tool-only replies no longer leave overlapping typing refreshes that suggest another answer is still coming, while explicitly configured typing behavior remains intact. #84288 Thanks @dr00-eth.
- Scheduled and heartbeat-driven Slack messages now use the configured agent name and icon, with graceful fallback to the app identity when Slack rejects customization. #84335 Thanks @rohang2005.
- Longer Slack assistant-thread replies now show changing progress notes so users can tell OpenClaw is still working. #85507 Thanks @emergentash.
- Multiple Discord bot accounts in one server now keep independent voice sessions, and configured voice auto-join works even when Discord becomes ready before voice startup completes. #87530 Thanks @geekhuashan.
- When a Discord voice-note reply fails, users now receive the assistant's answer as a threaded text fallback without duplicating text that was already delivered. #89962 Thanks @danhayman.
- Discord's clear-all reactions action now returns a real error if any bot reaction remains instead of claiming complete success. #90038 Thanks @masatohoshino.
- Checking a Discord member who is not in voice now reports them as disconnected instead of raising a misleading command or gateway failure. #90969 Thanks @asock.
- Discord REST calls now fail with a clear error when a response is oversized or stalls instead of risking unbounded memory use and process instability. #95412 Thanks @alix-007.
- Slack presentation messages now arrive as native Block Kit cards with working headers, controls, and receipts instead of flattened plain text. #95463 Thanks @zoowh.
- Discord now shows enabled Anthropic reasoning, notes, and tool activity in the right order with accurate counters and nonblank summaries. #96106 Thanks @marvinthebored, @obviyus, @peetiegonzalez.
- Adding a named Discord account no longer knocks a SecretRef-backed default account offline or into a restart loop. #96401 Thanks @849261680.
- Slack rich-text block actions can now include emoji near the preview limit without producing malformed interaction text or downstream encoding failures. #96577 Thanks @llagy007, @weeli-009.
- The first Slack reply after a daily or idle reset can reuse recent thread history, so the conversation does not suddenly start from scratch. #97100 Thanks @bek91.
- Slack replies stay attached to the root thread's session history instead of accumulating separate, nearly empty child sessions. #97168 Related #96535. Thanks @gorkem2020, @liuwqgit.
- Discord account health checks now fail safely on oversized identity responses instead of risking a Gateway crash or out-of-memory failure. #97278 Thanks @hugenshen.
- Slack replies no longer expose internal tool-failure banners, reasoning scaffolding, or tool-call markup to users. #97367 Thanks @masatohoshino.
- When Slack accepts a reply but the confirmation is lost, OpenClaw can verify the existing post and avoid sending a duplicate. #97480 Thanks @joeyfrasier.
- Discord message, thread-history, and attachment requests now reject oversized successful responses before they can drive excessive Gateway memory growth. #97693 Thanks @alix-007.
- Discord PluralKit lookups and voice-upload setup now stop unexpectedly large JSON responses before they can exhaust memory. #97706 Thanks @cxbasdev.
- Discord voice conversations in
stt-ttsmode now retain earlier spoken context across turns instead of starting over after each reply. #97746 Thanks @karabaralex, @sanjays2402. - Malformed successful Discord responses now fail with endpoint-specific context instead of surfacing a raw parser error or crashing OpenClaw. #97889 Thanks @lsr911.
- An oversized Discord gateway metadata response now logs a bounded error and falls back to Discord's default gateway URL instead of risking a Gateway crash. #98682 Thanks @wings1029.
- Discord deployments in restricted networks can now route Gateway and REST traffic through an explicitly configured DNS or private HTTP(S) proxy without opening broad direct HTTPS egress. #99126 Related #98266. Thanks @joshavant, @sallyom, @svuppala2006.
- Discord users now receive the reply text and a clear notice when an attachment is too large instead of seeing the completed response disappear. #99577 Thanks @lin-hongkuan.
- Slack replies now retry after a temporary session-start conflict instead of stopping before the expected message is delivered. #99647 Thanks @steipete-oai.
- Completed partial-stream Discord replies now arrive as fresh messages that can trigger normal unread cues after a user leaves the channel. #99711 Thanks @davelutztx.
- Slack buttons and menus now preserve time labels such as
9:00and return the intended action value when selected. #99877 Thanks @qingminglong, @rodja. - Discord and other progress views now hide repetitive internal Code Mode polling while continuing to show meaningful tool activity. #99893
- Discord Gateway connections now cap incoming frames at 16 MiB, preserving tested large member events while rejecting extreme traffic before it pressures memory. #99998 Thanks @sunlit-deng.
- Slack message reactions now accept common emoji or shortcode names, can target the current message without repeating its ID, and provide clearer member-lookup guidance. #100375 Thanks @gorkem2020.
- Slack now uses one static acknowledgement reaction alongside its native assistant loading status by default, avoiding two competing progress displays for the same reply. #100462 Thanks @steipete-oai.
- Ordinary Slack thread replies no longer download and process the opening message attachments again, while new or reset sessions still receive those files once. #100516
- Session history now identifies Slack replies that were generated but intentionally superseded before delivery, so operators do not mistake them for messages the user received. #100607 Thanks @bek91.
- Messages that fail before reaching Discord, Slack, Matrix, or another channel can now be replayed after connectivity returns, while uncertain post-send outcomes still avoid blind duplicates. #101024 Thanks @sunnyshu0925.
- Cron summaries, Teams and Slack replies, and other embedded assistant responses no longer expose provider reasoning markers such as
</mm:think>. #101036 Thanks @velanir-ai-manager. - Discord voice playback now turns broken ffmpeg output pipes into a normal playback error instead of an uncaught Gateway-level exception. #101088 Thanks @masatohoshino.
- Long-running Discord and Nextcloud Talk integrations now bound their channel metadata caches instead of letting each newly encountered room increase memory use forever. #101650 Thanks @alix-007, @vincentkoc.
- Slack replies in very long threads and on busy Gateways now avoid several unnecessary waits, reducing stalls before thread and direct-message events reach the agent. #101888 Thanks @obviyus.
- Discord bots can now recover in place after repeated session-resume rejection, reducing prolonged outages, lost replies, and full Gateway restarts. #103596
- Channel previews, thread names, snippets, and shortened errors across browser and messaging integrations now preserve whole emoji and other Unicode characters. c16bb87 Thanks @vincentkoc.
- Long Slack context labels, Zalo messages and captions, and extension command output now truncate without breaking emoji or other non-BMP characters. 7e03242 Thanks @hugenshen, @mushuiyu886, @vincentkoc.
- Default and named LINE bots configured under
channels.line.accountsnow receive working webhook routes unless explicitly disabled, preventing valid inbound messages from ending in 404 responses. #81471 Thanks @edenfunf, @honorlin. - A Feishu connection that stops receiving messages is less likely to remain falsely marked healthy because transport activity now updates channel health. #90966 Thanks @acache, @richardataxai-lab, @vincentkoc.
- Photos bridged from a remote iMessage Mac to a separate Gateway host now arrive in Codex conversations through a readable local path rather than a Mac-only filename. #91803 Thanks @turbotheturtle.
- Compatible iMessage bridge users can create, read, and vote on native Apple Messages polls, with upgrade guidance for unsupported
imsginstallations. #98421 Thanks @lobster, @omarshahine. - WhatsApp group owners can reliably use
/new,/stop,/status, and similar commands even when their sender identity arrives as an internal LID. #93379 Related #77755. Thanks @jiveshkalra, @xialonglee. - LINE file uploads now retain recognizable audio extensions such as
.m4a, allowing valid recordings to reach transcription instead of being treated as unknown files. #96403 Thanks @tancolo, @zaidazmi. - Fenced code blocks that contain example lines resembling Markdown fence markers are now kept together instead of being split mid-block and becoming confusing or misread. #96745 Thanks @ly-wang19, @vincentkoc.
- Signal reaction shortcuts now apply only to the intended structured exec or plugin approval, including forwarded monitor and chunked prompts, while ordinary messages that merely quote approval commands no longer gain controls; older delivered prompts may still require
/approveonce after upgrade. #96880 Thanks @joshavant. - Signal QuickStart now shows one clear
signal-cliinstallation failure and proceeds directly to the custom-path prompt instead of repeating the missing-binary message. #96932 Thanks @romneyda. - Long unbroken messages now keep emoji intact when split into delivery-sized chunks, preventing garbled replacement characters for users and channel plugins. #96951 Thanks @bartok9, @ly-wang19.
- Signal users now receive clean assistant replies without internal tool status, reasoning tags, or tool-call markup. #97360 Thanks @masatohoshino.
- LINE template titles, fallback text, and alt text now keep emoji intact at field limits, preventing broken previews and rejected payloads. #97428 Thanks @ly-wang19, @vincentkoc.
- Long LINE button labels, quick replies, postback data, and media controls now preserve emoji at field limits instead of producing malformed text. #97470 Thanks @ly-wang19, @vincentkoc.
- Signal plugin setup now handles slow, malformed, or oversized GitHub release metadata without risking process memory exhaustion. #97536 Thanks @hugenshen.
- Signal container mode now stops oversized or runaway
signal-cli-rest-apiresponses from threatening the entire OpenClaw process. #97539 Thanks @alix-007. - Invalid JSON from the Signal REST container now produces a clear Signal-specific failure instead of exposing a raw parser error. #98073 Thanks @lsr911, @vincentkoc.
- Voting for an emoji-labeled iMessage poll option no longer sends an extra one-word message that repeats the selected answer. #98691 Thanks @omarshahine.
- Agents now answer iMessage polls, including polls with comments, with one native vote instead of an ordinary text answer, a repeated selection, or a separate reply to the comment. #98781 Thanks @omarshahine.
- Signal users who enable status reactions can now see when OpenClaw accepts a message, works, uses tools, compacts, stalls, or finishes in direct and group chats. #98791 Thanks @jesse-merhi.
- LINE messages, cards, menus, locations, and code blocks now preserve emoji and other multi-unit characters at field limits instead of producing broken text or rejected payloads. #98994 Thanks @lexes7, @vincentkoc.
- Bare 32-character iMessage group IDs from
imsgnow route scheduled and direct sends to the intended conversation instead of a nonexistent phone number. #99525 Related #89235. Thanks @matthewdelprado. - With
channels.whatsapp.actions.calls, MeowCaller, and telephony TTS configured, a WhatsApp agent can now call the requester and speak a short task-completion or urgent message. #99635 - Attachment download failures across WhatsApp, LINE, Signal, iMessage, Teams, Feishu, Mattermost, and Zalo now remain visible and actionable instead of disappearing or masquerading as successful media. #100119
- AppleScript-only and bot-user or SSH iMessage setups now deliver replies even when threading is unavailable, and database changes no longer leave inbound messages hidden behind stale recovery state. #100446 Thanks @omarshahine.
- Noisy phone numbers with extra plus signs now match the intended Signal, iMessage, or WhatsApp contact, while identities with no digits are rejected safely. #100467 Thanks @morluto.
- ClickClack agent replies to top-level messages now stay in the active channel or direct message, while replies inside real threads remain threaded. #100582 Thanks @marvinthebored, @vincentkoc.
- LINE replies that combine text with an image, card, or location now report a failed rich-media portion accurately while delivering the text once and avoiding duplicate retries. #100996 Thanks @masatohoshino.
- An iMessage helper pipe failure now ends pending work predictably and lets the monitor recover or stop cleanly instead of crashing the Gateway or hanging requests. #101084 Thanks @masatohoshino.
- Direct WhatsApp polls now honor the same outreach timelock as other sends instead of reaching recipients during a blocked window. 1d128b4 Thanks @vincentkoc.
- Google Meet and direct Voice Call sessions now keep the identity, workspace, routing, and transcript attribution of the agent that started the call instead of silently switching to the default agent. #77763 Thanks @quangtran88.
- Google Live call history now keeps both sides of the conversation, while reconnects avoid submitting unfinished speech or combining unrelated utterances. #84161
- OpenAI Realtime outbound calls now play one opening greeting even when the recipient speaks immediately after answering, while later interruptions continue to stop active speech. #86285 Thanks @giodl73-repo, @jnikolaidis.
- QQBot upgrades now migrate recoverable credential backups into SQLite without deleting source files when import fails, while disposable caches rebuild separately. #89597
- Callers using realtime OpenAI or Google voice calls can now interrupt assistant speech and have buffered phone audio stop promptly, while other providers keep the existing local fallback. #90749 Thanks @moellenbeck.
- QQBot can now deliver documents and media created by sandboxed agents from authorized workspace paths while continuing to block path escapes. #92872 Thanks @sliverp, @zhangguiping-xydt.
- Messages sent through OpenClaw's message tool now retain configured static or identity response prefixes, keeping routed and broadcast messages consistently labeled. #93639 Thanks @zengwen-dt.
- Voice callers now hear a completed answer without waiting for post-turn compaction, and a successful early playback is no longer repeated. #94015 Thanks @xialonglee.
- Feishu replies now arrive as completed blocks when block streaming is enabled without streaming cards, rather than disappearing entirely. #94250 Related #55027. Thanks @vincentkoc, @xialonglee, @zichaolong.
- When an interactive command button falls back to text, users now receive the command they can copy, with Feishu document comments explaining the manual step. #94385 Related #69754. Thanks @1yihui, @xialonglee.
- Twilio voice-call operators can select US1, IE1, or AU1 so call control and records use the intended Region, with US1 remaining the default. #95832 Thanks @jodok.
- Nextcloud Talk sends and reactions now bound server response sizes, protecting OpenClaw from hangs or runaway memory use while preserving normal delivery. #96031 Thanks @alix-007.
- Reply directives containing hidden unsafe characters now produce stable, display-safe reply IDs before chat routing uses them. #96446 Thanks @lin-hongkuan.
- Microsoft Teams replies to long parent messages now keep emoji and similar characters intact in the agent's parent-message context instead of inserting malformed text. #96569 Thanks @llagy007, @weeli-009.
- Long IRC messages now keep emoji and other supplementary characters intact when split into delivery chunks, including with unusually small configured chunk limits. #96572 Thanks @llagy007, @weeli-009.
- Google Chat sends and request verification now bound oversized API, certificate, and error responses, allowing normal traffic through while broken or hostile bodies fail or truncate without exhausting memory. #96772 Thanks @vincentkoc, @wangmiao0668000666.
- QQBot speech-to-text now returns an early, labelled error when an OpenAI-compatible transcription endpoint sends an oversized response instead of buffering the full body in memory. #96968 Thanks @mushuiyu886.
openclaw channels login --channel feishunow prints a compact QR code that stays scannable in a normal terminal window. #97087 Thanks @nianjiuzst.- Long Matrix thread starters keep emoji and other special characters intact when OpenClaw shortens them for agent context. #97121 Thanks @bartok9, @ly-wang19.
- IRC users now receive the intended answer without internal tool-failure banners or assistant-only scaffolding appearing in channel messages. #97214 Thanks @masatohoshino, @studentzhou-svg, @vincentkoc.
- Zalo setup, polling, sending, and health checks now reject abnormally large successful replies before they can push the Gateway into severe memory pressure. #97277 Thanks @hugenshen.
- Matrix operators now receive a structured warning when token rotations leave multiple populated storage roots, with details for identifying and carefully archiving stale folders. #97353 Thanks @eldron81-r2d2, @outdog-hwh.
- Matrix replies now deliver the intended answer without leaking internal tool diagnostics, reasoning tags, or assistant-only scaffolding. #97372 Thanks @masatohoshino.
- QQBot Markdown tables now keep escaped pipe characters inside their cells, so commands and expressions do not shift into the wrong columns. #97429 Thanks @ly-wang19.
- Long Feishu streaming-card summaries now keep emoji and other non-BMP characters intact at the truncation boundary. #97462 Thanks @ly-wang19.
- Long Matrix reply quotes sent to agents now truncate emoji and other multi-unit characters without leaving broken text. #97471 Thanks @ly-wang19.
- Mattermost streaming draft previews now shorten long text containing emoji without showing a malformed replacement character. #97472 Thanks @ly-wang19.
- Microsoft Teams Adaptive Card button clicks now deliver the submitted value to the agent instead of arriving as empty messages. #97546 Thanks @jimmypuckett.
- Long Feishu comments containing emoji at the cutoff now reach the agent as valid text instead of being split into malformed characters. #97595 Thanks @llagy007, @weeli-009.
- Matrix media downloads now enforce size and idle-timeout limits before buffering, including for encrypted media. #97662 Thanks @alix-007.
- Feishu and Lark registration and streaming-card requests now reject oversized provider JSON before it can place unbounded pressure on memory. #97782 Thanks @alix-007.
- Microsoft Teams file delivery and chat lookup now cap large Microsoft Graph responses and return a labeled error instead of risking a process crash. #97784 Thanks @alix-007.
- SMS replies now hide internal tool-trace failure banners and show only the intended assistant response. #97989 Thanks @zengwen-dt.
- Twilio SMS account checks now handle malformed successful JSON with safe phone-number listing or a clear Messaging Service error. #97999 Thanks @lsr911.
- Canceling a Feishu reconnect, startup, or bot-identity retry wait now ends cleanly instead of risking a
ReferenceErrorduring cleanup. #98137 Thanks @zhanglei99586. - Punctuation around a model's
NO_REPLYtoken no longer turns it into a visible chat message, while legitimate messages containing the token still arrive. #98224 Thanks @sunnyshu0925. - Completions from subagents, scheduled tasks, media jobs, and agent harnesses now return through the same configured account, destination, and thread that requested them. #98240 Thanks @yetval.
- Tlon and Urbit channel failures now bound oversized or malformed error responses before they can cause memory spikes, while retaining useful short messages. #98496 Thanks @pandah97.
- Mattermost replies now show the intended assistant response without exposing internal tool-failure diagnostics. #98693 Thanks @zengwen-dt.
- Feishu bot replies no longer expose internal tool or runtime failure banners alongside the intended response. #98705 Thanks @zengwen-dt.
- Zalo operators can point Bot API calls at a compatible alternate endpoint without patching code, while ordinary workspace environment files cannot silently redirect traffic and millisecond message times remain accurate. #98768 Thanks @romneyda.
- Ambient agents now stay quieter in observed group conversations and honor operator instructions such as replying only when spoken to. #99144 Thanks @obviyus.
- Ambient group chats now remain silent unless the agent deliberately sends a message, without stray status lines, tool summaries, compaction notices, delivery warnings, or overflow follow-ups. #99145 Thanks @obviyus.
- Mattermost channel monitoring now rejects inbound events above 16 MiB and reconnects, limiting memory exposure while continuing to accept normal large messages. #99366 Thanks @sunlit-deng.
- Always-on group agents can now receive and answer valid unmentioned messages after a plugin fallback instead of silently dropping them. #99506 Related #99457. Thanks @lzy3538, @zqchris.
- Replies and attachments already accepted by a channel are no longer resent after a restart or recovery failure, while genuinely unsent items remain retryable. #99600 Thanks @zhangguiping-xydt.
- Outbound sends now report failed and partially delivered messages with useful per-part outcomes instead of presenting every attempt as a success. #99928 Thanks @masatohoshino.
- ClickClack can now show opt-in, durable commentary and tool activity during a run so users are not left with an empty channel until the final reply. #99954 Thanks @obviyus, @ragesaq.
- Inbound Telnyx-style and Plivo voice conversations can now continue after the caller's first response instead of falling silent before OpenClaw speaks again. #100255 Thanks @dvy.
- Valid Twilio and Plivo callbacks now pass signature checks behind trusted IPv4 reverse proxies even when Node reports the proxy as an IPv4-mapped IPv6 address. #100261 Thanks @rohitjavvadi.
- Repeated voice-call webhook deliveries are now acknowledged without repeating call or transcript side effects within the replay window. #100263 Thanks @xialonglee.
- A transient Gmail watch-renewal failure now produces an error without crashing a long-running foreground
openclaw webhooks gmail runprocess. #100342 Thanks @cxbasdev, @vincentkoc. - Agents catching up in busy group chats now receive clearer sender-by-sender history, making multi-person conversations easier to follow without exposing local paths or URLs. #100366 Thanks @gorkem2020.
- Tlon now stops oversized or stalled external image downloads before they consume unbounded memory and can continue the message with the original URL. #100374 Thanks @hugenshen.
- Oversized Tlon scry responses now fail with a clear path-specific error instead of risking a Gateway out-of-memory crash. #100376 Thanks @hugenshen.
- Non-streaming channels no longer send the same final text or media twice for one message, while genuinely separate replies with different routing or thread identities still go through. #100828 Thanks @vincentkoc, @zhangxiaojiujiayi.
- Supported interactive-card JSON sent through Feishu messages, thread replies, or text payloads now renders as a card instead of appearing as raw JSON. #100883 Thanks @martingarramon, @vincentkoc, @zenorewn.
- Microsoft Teams attachment recovery now declines oversized Graph metadata with diagnostics instead of buffering it into Gateway memory, while normal hosted media still downloads within configured limits. #101082 Thanks @cxbasdev.
- Stalled Feishu tenant-token or streaming-card requests now time out with a clear error and release the processing lane so other Gateway messages can continue. #102948 Thanks @hugenshen, @sallyom.
- The Twilio voice-call provider now rejects unsupported API hostnames before sending a request and accepts only OpenClaw's supported Twilio regional hosts. 094c0d4 Thanks @vincentkoc.
- Cron and outbound channel sends no longer report success without a usable platform receipt, making missing notifications show as not delivered or suppressed instead of falsely delivered. #79811 Thanks @indulgeback.
- Telegram stickers and other plugin message actions now stay in the active forum topic or thread when sent to the matching conversation, including through Gateway dispatch. #80293 Thanks @artdaal.
- Telegram and Discord plugin commands that send their own response can return
{ suppressReply: true }, preventing a second misleading empty-response warning or failure. #80928 Related #80756. Thanks @alexuser, @unclouded77. - With
messages.ackReactionScope: "all", ambient room messages now receive the configured acknowledgement reaction across Discord, Slack, and Telegram. #87433 Thanks @paul-phan, @scoootscooob. - Established Telegram direct-message sessions now avoid resending recent messages already stored in the transcript, reducing token use and repetitive or confused replies. #89855 Thanks @sweetcornna.
- Telegram no longer follows a successfully delivered final answer with a contradictory generic error when a later dispatch step fails, while partial-only failures still receive the existing fallback. #90152 Thanks @zhangguiping-xydt.
- Telegram documents received through a containerized local Bot API now arrive with their actual contents when its mounted data path differs between containers. #91984 Thanks @ailucasdz, @dizesales.
- Telegram messages can now be sent proactively through the
messagetool oropenclaw message sendinstead of failing as an unsupported channel. #92107 Thanks @bladin, @obviyus. - OpenClaw now recognizes
.m2arecordings as audio, allowing them to move through attachment, transcription, memory, and chat display workflows without conversion. #92167 Thanks @llljjjwww333. - Telegram and other channels can recover automatically after certain API outages and timed-out shutdowns instead of remaining silent until a Gateway restart. #94016 Thanks @sheyanmin.
- Telegram replies now omit internal tool-execution failure lines and deliver only the intended assistant answer. #95774 Thanks @mushuiyu886.
- Telegram rich replies and progress messages containing OAuth email addresses now arrive instead of being rejected by Telegram validation. #95900 Thanks @obviyus.
- A partially delivered queued send is no longer blindly replayed after reconnect, reducing duplicate Telegram and other channel messages. #96247 Thanks @obviyus, @rosenlo.
- Telegram progress updates now truncate safely around emoji and other multi-unit characters, preventing broken glyphs and rejected Bot API payloads. #96456 Thanks @he-yufeng.
- Telegram configurations with legacy
capabilities: []now inherit the normal inline-button policy, restoring clickable buttons without overriding intentional opt-outs. #96468 Thanks @vincentkoc, @zhangguiping-xydt. - Telegram streaming draft previews no longer break or show garbled text when an emoji falls at the size boundary, so long previews can keep updating normally. #96504 Thanks @mushuiyu886, @obviyus.
- A temporary Telegram reply-session conflict no longer traps a DM or forum topic in constant retries that block later messages; retries are paced, conversation order is retained, and unrelated chats continue processing. #96550 Thanks @cnbarrier404, @vacinc.
- Files sent through Telegram and other supported chat channels now keep clean names such as
report.pnginstead of exposing an internal cache identifier in the attachment filename. #96565 Thanks @narahariraghava, @obviyus. - Slack, Discord, Telegram, WhatsApp, and Microsoft Teams users now receive a clear retry and re-authentication message when a model provider returns a recognized HTTP 401 error instead of seeing only a reaction or no useful reply. #96599 Thanks @sjf-oa.
- Telegram reactions and message deletions now retry brief socket or Undici network failures, reducing unnecessary action failures without adding duplicate risk to ordinary message sends. #96612 Thanks @miorbnli.
- Telegram users still receive a plain-text reply when rich formatting for an email, URL, mention, hashtag, command, phone number, bank card, or similar entity is rejected, instead of the bot going silent. #96642 Thanks @moguangyu5-design.
- Telegram automations can now tell from platform metadata whether a sender is a bot, making routing and classification less dependent on usernames or naming conventions. #96810 Thanks @lin-hongkuan, @ohyeah521.
- Telegram messages entering through isolated ingress now proceed to the agent reply instead of replaying the same message in a loop. #96847 Thanks @obviyus.
- Long-running Telegram turns can finish without being reclaimed and processed again midway, reducing stalled or duplicate delivery while giving operators a clearer unhealthy status when the backlog stops draining. #96962 Thanks @joshavant.
- Telegram bots using isolated polling can resume ordered message processing after a stalled drain or Gateway restart without manual database repair. #97118 Thanks @romneyda, @vincentkoc.
- Telegram startup logs now show local socket failures such as
EADDRNOTAVAILinstead of incorrectly steering operators toward DNS troubleshooting. #97130 Thanks @zhangguiping-xydt. - Telegram inline buttons supplied by plugins now run their intended actions and cleanup instead of posting raw callback data into chat. #97174 Thanks @goldmar.
- Telegram rich-text replies now render math formulas more reliably instead of exposing raw LaTeX-style markers. #97197 Thanks @vincentkoc, @wangwllu.
- Telegram bot probes, webhook checks, membership audits, and polling now reject oversized Bot API success bodies before they can exhaust Gateway memory. #97271 Thanks @hugenshen.
- Telegram chat-ID lookup now fails safely on oversized
getChatresponses instead of risking excessive Gateway memory use during onboarding or routing. #97274 Thanks @hugenshen. - Telegram replies retain literal wording such as
<think>when it is part of the answer, while genuinely marked reasoning remains hidden. #97286 Thanks @drickon, @obviyus. - Long non-streamed Telegram group replies now keep every chunk visible, including the beginning, while delivery receipts cover all generated text chunks. #97304 Thanks @aliseturtle-lu, @obviyus.
- Long streamed Telegram replies now deliver their middle sections under the default configuration instead of silently omitting part of the answer. #97312 Thanks @brycemurray, @obviyus.
- Telegram documents sent near a Gateway restart now retry after recovery instead of disappearing silently, while permanent failures still request a resend. #98102 Related #98076. Thanks @davearcher18, @luoyanglang, @obviyus.
- Telegram
/steerand/tellcommands can redirect an active Codex task during streaming or tool work instead of arriving late or becoming follow-up messages. #98126 Related #81594. Thanks @100yenadmin, @kyzcreig. - Saying
waitin a Telegram group conversation no longer cancels active OpenClaw work, while explicit stop commands still take effect immediately. #98639 Thanks @ianchen08. - Telegram rich messages and text-bearing forwards without a normal caption now reach the agent as readable conversation content instead of an unsupported-message placeholder. #98735 Thanks @obviyus.
- Telegram direct-message follow-ups now include one copy of the previous assistant reply in recent context instead of duplicating it and wasting tokens. #98769 Related #98767. Thanks @rabsef-bicrym.
- Telegram polling now recovers from temporary rate limits, server failures, and malformed error responses without disabling the account, while busy bots avoid cache writes that could trigger false stall restarts. #98775 Related #98772, #98773. Thanks @obviyus.
- A repeatedly failing Telegram update no longer blocks later messages in the same chat or topic, and replayed updates are retried safely without duplicate commands or apology spam. #98776 Related #98774. Thanks @obviyus.
- Telegram final replies and media sends now fall back to readable plain text when formatting, captions, or quotes are rejected, and routine flood waits up to 60 seconds are honored instead of dropping the message. #98786 Related #98778. Thanks @obviyus.
- Telegram sends and message actions that omit an account now consistently use the configured default bot instead of a stale identity that can misroute or reject the action. #98789 Thanks @yetval.
- Telegram webhook messages now survive Gateway restarts and temporary processing failures, while accounts recover from brief startup errors and repeated restarts stop leaking network connections. #98806 Related #98777. Thanks @obviyus.
- Telegram plugins can now turn a button tap into a normal user reply to the agent, while failed or skipped submissions leave the button available for another attempt. #98922 Thanks @goldmar.
- Telegram bots in ambient group mode now see recent room context before deciding whether to speak, reducing replies to isolated fragments that were not directed at the bot. #99143 Related #99142. Thanks @obviyus.
- Telegram group agents now receive one chronological copy of recent messages instead of duplicated history and repeated delivery details consuming context. #99256 Related #99218. Thanks @obviyus.
- Telegram ambient group conversations can now retain unmentioned room context across later turns, restarts, and compaction without repeatedly replaying the same window. #99306 Related #99257. Thanks @obviyus.
- Telegram ambient group sessions now restore the relevant older chat context after a reset instead of silently treating archived messages as already visible. #99385 Related #99373. Thanks @obviyus.
- Direct mentions to Telegram and Discord group bots using
message_tool_onlynow produce visible channel replies on both new and resumed sessions. #99389 Related #99371. Thanks @obviyus. - Telegram replies now keep typing visible through more temporary API failures and fall back to plain text when valid rich content cannot be delivered. #99745 Thanks @obviyus, @veda-openclaw.
sessions_sendnow rejects Telegram topic child sessions before dispatch and directs callers to the parent group, reducing misrouted agent work. #99845 Thanks @nianjiuzst, @qingminglong.- Telegram tables, rankings, and literal line breaks now remain readable, with explicit logs when rich content must fall back to plain text. #99861 Related #99833. Thanks @obviyus.
- Telegram group agents now post visible replies when directly mentioned or replied to, while continuing to ignore unaddressed background chatter. #99866 Related #99854. Thanks @obviyus.
- Polls now follow the selected direct or hybrid channel instead of being misrouted through the Gateway, with clear errors for unsupported duration or anonymity options. #99950 Thanks @nianjiuzst.
- Telegram now tells users when an attachment cannot be downloaded, reports the actual size limit for oversized files, and still retries transient failures such as rate limits. #100051 Thanks @batyaro777.
- Telegram replies and forwards now preserve visible text from rich details, lists, math, captions, and credits so the agent receives the context users actually saw. #100570 Thanks @veda-openclaw, @wangwllu.
- Telegram direct-message follow-ups now include one accurate copy of each earlier assistant reply instead of duplicating a hidden-instruction version. #100573 Thanks @momothemage, @mooresoftware.
- MP3 speech from Piper, Kokoro, and other OpenAI-compatible TTS endpoints now arrives in Telegram as a native voice note rather than a filename-style audio attachment. #100715 Thanks @hemantsudarshan.
- Telegram heartbeat fallbacks now hide the
notify=falsecontrol marker and deliver silently as requested, including suppressing marker-only replies. #100735 Thanks @hackerismydream, @vincentkoc. - Telegram typing indicators now retry after transient network failures, restoring status feedback without adding duplicate-message risk to normal sends. #100762 Thanks @lzw112, @vincentkoc.
- Telegram webhook startup now releases its listener, bot, and network resources after a fatal registration error such as invalid or revoked credentials. #100863 Thanks @machine3at.
- Telegram messages that cannot be steered into an active Codex turn are now retained for handling afterward instead of disappearing without a reply. #103916 Thanks @jalehman.
- When Telegram requests overlap, the newest authorized message now wins without an outdated reply being sent or replaced queued work being started. #103965
- Queued Telegram updates now remain replayable until restart recovery is safely recorded, reducing message loss during a crash at processing startup. #104032 Thanks @obviyus, @vincentkoc.
- Telegram's final collapsed progress summary now includes Claude CLI thinking activity that was shown during the run instead of making that work appear to vanish. 4212de9 Thanks @vincentkoc.
- Discord completion and error reactions now remain visible for the configured
doneHoldMsanderrorHoldMsdurations instead of fixed default delays. #94736 Thanks @liuwqgit. - Slack read actions can again access intentionally allowlisted channel names when Slack supplies an ID and
dangerouslyAllowNameMatchingis enabled. #95313 Thanks @jontsai. - Discord voice replies now keep their accompanying text and extra media attached to the original message even when single-use reply mode is enabled. #95978 Thanks @nxmxbbd.
- Discord attachments queued while OpenClaw is busy now remain available when the message finally runs instead of disappearing after temporary download links expire. #96183 Thanks @judsonnudson, @zacharyyw.
- Slack message and attachment text is no longer copied into verbose or debug logs during inbound processing. #96312 Thanks @steipete-oai.
- Slack messages and Block Kit labels now truncate without splitting emoji into broken replacement characters or invalid payload text. #96382 Thanks @ly-wang19.
- Generated Discord thread names now preserve multiple Markdown emphasis spans without dropping or stranding formatting markers. #96394 Thanks @ly-wang19.
- Long Slack command and plugin approval previews now keep emoji intact at the length boundary, avoiding malformed approval text or payloads. #96576 Thanks @llagy007, @weeli-009.
- OpenClaw can use a trusted override for a compatible Slack API endpoint, while normal workspaces continue using Slack's public API and untrusted project .env files cannot redirect bearer-token requests. #97154 Thanks @romneyda.
- Discord's recent-model buttons now shorten long names without breaking emoji or producing invalid picker payloads. #97600 Thanks @llagy007, @weeli-009.
- Slack agents can now read thread messages whose visible content exists only in attachments or blocks, including alerts with empty top-level text. #97727 Thanks @chthtlo.
- Slack agents can now identify admitted bot-authored messages through
is_bot: true, making it easier to prevent unwanted bot-to-bot replies. #97822 Thanks @masatohoshino, @vincentkoc. - Discord agents now receive
is_bot: truefor admitted bot messages while human and PluralKit sender behavior stays unchanged. #97824 Thanks @masatohoshino, @vincentkoc. - Slack slash-command choice menus now shorten long labels without splitting emoji at the 75-character limit. #97923 Thanks @lexes7.
- Slack Socket Mode relay diagnostics now distinguish malformed WebSocket frames from transport failures, making channel problems easier to identify. #98587 Thanks @lsr911, @vincentkoc.
- Skill command descriptions now remain fuller where supported and stay valid in Discord and Mattermost when emoji appears near a platform limit. #99593 Thanks @pick-cat.
- Slack startup and account checks now warn when a user OAuth credential is configured as the bot token, before identity confusion affects mentions or replies. #99931 Thanks @ooiuuii.
- Slack replies now keep each agent's custom name and avatar through streaming or fallback delivery instead of reverting to the app identity. #100084 Thanks @moerai.
- Slack Codex conversations now retain one final assistant reply in history instead of duplicating it through both the app-server transcript and delivery fallback. #100160 Thanks @steipete-oai.
- Long or media-rich implicit Discord replies now quote and notify the referenced user once in
firstorbatchedmode, while explicit andallreplies retain every intended reference. #100784 Thanks @qingminglong, @revision-co-ltd. - Discord replies, cron reports, and other outbound messages are less likely to disappear during a brief Gateway reconnect, without replaying chunks or media Discord already accepted. #100896 Thanks @tiffanychum.
- Discord voice playback now cleans up ffmpeg after output-pipe failures, reducing both Gateway crashes and leftover transcoder processes. #101124
- The configured primary Discord account now starts first in multi-account setups, so the main bot is not delayed behind secondary or invalid entries after a restart. #101292 Thanks @turbotheturtle.
- Discord automatic thread titles now handle long messages and channel details containing emoji without building malformed prompt text. #101551 Thanks @alix-007.
- Long-running Slack integrations now keep conversation metadata caching within a fixed limit, preventing memory use from growing indefinitely as more channels and workspaces are encountered. #101562 Thanks @vincentkoc, @zhangguiping-xydt.
- Discord voice playback failures now produce a readable error within the 8,192-byte limit, including when ffmpeg output contains non-English text or emoji. #104230 Thanks @qingminglong.
- Configured Weixin accounts with opaque IDs containing characters such as an at sign or
.now start normally and preserve their account-specific routing. #93686 Related #93556. Thanks @htkillermax-gif, @zhangguiping-xydt. - Feishu setups that could send bot pushes but silently lost user replies now pass incoming messages into OpenClaw instead of failing during monitor startup. #94013 Thanks @xydt-tanshanshan.
- Replies to OpenClaw-authored WhatsApp group messages now remain visible on WhatsApp Desktop and other multi-device clients with their quote context intact. #94879 Thanks @bartok9.
- Direct iMessage chats using the
imsgprivate API bridge now show typing as soon as a slow turn is accepted, without waiting for a read receipt. #95621 Thanks @omarshahine. - iMessage replies no longer lose ordinary sentence text that happens to end with
user:,system:, orassistant:. #96392 Thanks @ly-wang19. - WhatsApp direct sends and automatic replies now render combined bold-and-italic Markdown without stray asterisks, including when the formatted text contains emoji. #96570 Thanks @llagy007, @weeli-009.
- Long WhatsApp auto-reply and inbound-message previews now preserve emoji and report the truncated character count accurately, making affected diagnostics readable without changing delivery. #96580 Thanks @llagy007, @weeli-009.
- Signal QuickStart on macOS now installs
signal-clithrough Homebrew instead of downloading an incompatible Linux package, and gives platform-specific guidance when Homebrew is unavailable. #96909 Thanks @romneyda. - Bursts of long iMessage messages can now be combined without cutting an emoji in half and sending broken text to the agent. #97598 Thanks @weeli-009.
- Invalid
OPENCLAW_WHATSAPP_WEB_SOCKET_URLvalues now fail immediately with a clear configuration error instead of breaking later during socket startup. #97697 Thanks @romneyda. - Nextcloud Talk startup checks now show a concise bot-admin API failure without buffering an arbitrarily large error body. #97811 Thanks @pick-cat.
- Google Chat agents can now distinguish allowed bot messages through
is_bot: trueand handle automated senders differently from people. #97825 Thanks @masatohoshino, @vincentkoc. - WhatsApp can now restore a saved linked-device session from a valid credential backup when the primary file is interrupted or corrupted, avoiding an unnecessary QR re-pair. #99070 Thanks @leonidaslux.
- Signal container receives now reject oversized JSON frames before buffering them, limiting memory pressure without affecting normal messages or separately fetched attachments. #99992 Thanks @sunlit-deng.
- iMessage startup warnings now distinguish working sender-allowlisted group setups from truly blocked configurations and point blocked operators to the correct fix. #100046
openclaw channels login --channel whatsappnow replaces expired QR codes in place so interactive terminals show one current, scannable code. #100159- A WhatsApp message interrupted by a temporary reply-session conflict can now be retried instead of being marked delivered and silently ignored on redelivery. #101106 Thanks @andersonjeccel.
- Queued messages now resume at a gentler pace after an outage, restart, or reconnect, reducing avoidable channel and provider rate-limit bursts while keeping recovery bounded. #101118 Thanks @zengwen-dt.
- WhatsApp direct messages blocked by a reachout timelock now fail immediately with an explicit explanation instead of appearing accepted before a later delivery error. #101264 Thanks @mcaxtr.
- iMessage CLI send and action failures caused by broken output pipes now return a controlled error instead of risking a Gateway worker crash. #101401 Thanks @cxbasdev.
- OpenClaw can use a trusted override to point the normal Baileys socket at a compatible local WebSocket endpoint, while normal WhatsApp connections continue using the default path unless explicitly overridden. #97155 Thanks @romneyda.
- Feishu one-to-one chats can receive text, media, card, and fallback replies again instead of losing the response after the incoming message was processed. #94760 Thanks @obviyus, @xydigit-zt.
- An accepted voice message that arrives while OpenClaw is already replying can still receive a voice response when
tts.auto: "inbound"is configured. #95596 Thanks @mcaxtr. - Mattermost API calls now stop oversized or endless successful responses before they can consume unbounded memory, while normal requests and uploads continue unchanged. #96033 Thanks @alix-007.
- IRC reconnects now rotate fallback nicknames after a 433 conflict instead of repeatedly retrying the same occupied name. #96108 Thanks @wendy-chsy.
- The Microsoft Teams personal-chat welcome card now displays its greeting with the intended bold, medium emphasis. #96290 Thanks @ly-wang19, @vincentkoc.
- Microsoft Teams thread history now preserves literal entity text such as
<APIKEY>instead of turning it into different markup before the agent sees it. #96342 Thanks @ly-wang19. - Long Google Chat approval cards now preserve emoji at the text limit, preventing corrupted approval text or malformed card payloads. #96573 Thanks @llagy007, @weeli-009.
- Long Synology Chat messages and diagnostic previews now truncate without cutting an emoji or other supplementary character in half, keeping downstream text valid. #96574 Thanks @weeli-009.
- QQBot reminders created from long text now receive readable job names even when an emoji falls at the cutoff, rather than storing a broken character. #96575 Thanks @llagy007, @weeli-009.
- Microsoft Teams feedback on long responses now carries intact emoji into reflection processing, preventing a cutoff from corrupting prompts, logs, or encoding. #96578 Thanks @llagy007, @weeli-009.
- Feishu card headers now show a clean agent emoji and name instead of descriptive text from
identity.emoji, while flags, skin-tone variants, family emoji, and other valid sequences remain intact. #96587 Thanks @harjothkhara, @leedongyu1128. - Tlon approval notifications now keep emoji intact at the preview limit, preventing malformed message previews. #97599 Thanks @llagy007, @weeli-009.
- IRC outbound text now preserves escaped emoji and keeps invalid surrogate escapes literal instead of silently replacing them with corrupted characters. #97683 Thanks @llagy007, @weeli-009.
- Mattermost API failures with an empty JSON body now produce a clear status-based error instead of an
Unexpected end of JSON inputcrash. #97851 Thanks @pick-cat. - Malformed successful Matrix responses now produce a controlled homeserver error instead of an opaque unhandled JSON parsing failure. #97973 Thanks @lsr911.
- Feishu video messages now show the duration of local and remotely loaded MP4 clips when duration detection is available. #98235 Thanks @areslp.
- Mattermost installations repaired after an upgrade now load and reconnect on Gateway restart without requiring a manual plugin-enable setting, including restrictive allowlist setups. #98608 Related #98564. Thanks @jacobtomlinson, @shakkernerd.
- Repeated Nostr profile publishing now clears relay timeout timers after success, reducing stale resource buildup in long-running agents. #98720 Related #98463. Thanks @wangmiao0668000666, @zhanglei99586.
- Mattermost teams with more than 200 members can now discover and address valid peers beyond the first page of the team directory. #98877 Related #98871. Thanks @qingminglong.
- Long IRC replies now arrive complete when they contain Chinese, Cyrillic, emoji, or other non-ASCII text, while respecting
messageChunkMaxChars. #99138 Thanks @yetval. - Zalo gateway startup output now shows the connected bot account name when the Bot Platform supplies it. #99274 Thanks @romneyda.
- Temporary Feishu streaming-card refresh failures are now contained and logged for diagnosis instead of surfacing as unhandled errors. #99301 Thanks @lwy-2.
- QQBot status now reports disconnections and fatal close reasons accurately, then returns to connected only after a READY or RESUMED event. #100127 Thanks @masatohoshino, @vincentkoc.
- Text commands such as
/model fablenow reliably display their confirmation even in flows that suppress ordinary source replies. #100151 - IRC bots now reconnect and rejoin configured channels after a temporary server or network disconnect instead of staying silent until OpenClaw is restarted. #100799 Thanks @zhangguiping-xydt.
- Feishu direct messages received while the bot identity is temporarily unavailable no longer turn ordinary user mentions into accidental forwarding targets. #100891 Thanks @zhangguiping-xydt.
- Tlon media uploads now stop safely when Memex returns an oversized or malformed response instead of allowing the upload attempt to consume excessive memory. #101115 Thanks @cxbasdev.
- Realtime voice prompts now remain readable when long agent names or injected context containing emoji must be shortened. #101304 Thanks @alix-007.
- Feishu error logs now shorten emoji-containing text at a valid character boundary, making card-action and WebSocket cleanup failures easier to read. #101364 Thanks @zengwen-dt.
- Channel plugins can resume automatic recovery after a long healthy run, so an occasional later disconnect is not blocked by an old restart budget while true rapid crash loops remain capped. #101413 Thanks @clintoncodewell.
- QQBot approval cards, message previews, logs, media paths, and retry warnings now shorten emoji-containing text without broken replacement characters. #101421 Thanks @wangmiao0668000666.
- QQBot previews, errors, commands, speech-to-text messages, media diagnostics, and logs now remain valid when emoji-containing text reaches a length limit. #101516 Thanks @vincentkoc, @wangmiao0668000666.
- Long emoji-containing agent labels now produce clean native channel thread names and introductions instead of broken characters. #101527 Thanks @lsr911.
- Zalo operators can send proactive CLI or scripted messages to valid nonnumeric
chat_idvalues without anUnknown targetrejection. #101548 Thanks @goutamadwant. - Feishu Drive can now list files beyond the first page of a large shared folder by accepting its returned
next_page_token, with invalid page sizes rejected clearly before the request. #101572 Thanks @zhangguiping-xydt. - Google Meet local audio bridges now shut down cleanly and log a warning when a capture or playback command pipe fails, rather than crashing on an unhandled stream error. #101596 Thanks @alix-007.
- Matrix dependency setup now stops its child process predictably and reports the failure when a local command's output pipe breaks. #101597 Thanks @alix-007.
- Telegram destinations genuinely named
current,self,this, ormecan now be reached through configured entries, while accidental bare session words fail closed. #94107 Thanks @obviyus, @silver-state, @zhangguiping-xydt. - Telegram rich messages using
richMessages: trueand Markdown table modeblocknow display bordered, striped tables with the source column alignment. #95822 Thanks @obviyus, @zhangguiping-xydt. - Telegram fallback messages now replace invalid numeric Unicode surrogate entities safely instead of emitting malformed text, while valid numeric emoji entities still render. #96581 Thanks @llagy007, @weeli-009.
- Telegram users with
/reasoning onnow receive the model's saved reasoning messages alongside the final answer. #97875 Thanks @fuller-stack-dev, @marvinthebored. - Telegram groups and forum topics now show a typing indicator as soon as an addressed message is accepted, without signaling activity for ignored chatter. #99965 Thanks @moeedahmed.
- Telegram onboarding now offers both the classic BotFather chat flow and the official web interface for creating a bot and copying its token into OpenClaw. #100540
- Telegram sends to an
usernamenow use the account's configured proxy or custom Bot API endpoint for both target resolution and message delivery. #100868 Thanks @machine3at. - Chinese, Japanese, and Korean bold labels followed immediately by text now render as bold instead of exposing literal
**markers in Telegram and other shared-Markdown channels. #101230 Thanks @nicknmorty. - Telegram sends now retry a safe TCP or TLS connection timeout, reducing lost final replies during flaky handshakes without retrying failures that may already have reached Telegram. #101258 Thanks @lzw112.
- The bare
/thinkcommand now shows available thinking levels promptly in Telegram, Slack, and Discord without waiting on slow model discovery. #101926 Thanks @vincentkoc. - A Telegram reply that has already started is no longer unexpectedly cancelled when another authorized command arrives. 52a3314 Thanks @vincentkoc.
- After
/login codexsucceeds in Telegram, retrying the request now uses the newly authenticated OpenAI profile instead of the previous account. fca0c81 Thanks @100yenadmin.
More model and provider improvements
Sign-in, model choice, media, and reliability
Across Anthropic and Claude, Gemini, OpenAI and Codex, local models, and other supported routes, providers now handle credentials, catalogs, limits, fallbacks, streaming, and tool calls more consistently. Readers should see fewer requests fail because the selected route used the wrong model metadata, replayed incompatible reasoning, lost authentication state, or interpreted a provider response incorrectly.
The model catalog also reports availability and capability more accurately, while Codex supervision keeps connected model choices and session behavior aligned with the backend that was actually selected.
Sources and contributors
- Amazon Bedrock users can now analyze images and PDFs with the same AWS profile, role, SSO, environment, or instance credentials already used for chat. #72092 Thanks @truffle-dev.
- Claude CLI replies that streamed successfully are now retained when the final success envelope contains no text, preventing the completed answer from disappearing or triggering an empty-response fallback. #90450 Thanks @totobusnello.
- OpenCode Zen users can browse and run its supported Claude, GPT, Gemini, GLM, DeepSeek, MiniMax, Qwen, and other models without manually defining each route. #92495 Thanks @mushuiyu886, @sallyom.
- Anthropic OAuth token exchange and refresh now reject oversized endpoint responses early instead of reading an unbounded body into memory. #96644 Thanks @solodmd.
- Amazon Bedrock adaptive-thinking Claude and Fable runs now honor configured high output-token limits for longer answers, reasoning, and tool calls. #97343 Thanks @lilan0125, @prasithg.
- Anthropic usage checks now cap unusually large error responses so a CDN, firewall, or proxy page cannot exhaust OpenClaw's memory. #97614 Thanks @cxbasdev.
- Anthropic conversations rejected for a missing tool result now tell users to retry or start a fresh session with
/newinstead of showing only a generic provider failure. #98163 Thanks @masatohoshino. - Claude native-thinking sessions can now recover automatically after Anthropic rejects a replayed thinking block, without manual compaction or transcript loss. #98411 Related #98308. Thanks @clearhorizoninvestments, @sunlit-deng.
- Claude Code 2.1 users can again approve and run Bash, WebFetch, Grep, Glob, AskUserQuestion, and other native tools in claude-cli sessions. #98665 Related #95171. Thanks @carterdawson, @yetval.
- Claude Fable 5 now works through Anthropic Vertex for simple-completion tasks such as generated conversation labels instead of failing before the request reaches Vertex. #98932
- Claude CLI agent runs now fail over instead of presenting provider errors or raw stream data as answers, preserve multilingual and emoji output, and stop runaway one-shot output before it exhausts Gateway memory. #98942 Related #98896. Thanks @obviyus.
- Claude CLI users can combine multiple
--mcp-configfiles without losing servers or corrupting the prompt, and concurrent Gemini CLI runs are less likely to interfere with shared credential files. #98983 Related #98944, #98945. Thanks @obviyus. - Claude CLI-backed agents now show native reasoning in
/reasoning streamor/reasoning on, while/reasoning offconsistently suppresses it for queued follow-ups too. #99401 Thanks @marvinthebored. - Bedrock Mantle model discovery now times out and caps oversized catalog responses instead of hanging or consuming excessive memory, while cached models remain available. #99961 Thanks @zhangguiping-xydt.
- Anthropic Opus 4.8 can now run with
tools.profile=codingwithout every turn failing with an HTTP 400 schema error before the assistant replies. #100492 Thanks @lin-hongkuan, @vincentkoc. - Anthropic-compatible requests now fail promptly with a bounded transport error when an upstream stream sends an oversized partial event instead of hanging and consuming memory. #100686 Thanks @zhangguiping-xydt.
- Long, tool-heavy or media-heavy embedded-agent conversations now retain more prompt-cache reuse between turns, reducing repeated token processing, latency, and cost on prefix-cached providers. #102610 Thanks @ugiezzz.
- Anthropic Messages-compatible proxy users no longer see raw antml tool-call XML or arguments leak into visible Claude replies. b2787a1 Thanks @jerry-xin.
- Anthropic OAuth subscription requests now carry the Claude Code-style billing identity, helping them use the intended subscription route instead of failing or being treated as the wrong request type. 709be93 Thanks @vincentkoc.
- Google Gemini TTS now rejects oversized responses before buffering them into memory, while normal speech results continue through the existing audio workflow. #96984 Thanks @mushuiyu886.
- Gemini streaming can retry with another configured API key after a retryable quota or rate-limit response instead of failing on the first key. #97328 Thanks @monkeyleet.
- Gemini memory-embedding batch uploads, creation, and status checks now fail safely when a compatible endpoint returns an oversized control response. #97535 Thanks @hugenshen.
- Google Gemini CLI sign-in now rejects oversized OAuth, profile, project, and onboarding responses with labeled errors instead of risking excessive memory use. #97587 Thanks @hugenshen.
- Google Gemini CLI OAuth failures now keep oversized or malformed provider responses bounded while preserving useful error details. #99605 Thanks @mushuiyu886.
- Google image generation can now use
models.providers.google.apiKeyand an optional custombaseUrlwithout separate environment credentials or an auth profile. #100779 Thanks @amknight. - Provider setup now stops reading runaway model-discovery responses before they can stall or exhaust memory, while normal self-hosted server responses continue to work. #95244 Thanks @alix-007, @sallyom.
- Ollama model discovery now stops oversized or never-ending endpoint responses before they can exhaust memory or leave setup hanging. #96027 Thanks @alix-007.
- Replay-safe model timeouts can now advance to the next configured provider, letting agent, chat, and cron runs recover without repeating work that may have side effects. #96142 Thanks @brokemac79, @riazrahaman.
openclaw models listnow reports configured local Ollama models as available when they are running and usable. #97491 Thanks @lingfeizi, @qingminglong.- Ollama Cloud setup now stops oversized or malicious authentication responses before they can consume excessive memory, while normal sign-in remains unchanged. #97581 Thanks @hugenshen.
- Rerunning provider onboarding or refreshing models now preserves operator-owned timeouts, transport settings, MiniMax models, and SecretRef credentials instead of silently erasing them. #100107 Thanks @frank-beans.
- Ollama requests whose native response stream ends early can now continue to a configured fallback model instead of stopping with
LLM request failed. #100482 Thanks @turbotheturtle. - Scheduled and CLI Codex runs with an explicit timeout longer than 30 minutes can now use that full budget instead of being stopped by the terminal-idle guard. #85296 Thanks @alkor2000, @vincentkoc.
- OpenAI Realtime voice and transcription sessions now start behind Clash, Surge, sing-box, and similar TUN proxy setups that resolve
api.openai.cominto fake-IP ranges. #86526 Thanks @shushushv. - Realtime voice sessions now omit an individual custom tool with an invalid provider-specific name and warn about it instead of letting that tool break the entire OpenAI, Azure, or Google session. #89175 Thanks @vincentkoc.
- For Codex-backed OpenAI models,
/statusnow identifies ChatGPT login authentication asoauth (codex-cli)instead of incorrectly labeling it as an environment API key. #91240 Related #91099. Thanks @849261680, @ukstem. - OpenAI and Codex users authenticated through the app server can again see their five-hour and weekly quota windows in chat, CLI, and JSON status output. #92520 Thanks @brokemac79.
- A missing or hung local Codex tool result no longer switches the active session to another provider that cannot resolve the local failure. #95543 Thanks @mikasa0818.
- Ollama Cloud and other OpenAI-compatible Ollama chats can now continue after a tool call instead of failing the next turn with a provider 400 error. #96474 Thanks @849261680.
- vLLM, Ollama proxies, and other OpenAI-compatible gateways can deliver streamed replies even when they incorrectly label an event stream as JSON, avoiding an early parsing failure that previously ended the agent run. #96503 Thanks @zengwen-dt.
- OpenAI ChatGPT Responses streaming now cancels oversized or endless provider bodies with a clear error before they can consume excessive process memory, while normal responses keep using the existing parser. #96762 Thanks @vincentkoc, @wangmiao0668000666.
- OpenAI-compatible embedding requests now close oversized responses early with a clear provider error instead of buffering until OpenClaw stalls or runs out of memory, while normal embeddings continue working. #96868 Thanks @alix-007.
- OpenAI video generation now stops oversized or endless submission responses with a bounded provider error before they can hang the request or exhaust memory. #96905 Thanks @alix-007.
- OpenAI-compatible provider and proxy streams now stop oversized malformed or never-ending bodies at the affected request instead of letting them destabilize or crash the OpenClaw process. #96989 Thanks @vincentkoc, @wangmiao0668000666.
- OpenAI-compatible Chat Completions now use OpenClaw's guarded network path, adding the same response safety controls used by other protected model calls. #97228 Thanks @vincentkoc, @wangmiao0668000666.
- Azure OpenAI Responses now bound oversized streaming and error bodies, protecting memory while preserving normal errors and cancellation. #97349 Thanks @wangmiao0668000666.
- OpenAI embedding batch polling and Realtime setup now cancel oversized successful responses early and return a bounded error instead of growing memory without limit. #97533 Thanks @hugenshen.
- OpenAI OAuth usage checks now cap oversized WHAM rate-limit responses before they can destabilize the process. #97702 Thanks @cxbasdev.
- GPT-5.5 and other models can send valid streaming events larger than 64 KiB through ChatGPT Responses without failing the request, while malformed unbounded streams remain limited. #98198 Thanks @marvinthebored, @obviyus, @peetiegonzalez.
- Custom Xiaomi MiMo and other OpenAI-compatible models without a known output limit can now complete chats instead of failing with an invented oversized cap. #98312 Thanks @peole, @sanjays2402.
openclaw agent --localnow reports a clear first-event timeout when a provider opens a stream but never sends usable output instead of appearing to hang indefinitely. #98525 Thanks @osolmaz.- OpenAI-compatible embedding batch downloads now process valid large outputs while stopping oversized files or JSONL records before they can exhaust memory. #98554 Thanks @sunlit-deng, @vincentkoc.
- Library and integration developers can now install a version-matched package, create independent AI runtimes, and reuse OpenClaw's supported model transports without embedding the full application. #99059
- OpenAI and Azure realtime voice connections now close inbound messages above 16 MiB, limiting avoidable gateway memory pressure. #99450 Thanks @sunlit-deng.
- ChatGPT OAuth sign-in and refresh now reject unexpectedly large token responses cleanly instead of risking Gateway memory exhaustion. #99479 Thanks @pandah97.
- OpenAI-compatible providers routed through the GitHub Copilot BYOK harness now retain bearer authentication, reducing false 401 errors for valid credentials. #99955 Thanks @hxy91819.
- A detail-less failure from an OpenAI-compatible provider no longer puts a valid API-key profile into cooldown or forces avoidable fallback traffic. #100617 Thanks @fengjikui.
- OpenAI Realtime voice in Talk, Voice Call, and Discord can now use an existing Codex/OpenAI OAuth login when no explicit API key is configured. #100671 Thanks @steipete-oai.
- OpenAI image generation can now be enabled from
models.providers.openaiwith a usable API key and custom base URL, without also requiringOPENAI_API_KEYor an auth profile. #100745 Thanks @amknight. - Codex users can route both
codex/*andopenai/*models through the bundled runtime, and older conversations resume without unnecessary context reprojection. #105034 - The bundled Codex plugin can complete backend requests again after updating its managed app-server runtime, with no model-picker or configuration migration required. #106098
- OpenAI/Codex and Anthropic OAuth result pages now show OpenClaw branding instead of the legacy Pi logo. 1834592
- OpenClaw's managed Codex workflow now uses app-server 0.143.0, and self-managed installations must use 0.143.0 or newer for protocol compatibility. 366258d Thanks @vincentkoc.
- The managed Codex harness now surfaces supported GPT-5.6 Sol, Terra, and Luna models returned by the account catalog and gives self-managed users current version guidance. f80ce21 Thanks @vincentkoc.
- Managed Codex users on macOS, Linux, and Windows now receive app-server 0.144.1 instead of 0.144.0. 5dcba9f Thanks @vincentkoc.
- With
models.modeset toreplace, agent startup now uses only explicitly configured providers and skips the slow implicit provider scan. #82638 Related #66957. Thanks @eldar702, @wangzhengshu. - Bundled provider aliases now accept supported overlay settings such as request timeouts without demanding custom-provider fields like
baseUrlandmodels. #88400 Thanks @pluviobyte. - Agent runs can move to the next configured model after a provider drops a stream, while genuine cancellations still stop promptly. #90908 Thanks @shengting.
- Switching from thinking-off mode to a reasoning-required model now selects its lowest supported effort rather than silently choosing the most expensive level. #93335 Thanks @obuchowski.
- MiniMax M3 replies, including those routed through Fireworks, no longer expose hidden
mm:reasoning in visible chat or progress output. #93767 Thanks @drhack1, @vincentkoc. - Hidden MiniMax reasoning no longer appears as a new iMessage or feeds back into the conversation as an echo-triggering inbound message. #93820 Thanks @alix-007.
- Inworld text-to-speech and voice-list requests now fail safely on oversized, malformed, or never-ending responses instead of hanging or consuming unbounded Gateway memory. #95416 Thanks @alix-007, @vincentkoc.
- Embedded-agent runs can now try the next configured fallback model after a temporary upstream
LLM request failederror. #95542 Thanks @altaywtf, @mikasa0818. - LM Studio model discovery and startup now stop pathological server responses at a fixed size and report a clear error instead of buffering them indefinitely. #96042 Thanks @alix-007.
- Isolated cron jobs can now use models supplied by enabled bundled plugins without failing as unknown or silently resolving to the wrong provider. #96070 Thanks @sallyom, @sunnyshu0925.
- MiniMax OAuth device setup now limits authorization response size so a faulty proxied or self-hosted endpoint cannot exhaust Gateway memory. #96322 Thanks @lsr911.
- Image generation now stops with a clear size-limit error when a provider or custom endpoint sends an oversized or endless response, preventing hangs and runaway memory use while valid images and edits continue normally. #96495 Thanks @hugenshen, @sallyom.
- Azure Speech, Microsoft Speech, ElevenLabs, MiniMax TTS, OpenRouter transcription, and xAI transcription now stop oversized or endless responses before they can stall speech work or strain Gateway memory, while ordinary responses remain unchanged. #96496 Thanks @hugenshen.
- GitHub Copilot model discovery and memory search now reject oversized or malformed responses instead of buffering them without limit, while valid catalog and embedding results continue normally. #96499 Thanks @hugenshen, @sallyom.
- Moonshot video understanding now returns a predictable error for oversized or malformed responses instead of hanging or consuming memory indefinitely, including with custom base URLs. #96502 Thanks @hugenshen.
- OpenRouter video model discovery now stops oversized or runaway catalog responses promptly instead of letting them consume memory without limit, while normal discovery behavior is preserved. #96505 Thanks @mushuiyu886.
- Qwen video understanding now stops oversized or malformed endpoint responses with a clear error instead of hanging or reading without limit, while normal descriptions continue unchanged. #96604 Thanks @alix-007.
- Google Veo video generation now ends oversized create or status responses early with a clear bounded error, preventing a broken endpoint from hanging OpenClaw or consuming memory indefinitely. #96605 Thanks @alix-007.
- BytePlus video generation now stops oversized task-submission or status responses with a clear error before they can stall OpenClaw or exhaust memory, while normal responses continue unchanged. #96606 Thanks @alix-007.
- GitHub Copilot usage checks now contain oversized or endless endpoint responses as a usage error instead of buffering them indefinitely, while normal usage data still loads. #96607 Thanks @alix-007.
- Voyage embedding batch jobs now stop oversized status, failure, and error-file responses before they can hang or exhaust worker memory, while oversized diagnostics degrade safely and ordinary responses remain unchanged. #96608 Thanks @alix-007.
- Model aliases and partial names such as
opusnow resolve to the newest matching version even when catalogs reach double-digit versions, preventing silent routing to an older model. #96609 Thanks @yetval, @zw-xysk. - Chutes login, user lookup, and token refresh now stop unexpectedly large OAuth responses with a bounded error instead of buffering them without limit. #96777 Thanks @wangmiao0668000666.
- Chutes onboarding now fails clearly when token-exchange or user-info responses are oversized, preventing abnormal authentication traffic from causing unbounded memory growth. #96779 Thanks @wangmiao0668000666.
- DashScope-compatible video submission and polling now reject oversized JSON responses with a bounded error instead of risking memory pressure or process instability, while ordinary responses continue normally. #96782 Thanks @wangmiao0668000666.
- OpenRouter video generation now rejects oversized submit and polling responses before they can hang OpenClaw or consume runaway memory, while normal-sized malformed responses retain their established error handling. #96873 Thanks @alix-007.
- Volcengine, BytePlus Seed Speech, and Xiaomi TTS now stop oversized provider responses before one speech request can stall or destabilize OpenClaw. #96874 Thanks @alix-007.
- Vydra image, video, and speech generation now fails with a bounded error on oversized or endless control responses instead of hanging or exhausting memory, while valid responses continue normally. #96875 Thanks @alix-007.
- fal music and video generation now stops oversized successful responses with a clear size-limit error before they can hang or exhaust memory, while normal generation continues as before. #96886 Thanks @alix-007.
- MiniMax video generation now rejects oversized task, status, or file-metadata responses before unbounded memory use or binary download begins, while normal responses continue to work. #96889 Thanks @alix-007.
- xAI video generation now stops oversized create or status responses with a clear size-limit error instead of buffering until OpenClaw hangs or consumes excessive memory. #96903 Thanks @alix-007, @vincentkoc.
- Together and PixVerse video generation now returns a provider-labelled size error for oversized successful responses instead of continuing until severe memory pressure or process failure. #96904 Thanks @alix-007.
- Runway video generation now stops oversized create and status responses instead of continuing to consume memory or stall, while normal polling and provider-specific errors remain intact. #96907 Thanks @alix-007.
- Google audio and video understanding now stops oversized provider responses at the shared 16 MiB limit with a clear error instead of allowing them to consume excessive memory. #96920 Thanks @mushuiyu886, @vincentkoc.
- Comfy image-generation workflows now stop oversized ComfyUI responses with the actual size-limit error instead of risking memory exhaustion or misreporting the response as malformed JSON. #96927 Thanks @wangmiao0668000666.
- ClickClack now stops oversized REST success responses at the provider limit, giving users and operators a predictable failure instead of continued streaming and memory growth. #96970 Thanks @mushuiyu886, @vincentkoc.
- Paginated provider catalogs now expose models beyond the first page, while malformed, endless, or redirected catalogs fail safely instead of caching an incomplete list or forwarding sensitive headers across origins. #97012 Thanks @zhangguiping-xydt.
- Long opencode-go model runs are less likely to be falsely stopped as stalled while valid provider events are still arriving. #97128 Thanks @liuwqgit, @vincentkoc, @yetval.
- Configured Voice Call transcription providers such as xAI remain selectable when another provider registry is active, allowing Talk sessions to start normally. #97170 Thanks @solavrc.
- OpenRouter's DeepSeek V4 Flash and Pro models can answer with thinking enabled without failing with an HTTP 400. #97208 Related #97196. Thanks @nianjiuzst, @patelmm79.
- Proxy-backed model streams now fail with bounded, clearer errors when responses are oversized, malformed, incomplete, or idle instead of hanging or consuming unbounded data. #97235 Thanks @vincentkoc, @zhangguiping-xydt.
- xAI and Grok OAuth sign-in now works on SSH hosts, containers, VPS systems, and other headless environments without forwarding a localhost callback port. #97249 Thanks @fuller-stack-dev, @jaaneek.
- Missing official media providers now produce errors with the exact recovery commands needed to restore transcription and other media workflows. #97484 Thanks @wangmiao0668000666.
- DeepInfra video generation now rejects oversized successful responses with a bounded error instead of risking an out-of-memory crash. #97486 Thanks @hugenshen.
- OpenRouter cost tracking now caps unexpectedly large metadata responses and keeps the original streamed estimate instead of disrupting the agent turn. #97490 Thanks @hugenshen.
- GitHub Copilot sign-in, refresh, and model-list checks now fail with labeled size limits when GitHub or a proxy returns an oversized response. #97499 Thanks @wangmiao0668000666.
- Z.AI users can recover a profile that accidentally stored an onboarding command as the API key without wiping all authentication state. #97520 Thanks @zhangguiping-xydt.
- Z.AI endpoint and model detection now fails gracefully on oversized or endless error responses instead of exhausting host memory. #97540 Thanks @alix-007.
- Configured fallback chains now try an alternate model when the primary provider reports
model_not_found, reducing failures after model availability changes. #97571 Thanks @liuhao1024. - GitHub Copilot sign-in and token refresh now reject oversized service responses with a clear error before they can exhaust OpenClaw's memory. #97579 Thanks @hugenshen.
- GitHub Copilot device login now fails cleanly on an oversized successful response instead of risking an out-of-memory crash. #97583 Thanks @hugenshen.
- When a configured runtime model is no longer available, chat now explains that a new session will not help and directs operators to choose an available model. #97611 Thanks @romneyda.
- xAI sign-in, token refresh, and device approval now stop oversized OAuth responses before they can consume unbounded memory. #97615 Thanks @cxbasdev.
- Google Meet document processing now rejects oversized Google Drive exports before they can destabilize OpenClaw, while ordinary documents still export as text. #97620 Thanks @alix-007, @vincentkoc.
- Google OAuth sign-in, token exchange, and project discovery now return a bounded error for oversized responses instead of risking a process crash. #97628 Thanks @vincentkoc, @wangmiao0668000666.
- Mistral-compatible endpoints now stop oversized streaming responses with a labeled error before OpenClaw can run out of memory. #97648 Thanks @wangmiao0668000666.
- MiniMax and other shared provider usage checks now fail safely on oversized or malformed replies instead of buffering them without limit. #97659 Thanks @cxbasdev, @vincentkoc.
- Chutes sign-in and token refresh errors now include a useful bounded snippet without allowing an endpoint to stream an unlimited response into memory. #97808 Thanks @pick-cat.
- Microsoft Foundry connection tests now stop oversized or continuously streamed error responses while preserving concise setup diagnostics. #97812 Thanks @pick-cat.
- Z.AI and similar HTTP 429 responses now distinguish temporary service overload from ordinary rate limiting and preserve provider-supplied retry timing. #98165 Thanks @sunnyshu0925.
- OpenRouter model probes and agent requests now use discovered environment or profile API keys correctly instead of failing with a missing-authentication-header error. #98187 Related #97934. Thanks @laurencebrown, @sunlit-deng.
- Image and video tools can now automatically select configured provider-plugin models authenticated through environment variables. #98623 Thanks @medns.
- A malformed Inworld voices response now produces a clear provider-specific error instead of an unhelpful parsing exception or process crash. #98660 Thanks @solodmd.
- Nemotron 3 Super now exposes its full 1,048,576-token context budget in OpenClaw's bundled NVIDIA fallback catalog instead of compacting at the stale 262,144-token limit. #98726 Thanks @eleqtrizit.
- Abnormally large Google Meet, Calendar, or OAuth responses now stop with an error before they can consume uncontrolled Gateway memory. #98850 Thanks @pandah97.
- Provider failures now keep fallback error text within the configured size limit, preventing oversized responses from overwhelming logs or visible diagnostics. #99340 Thanks @pick-cat.
- ClawRouter models selected in agent defaults now resolve at runtime when the credential is stored in an auth profile instead of the environment. #99759
- Automatically configured video understanding now uses provider defaults such as Moonshot's intended video model unless the user selected a model explicitly. #99791 Thanks @vincentkoc, @zhangguiping-xydt.
- Generic provider configurations for official DashScope/Qwen, Moonshot, Z.AI, DeepSeek, Groq, Cerebras, and Chutes endpoints now retain the compatibility behavior those services require even without optional plugins. #100125
- ChatGPT OAuth-backed Responses sessions now retain backend affinity across turns, improving prompt-cache reuse and reducing repeated processing of the same conversation context. #100233 Thanks @marvinthebored, @obviyus, @peetiegonzalez.
- Google Live voice sessions can now register and call OpenClaw tools instead of rejecting their declarations before a tool-backed turn begins. #100260
- Direct
mistral-medium-3-5requests now send the user-selected adjustable reasoning level to Mistral asreasoningEffort. #100688 Thanks @aniruddhaadak80, @wm0018. - MiniMax image understanding now stops oversized or malformed successful responses at a bounded limit, protecting memory while returning a useful diagnostic. #100694 Thanks @zhangguiping-xydt.
- LM Studio embedding preload now respects the configured context limit, reducing GPU out-of-memory failures during memory search on constrained hardware. #100750 Thanks @hxz398, @zak-li, @zoowh.
- Hugging Face model discovery now falls back to the bundled catalog when a provider response is malformed or oversized instead of risking excessive memory use. #101079 Thanks @cxbasdev.
- Featherless AI now has an official provider install and onboarding path, including
FEATHERLESS_API_KEY, a curatedfeatherless/Qwen/Qwen3-32Bdefault, and support for exact Featherless model IDs. #101092 Thanks @vincentkoc. - Meta Model API is now exposed through the public
metaprovider, withmeta/muse-spark-1.1, canonical provider docs, and standalone npm or ClawHub installation paths. #103070 Thanks @vincentkoc. - The bundled Meta provider now uses
https://api.meta.ai/v1, advertises Muse Spark 1.1's documented 131,072-token output limit, and applies official-host request protections. #103680 Thanks @vincentkoc. - Trusted official external providers can now show model-specific thinking choices before full runtime activation, including off, low, high, and max for Z.AI GLM 5.2. b4fce16 Thanks @vincentkoc.
- Anthropic agents routed through AWS Bedrock can keep Feishu Bitable write tools enabled without the tool definitions blocking every conversation. #94990 Thanks @twinslee, @vincentkoc.
- Anthropic sign-in now rejects unsupported callback-host overrides, keeps authorization on standard local loopback addresses, and avoids callback failures or exposure through a non-local listener. #96917 Thanks @xialonglee.
- Expired Claude CLI authentication now shows the exact recovery command
claude auth login && openclaw models auth login --provider anthropic --method cliinstead of a generic failure. #97669 Thanks @alix-007. - Eligible direct API-key requests to Claude Fable 5 now return an Opus 4.8 answer when Anthropic's safety classifier declines Fable, with diagnostics and Opus billing made clear. #99906
- Claude Fable 5 now uses the expected Anthropic
context1mstream setup when 1M context is enabled, without affecting similar model IDs. #100572 Thanks @zhangguiping-xydt. - Anthropic-compatible model requests now consistently use OpenClaw's guarded transport, response normalization, and managed stream cleanup rather than bypassing them through the SDK. #101357 Thanks @wangmiao0668000666.
- Claude conversations through GitHub Copilot can continue after a tool failure with no visible output instead of entering repeated provider-schema failures. #101373 Thanks @galiniliev.
- Anthropic-compatible calls with token caps too small for manual thinking now run normally without thinking instead of failing provider validation. #101415 Thanks @pick-cat.
- Gemini CLI media analysis now returns its description even when the valid response also contains nested usage or other metadata. #96432 Thanks @lin-hongkuan.
- MCP tools that expect arrays or objects can now accept those values when Xiaomi MiMo, Ollama, or another affected provider returns them as JSON strings, avoiding a pre-execution validation failure. #96922 Thanks @liuhao1024.
- Repaired plain-text tool calls from LM Studio, xAI, and Ollama now emit a final completion event so plugins and other streaming consumers can finish them reliably. #104714
- Status summaries now respect provider-local model aliases, showing the selected alias without a false pinned-model mismatch warning. 1d4e789
- Cloudflare 403 challenges on OpenAI or Codex OAuth requests now produce gateway-block guidance instead of incorrectly telling users their authentication failed. #94440 Related #94432. Thanks @lzyyzznl, @pbm9z95m6z-hue.
- Configurations using the retired
openai-codex-responsesAPI ID now receive a validation message naming the supported replacement instead of a generic failure. #96257 Thanks @james-16, @yetval. - Legacy
openai-codexreferences now direct operators toopenclaw doctor --fixandopenclaw models statusinstead of suggesting configuration that fails validation. #100120 Thanks @jason-vaughan, @sunnyshu0925, @vincentkoc. - OpenAI authentication errors now point ChatGPT/Codex OAuth users to a model compatible with their existing sign-in instead of recommending an outdated default. #100579 Thanks @zhangguiping-xydt.
- Codex app-server runs with an invalid ChatGPT OAuth session now surface the real sign-in error promptly instead of waiting for a misleading ten-second authentication timeout. #100713 Thanks @lin-hongkuan.
- Continued conversations with strict custom OpenAI Responses-compatible endpoints no longer fail on an unsupported
input[n].statusfield and needlessly switch to a fallback model. #100831 Thanks @chenxiaoyu209. - Codex runs stopped by the guardian rejection limit now say why they ended, so operators do not have to mistake the result for a crash, cancellation, or generic interruption. #101220 Thanks @darren2030.
- Codex-native delegation from OpenClaw threads now creates native task records again, while unsupported custom Codex app-server versions fail startup with a clear minimum-version error. #101221
- Crestodian setup and repair chats on Codex-backed runs can now access the status and repair tool they need instead of stopping with a missing-tool response. #101281
- Shared Codex app-server clients now keep usage limits, auth cooldowns, thread subscriptions, and resumed connections tied to the account and conversation that actually owns them. #101376
- OpenAI realtime voice sessions now default to
gpt-realtime-2.1when no model is specified, while explicit model pins continue to work. #101390 Thanks @vincentkoc. - Codex sessions using
gpt-5.5-proorgpt-5.4-pronow clamp unsupported reasoning levels before the first turn, avoiding an immediate request rejection when live metadata is unavailable. #101484 Thanks @zhangguiping-xydt. - Codex app-server stdout failures now end affected requests cleanly, while a diagnostics-only stderr failure no longer interrupts an otherwise healthy turn. #101505 Thanks @mushuiyu886, @vincentkoc.
- When an OpenAI or OpenAI-compatible chat-completions model refuses a request, users now see the provider's explanation instead of a blank assistant reply. #102344 Thanks @wuqxuan, @yetval.
- OpenAI image generation and reference-image editing no longer crash when credentials or a custom base URL are ready before the provider model catalog finishes loading. #105518 Thanks @vincentkoc.
- After
/modelchanges a session's provider,/statusandsession_statusnow report that provider's usage, authentication, runtime, and context details rather than stale defaults. #93384 Thanks @obviyus, @osolmaz, @rollingshmily, @samiralibabic, @zhangguiping-xydt. - Model-call traces now include prompt-size and per-call token usage details, helping operators investigate cost and prompt growth without capturing raw content. #95770 Thanks @amknight.
- Request-format and schema failures now show the relevant diagnostic without sending users through unnecessary provider login or reconfiguration steps. #95779 Thanks @pick-cat.
- Parallel web search now returns a bounded error when an upstream response is malformed, oversized, or never-ending instead of risking a hang or out-of-memory crash. #96035 Thanks @alix-007.
- Exa searches now reject responses above the supported limit, preventing excessive provider output from hanging OpenClaw or creating memory pressure. #96038 Thanks @alix-007.
- Existing xAI and Grok OAuth sessions using the retired token endpoint can renew after expiry without forcing another browser or SSH-tunneled login. #96146 Thanks @fuller-stack-dev, @jaaneek.
- OpenRouter scans now interpret model names such as
8b-70bby their larger parameter size, improving minimum-size filters and small-model security warnings. #96288 Thanks @ly-wang19. /model defaultnow actually returns an active session to its configured model after steering, fallback, or a previous manual selection. #96318 Thanks @marsman-lab, @sunnyshu0925.- Media-generation catalogs now keep the correct default model marker even when provider metadata includes harmless surrounding whitespace. #96430 Thanks @lin-hongkuan.
- OpenRouter sign-in now fails safely on oversized replies, and Discord webhook sends remain successful when their optional response body is absent, malformed, or too large. #98098 Thanks @lwy-2.
- Reference-image edits through Fal-hosted Grok Imagine and Nano Banana 2 Lite now reach the correct service, while mixed-model fallbacks honor each candidate's supported resolution and reference limits. #98688 Thanks @davenicoll, @vincentkoc.
- Malformed Voyage embedding batches now close their download connections after parsing fails, reducing resource buildup during repeated or large workloads. #98840 Thanks @solodmd.
- Short non-English audio now keeps the configured language hint without an unrelated English prompt, reducing accidental translation when users expect a transcript in the spoken language. #99023 Thanks @flyveryhigh, @nianjiuzst.
- Switching a live Control UI or TUI session through a provider-qualified model alias now saves the canonical provider and model, preventing the next request from being rejected. #100209 Thanks @sahilsatralkar.
- Gateway chat now classifies mixed provider messages as rate limits when throttling is the real failure, giving users recovery guidance that matches the problem. #100755 Thanks @pick-cat.
- Agents created by copying credentials now preserve the source agent's portable provider-profile priority instead of unexpectedly choosing a different credential. #100833 Thanks @machine3at.
- OpenRouter completions that the provider bills at $0 now stay recorded as free in transcripts, summaries, logs, and usage totals instead of being replaced with estimated catalog pricing. #101177
- New or updated provider credentials entered through the CLI now appear in the running Gateway and Control UI model picker without a manual secrets reload or restart. #101256 Thanks @fuller-stack-dev.
openclaw statusandsession_statusnow identify when a session is using a fallback model and show the configured primary model beside it. #101337 Thanks @lzy3538.- MiniMax TTS now accurately explains that volume must be greater than 0 and may be as high as 10 when a directive is invalid. #101359 Thanks @quratulain-bilal.
- MiniMax VLM and native PDF provider errors now remain readable when emoji or other supplementary characters land at the diagnostic snippet limit. #101728 Thanks @wings1029.
- Very long OpenRouter Fusion model IDs now remain valid Unicode in the agent prompt instead of showing a corrupted character when an emoji reaches the display limit. #104433 Thanks @zhangguiping-xydt.
- OAuth-backed models now become available in Gateway model browsing after credentials are renewed from another CLI process, without requiring a Gateway restart. #104732 Thanks @fuller-stack-dev.
- Provider onboarding no longer writes an empty
requestblock when no request overrides were supplied. 3a0a736 Thanks @vincentkoc. - The diagnostics timeline now shows when provider model calls ran, how long they took, and whether they succeeded without recording prompt or response content. 7253552 Thanks @vincentkoc.
Memory and conversations
Recall, long chats, and session continuity
Memory indexing, recall, wiki synchronization, and search recover from more malformed pages, stale status, large indexes, transient reads, and provider mismatches without hiding useful stored context or overwriting user notes. When a result is incomplete or a configured memory provider is unavailable, the failure is clearer instead of looking like a complete answer.
Sessions, transcripts, compaction, goals, and routing also retain the intended conversation more consistently through restarts, resets, delayed follow-ups, tool-heavy runs, and client changes. The practical result is less missing history, fewer replies stored against the wrong session, and more dependable continuation of long-running work.
Sources and contributors
- Durable memory promotion now keeps OpenClaw's managed dreaming markers and adjacent managed content out of
MEMORY.mdwhen a recalled range touches a block boundary. #83718 Thanks @grifjef. - QMD
searchandvsearchmodes now skip the LLM reranker, reducing latency and avoiding unnecessary GPU failures while fullquerymode keeps reranking. #88887 Thanks @potterdigital. - Inferred follow-up commitments now return to the queue after temporary model or network extraction failures, reducing missed reminders without duplicate processing. #89817 Thanks @masatohoshino.
- Memory-wiki pages titled
Indexnow remain stored, searchable, and retrievable instead of being hidden or overwritten by generated directory pages. #94326 Thanks @vincentkoc, @yetval. - Active Memory now warns when recalled operational details may be outdated and clearly marks clipped summaries, so old or incomplete status is less likely to look current. #95888 Thanks @spencer2211.
- Memory-wiki pages in subfolders now appear in search, lookup, compiled indexes, digests, and vault counts just like pages at the top level. #96022 Thanks @machine3at, @vincentkoc.
- Large memory indexes can now return filtered matches beyond sqlite-vec's first 4,096 candidates without failing or silently missing valid results. #96157 Thanks @itsuzef, @vincentkoc.
- Repeated QMD-backed
memory_searchandopenclaw memory searchrequests can return faster after the first lookup, while diagnostics separate setup time from search time and missing collections still trigger repair. #96655 Thanks @bek91. - Memory search now works with installed generic embedding plugins such as local llama.cpp, including their default model and connection details. #97095 Thanks @849261680.
- One memory-wiki page with broken YAML no longer blocks healthy pages from being searched, compiled, linted, counted, or updated. #97177 Related #96125. Thanks @cow11023, @sunnyshu0925.
- Memory-core light dreaming no longer repeats an unchanged work-summary block in
DREAMS.md, while genuine daily-note updates can still appear later. #97446 Thanks @aaajiao, @qingminglong. - Memory Wiki now marks claims with malformed explicit freshness timestamps as unknown instead of masking the bad metadata with the page date. #97465 Thanks @ly-wang19.
- Detailed
/status pluginsnow warns when a configured memory embedding provider is unavailable and semantic recall has fallen back to keyword search. #97968 Thanks @masatohoshino. - Memory Wiki lint now ignores link-looking text inside inline and fenced code while continuing to report genuine broken links in prose. #98095 Thanks @durambar, @vincentkoc, @zhangqueping.
- Memory-wiki source updates now preserve hand-written Notes when a temporary read failure prevents OpenClaw from safely loading the existing page. #98360 Related #98345. Thanks @qingminglong, @vincentkoc, @yetval.
- QMD memory recall now turns malformed or warning-filled mcporter output into a clear, filtered error instead of exposing raw subprocess text. #98381 Thanks @miorbnli.
- Memory-wiki source sync can now recover when a page is missing or collides with a non-file, while preserving existing content when a retry remains unsafe. #99276 Thanks @obviyus.
memory_getwithcorpus=allcan now return an available wiki supplement when the requested memory file is missing instead of stopping with an empty result. #100904 Thanks @mushuiyu886, @vincentkoc.- iOS voice notes now stay with the intended chat and recover more reliably across offline queues, app recreation, uncertain sends, and competing microphone use. #101236
- Memory Wiki imports now continue when a source page collides with a protected vault entry instead of stopping the whole import. 76db9a3 Thanks @vincentkoc.
- With
memorySearch.provider: none, OpenClaw now starts FTS-only memory without an unnecessary plugin capability scan. fbf574a - After
/newor/reset, the previous conversation remains available for daily memory summaries and full-history searches through the session-logs skill. #71537 Thanks @injinj. - With memory flush enabled, important conversation context now gets a chance to reach durable memory before automatic compaction, reducing silent gaps in saved notes. #84792 Thanks @turbotheturtle.
- Images shared from iOS or through node
agent.requestnow remain attached to the correct conversation turn after history reload, so later messages can still use them. #86936 Thanks @peterdsp. - A group chat or Gateway session can now resume on the next visible request after a failed, timed-out, or killed turn without requiring
/newor manual session-file edits. #89045 Thanks @jerry-xin. - Voice Call history now stays with the correct configured agent across Gateway restarts and upgrades, while ambiguous legacy state is left untouched with actionable warnings. #89884 Thanks @mushuiyu886.
- Interactive QMD memory searches with no matches now return an empty result promptly instead of appearing stuck during unnecessary index maintenance. #90030 Related #90023. Thanks @ruben2000de, @sahibzada-allahyar.
- Gateway and embedded TUI startup now reclaim old session temporary files left by hard shutdowns, reducing hidden disk growth while preserving fresh or potentially recoverable state. #90503 Thanks @sahibzada-allahyar.
- Shared group and channel transcripts now retain the sender ID, display name, and username for each durable user turn, making later history and memory processing correctly attribute participants. #90552 Thanks @pick-cat.
/export-sessionnow warns when a CLI- or ACP-backed export contains only user messages and points users to the backend transcript for missing assistant, tool, usage, and cost details. #90867 Thanks @tank-x3, @vincentkoc, @xydigit-sj.- Long-running gateways can clear stale one-shot model-check sessions before they crowd out real conversation history, with dedicated CLI reporting for review. #91057 Thanks @jalehman, @wangwllu.
openclaw export-trajectoryand/export-trajectorynow include redacted messages from older version 1 sessions instead of producing a successful but empty transcript. #93814 Thanks @yetval.- Session-memory files created around
/newand/resetnow keep one copy of each assistant reply instead of duplicating reasoning-model responses. #94401 Thanks @sallyom, @sunnyshu0925. - Newly promoted long-term memories now omit raw transcript, summary, session-header, flush-prompt, and scoring clutter so useful notes are easier to find. #94636 Thanks @josephur, @pinghe-learn, @tayoun.
- Long CJK-heavy sessions using a context engine such as lossless-claw no longer stop on a false
prompt too largeprecheck after the engine has already managed the prompt. #95342 Thanks @jalehman, @mpz4life. - Large Chinese, Japanese, and Korean tool results are now estimated more accurately, reducing false context-overflow interruptions and premature compaction. #95447 Thanks @moguangyu5-design, @vincentkoc.
openclaw doctor --fixcan now carry legacy Memory Core indexes from 2026.6.9 upgrades into the current store without forcing a full re-embed. #95631 Thanks @mushuiyu886, @vincentkoc.- Aborted or timed-out embedded runs now release their session write lock, so the next message can proceed without minutes of waiting or manual file cleanup. #96100 Thanks @richwilson-bloom, @sallyom, @xialonglee.
- Prompts containing fullwidth East Asian characters now receive more accurate size estimates, allowing context management to start before an oversized request reaches the model. #96442 Thanks @lin-hongkuan.
- Dreaming now keeps deleted or reset transcript archives and cron-created child conversations out of its learned session set, reducing duplicate history and automation noise without removing retained archives from historical search. #96517 Thanks @adam-researchh, @jalehman, @xialonglee.
- Compacted agent history now lists genuine tool failures instead of repeatedly mislabeling successful subagent launches, including when older transcript records contain the incorrect error flag. #96842 Thanks @nxmxbbd.
- Replies that span an automatic daily or idle reset now remain together in one accessible transcript instead of losing later output. #97164 Thanks @joshavant, @yetval.
- Invalid transcript entries now raise a visible write error instead of becoming
undefinedJSONL lines that silently vanish after reload. #97356 Thanks @miorbnli. - Memory Wiki import summaries now shorten ChatGPT text containing emoji without leaving corrupted replacement characters. #97362 Thanks @mushuiyu886.
openclaw sessions cleanup --fix-missingnow preserves fresh cron sessions with valid transcripts and clearly reports repaired entries. #97495 Thanks @qingminglong.- Long conversations now recover compaction after transient provider disconnects instead of replacing useful history with a degraded placeholder summary. #97504 Thanks @hugenshen.
- Automatic recovery from provider role-ordering conflicts now archives the complete prior transcript as a timestamped JSONL file before replaying a shorter tail. #97544 Thanks @yungchentang.
- Long conversations using
historyLimitordmHistoryLimitnow retain their saved earlier summary after compaction, helping the assistant remember prior context. #97591 Thanks @liuhao1024, @yetval. - Resuming work from a project now opens only that project's saved agent session, preventing unrelated transcripts from being mixed together. #97785 Related #96542. Thanks @qingminglong, @yetval.
openclaw memory statusnow warns when session transcripts still need indexing instead of incorrectly reporting memory as current. #97857 Related #97814. Thanks @che10x, @zw-xysk.- Compacted group conversations now retain identical long messages from different participants while still removing accidental duplicate retries from the same sender. #98336 Thanks @sunnyshu0925, @yetval.
- Recurring provider-CLI cron jobs and local
openclaw agentruns now keep their existing provider conversation across the daily reset boundary instead of silently losing context. #98356 Thanks @yetval. - Transcript summary and import reads now close files reliably after malformed data, preventing long-running processes from gradually exhausting file handles. #98493 Related #98467. Thanks @wangmiao0668000666, @zhanglei99586.
- Rerunning memory-wiki synthesis or ChatGPT imports no longer risks erasing handwritten notes, frontmatter, or import state when an existing page cannot be read briefly. #98787 Thanks @vincentkoc, @yetval.
- Discord, WebChat, and other ongoing conversations can keep receiving replies when background activity touches the same session during reply startup, without a false initialization conflict or dropped message. #98835 Related #98672. Thanks @aaronfaby, @jalehman, @moguangyu5-design.
- Reopened sessions can now replay older string or single-object tool results correctly instead of treating successful output as empty or failing on its stored shape. #98891 Related #98825. Thanks @obviyus.
- Older or imported sessions with plain-string assistant messages now replay correctly across provider and streaming paths instead of sending malformed conversation history. #98908 Thanks @obviyus.
- Agents in long-running WebChat, Discord, and other direct sessions can keep reading fresh command, file, browser, and status output instead of seeing it disappear or turn into an image placeholder. #98955 Related #98874. Thanks @lamkan0210, @momothemage.
- Resetting a multi-agent room now restores message delivery promptly instead of blocking most agents' acknowledgement and queued replies for several minutes. #99091 Thanks @gorkem2020, @zengwen-dt.
- Long Codex conversations with heavy tool use can now compact at a real history boundary and continue with relevant tool results summarized instead of retaining the full transcript. #99391 Related #99375. Thanks @imchloe92, @lzy3538.
- Rapid follow-ups in the same chat no longer freeze both messages while the first automatic reply is finishing. #99549 Thanks @shagrat2.
- Claude CLI-backed interactive replies now keep their saved session more consistently, preserving continuity and reducing repeated full-history replay. #99595 Related #99372. Thanks @obviyus.
- CLI-backed agents in multi-person group chats now retain conversational context when participants alternate, without expanding non-owner tool permissions. #99640 Related #99633. Thanks @obviyus.
- Claude CLI chat history reloads no longer display OpenClaw's internal reseed wrapper as if it were a message the user typed. #99653 Related #99646. Thanks @harjothkhara, @jeehut, @vincentkoc, @zoowh.
- Local-model sessions now retain auto-compaction bookkeeping, reducing repeated context refills and the unresponsive behavior they could cause. #99678 Related #99677. Thanks @headbouyjb, @vincentkoc.
- CLI-backed group agents now keep one warm conversation across mentioned and unmentioned follow-ups instead of resetting and losing context. #99722 Related #99696. Thanks @obviyus.
- Long, tool-heavy agent sessions now preserve the newest command, file, or browser result for the model while shortening older history first. #99756 Thanks @acosx.
- CLI-backed agents now keep conversation continuity across prompt-only changes, avoiding needless cold starts while still resetting when security or runtime conditions require it. #99822 Related #99729. Thanks @obviyus.
- Imported Claude CLI history now keeps image-only and attachment-bearing turns visible when removing empty legacy reseed text. #99839 Thanks @vincentkoc.
- Claude CLI model fallback now carries the prior tool-call trail alongside tool results, giving the replacement model enough context to continue coherently. #99851 Thanks @vincentkoc.
- Long cached Anthropic tool sessions now compact near the configured context threshold instead of interrupting work early because cumulative cache tokens looked like live context. #99864 Thanks @jrex-jooni, @lzy3538, @vincentkoc.
- Long-lived agents with large context windows now retain fresh tool output, compact under aggregate pressure, and warn users to run
/compactor/newif pressure persists. #100077 Thanks @obviyus. - Long-running agents can now recover full command output and truncated
web_fetchcontent after history cleanup, reducing repeated expensive work and lost page context. #100135 Thanks @obviyus. - Transcript-backed history now treats a missing file as empty while reporting real access, directory, or stream failures cleanly instead of leaving partial or unhandled results. #100524 Thanks @cxbasdev, @zhanglei99586.
- Temporary memory-maintenance failures no longer replace the agent reply, and persistently oversized sessions can recover in a fresh session while preserving the previous transcript. #100618 Thanks @jerry-xin, @rhclaw.
- Small-context local models can now begin and continue conversations without immediately entering an overflow-compaction loop before useful prompt space is available. #100621 Thanks @vincentkoc.
- Long sessions that compact in stages now preserve clearer older-to-newer ordering when summaries are combined, reducing the chance that stale context appears equally recent. #100684 Thanks @vincentkoc, @zw-xysk.
- Transient transcript read failures no longer destabilize session-log diagnostics or let an incomplete usage scan overwrite the last complete cost cache as though it were current. #101062 Thanks @cxbasdev, @vincentkoc.
- Context-engine plugins can now identify the exact session that continues after compaction while older integrations using
sessionFileremain compatible. #101182 Thanks @jalehman. - A first command-only interaction in an auto-reply flow now keeps its session update even when no session row existed beforehand. 76d686c
- Memory Core now preserves short standalone concepts such as
kvands3in tags, improving recall without matching them inside unrelated words. #96304 Thanks @ly-wang19. - Memory dreaming now records structured success or failure outcomes for light, REM, and deep phases so dashboards and health checks can monitor them reliably. #97723 Thanks @lg320531124, @momothemage.
openclaw wiki lintnow ignores wikilink-like patterns inside code examples so real broken Memory Wiki links are easier to spot. #97954 Thanks @durambar, @liuhao1024, @vincentkoc.- Mac users now get stronger protection for local OpenClaw SQLite data after abrupt power loss or an operating-system crash, with no configuration change. #99067 Thanks @ooiuuii.
openclaw wiki lintnow recognizes valid imported Obsidian links by title, slug, fragment-free path, or source-path suffix, reducing false broken-link warnings. #100017 Thanks @ishangodawatta, @k-kerrigan, @vincentkoc.- Memory-wiki bridge status now returns a usable warning instead of crashing on malformed plugin artifacts, and
readMemoryArtifacts: falsenow reliably prevents those reads. #100900 Thanks @huveewomg. - Wiki search and retrieval now explain when an older or partial memory plugin lacks shared-search support and offer a practical workaround instead of exposing a raw TypeError. #100902 Thanks @huveewomg, @vincentkoc, @xuanmingguo.
- Embedded agents now receive well-formed summaries of long media or JSON values instead of broken characters at Unicode truncation boundaries. #101311 Thanks @alix-007.
- Memories containing emoji or supplementary CJK characters can now be indexed without malformed text stalling the operation. #101574 Thanks @jensenwang560-blip.
- When both a primary memory read and its wiki supplement fail,
memory_get corpus=allnow returns the original structured read error instead of crashing the tool call. #101902 Thanks @aniruddhaadak80, @vincentkoc, @zw-xysk. - Memory-index debug logs now show whether an embedding batch completed or failed, making indexing problems easier to trace. #94732 Thanks @doubleji817-lang, @xydt-tanshanshan.
openclaw memory status --fixnow repairs session-corpus state without mistaking healthy daily-memory records for stale data. #93389 Thanks @alix-007, @vincentkoc.openclaw memory statusno longer shows impossible session indexing totals where the indexed file count exceeds the total file count. #95452 Thanks @buyitsydney, @liuhao1024.- Malformed transcript rows now produce an aggregate warning with skipped and loaded counts while the remaining usable session history continues to load. #98669 Thanks @cxbasdev.
- Sessions renamed with
/namenow keep that custom name in session lists instead of reverting to an automatic title or UUID-like label. #98841 Related #98742. Thanks @bsg2000, @sunnyshu0925. - Preparing a reset for a long-running session now avoids scanning the entire transcript, reducing startup file activity and memory use as history grows. #99335 Thanks @gmschasiepen, @momothemage.
- Transcript tools can now identify channel delivery mirrors as OpenClaw bookkeeping rather than mistaking them for OpenAI Responses output. #99855 Thanks @vincentkoc.
- A successfully completed main-agent conversation now continues in the same session on the next message instead of unexpectedly resetting and archiving its transcript. #99985 Thanks @sunnyshu0925.
- Debug-proxy ACP runs now shut down cleanly, mark capture sessions finished, and close their capture databases without reporting a spurious database error. #100827 Thanks @amknight.
- Media-provider audit details containing emoji now remain valid and readable when shortened, instead of ending with malformed characters. #101298 Thanks @alix-007.
- Long agent prompt data containing emoji or other paired Unicode characters now stays well-formed when capped, avoiding broken text in agent and automation context. #101303 Thanks @alix-007.
- Archived memories around user messages that begin with
[cron:]remain searchable after a session reset or deletion, while genuine cron-generated archives stay hidden. #101322 Thanks @ly-wang19. openclaw sessions tailnow rejects oversized trajectory snapshots and updates with a clear limit error before they can exhaust memory. #101450 Thanks @cxbasdev, @vincentkoc.- Long usage and session log messages now truncate emoji cleanly instead of displaying malformed character artifacts. #101517 Thanks @maweibin.
- Dashboard session labels and display names now remain attached when a session rolls over after a day or idle period. #101576 Thanks @merlin-zhou, @zengwen-dt.
- Session-memory diagnostics now show the correct workspace and memory-file paths for sibling directories whose names merely resemble the user's home path. #101577 Thanks @cxbasdev.
Agents, background work, and connections
Keeping work moving and replies delivered
The Gateway now starts, connects, reloads, and reports health with clearer behavior across configuration, networking, task routing, and result delivery. Agents are less likely to lose their selected workspace or conversation, background work reaches the right destination more consistently, and tool failures can stay out of chat progress when a useful final reply is still available.
The Gateway protocol and restart recovery paths also reject invalid state more clearly and keep inspection available during common lifecycle failures. Skill loading and prompt overhead are steadier as well, with skill controls avoiding unnecessary work and preserving cache fingerprints for the text providers actually receive.
Sources and contributors
- Legacy subagent sessions now follow their actual nesting level, so nested-agent limits and controls no longer fall back to top-level behavior. #54593 Thanks @ruanrrn.
- Timed-out cron jobs, expired agent requests, and disconnected HTTP clients now stop promptly instead of spending more time and provider calls on model fallback. #62682 Thanks @altaywtf, @cinapbot, @simonusa.
- Channel replies can now continue as soon as an embedded-agent turn finishes instead of waiting roughly 50 seconds for post-run authentication bookkeeping. #85829 Thanks @turbotheturtle.
- Provider failures that contain BigInt, circular objects, or other unusual values now produce the intended structured transport error instead of crashing the error-reporting path. #88401 Thanks @pluviobyte.
- Experimental local-model lean mode now offers a smaller default tool menu for constrained models, while operators can explicitly retain media, voice, or PDF tools through allowlists. #88881 Thanks @vincentkoc.
- Embedded agents now retain configured compaction reserve limits when runtime safeguards save settings, reducing unexpected context-budget shrinkage during long work. #92237 Thanks @sercada.
- Subagent completion notices now arrive once instead of being repeated when the requesting session changes during delivery. #92274 Related #91527. Thanks @fsdwen, @obviyus, @zackchiutw.
- Isolated cron jobs can announce a cross-session result without feeding the recipient's reply back into the cron run and creating duplicate message loops. #92283 Related #92257. Thanks @harjothkhara, @nailujac, @vincentkoc.
- Telling an agent to remember a preference no longer triggers the unrelated warning used for promises to schedule an automatic reminder. #93862 Thanks @arkyu2077.
- Slack and similar channel turns with context-injecting plugins now send each inbound system label to the model once instead of duplicating it. #95349 Thanks @gorkem2020, @openperf, @vincentkoc.
- Anthropic sessions stuck on a thinking-signature replay error can now retry once without invalid thinking blocks and continue without
/newor transcript repair. #95430 Related #95429. Thanks @alexelgier, @lzyyzznl, @vincentkoc. - Truncated agent logs and diagnostic previews now keep emoji and other extended Unicode characters intact at the cutoff. #96296 Thanks @ly-wang19.
- Embedded
openclaw agent --localruns using OpenAI-compatible providers now report and save streamed token usage instead of showing zero, improving session, context, cost, and monitoring records. #96523 Thanks @ly85206559, @vincentkoc. - Successful embedded-agent subagent launches now remain successful in transcripts and later compaction summaries instead of being recorded as tool failures, while real launch failures stay visible. #96851 Thanks @neomail2, @parveshsaini.
- Codex-runtime transcripts and compaction summaries now keep successful subagent launches and goal operations out of failure records, while genuine failures remain visible and accepted-launch hooks can run. #96856 Thanks @nxmxbbd.
- Long agent grep lines now truncate emoji and uncommon CJK characters cleanly instead of ending with corrupted replacement symbols. #97559 Thanks @zenglingbiao.
- Telegram PDFs and other documents now provide agents with a usable local path so normal runner tools can open the attachment. #97647 Thanks @gallup007, @joshavant.
- Agents can now read structured JSON and resource tool results during provider replay instead of receiving an empty result or generic media placeholder. #97742 Thanks @obviyus.
- Sessions with large command output or summaries now compact before exceeding the model context, avoiding failed provider requests and misleading token budgets. #97861 Thanks @yetval.
- Long tool-heavy or compacted sessions now budget the real size of command output and summaries before sending a prompt, reducing context overflow failures. #97928 Related #97927. Thanks @liuhao1024, @yetval.
- Claude CLI conversations that exhaust their context now recover into a fresh reseeded session automatically, and timeout retries retain the temporary files they need to complete. #98934 Related #98897. Thanks @obviyus.
- Local Ollama-backed CLI agent turns can now continue when the context engine reports an already-compacted transcript, allowing the assistant or MCP tool result to reach the user. #99136 Thanks @mushuiyu886, @peterskwang, @pkoserowski, @psedd.
- Codex-backed runs can now deliver a completed final answer instead of timing out or appearing aborted when the final completion event is missing. #99217 Thanks @100yenadmin, @fuller-stack-dev, @sedrak-hovhannisyan.
- Interactive chat requests that end in a terminal failure now receive one visible error response instead of appearing to be ignored. #99304 Thanks @grox2012, @moeedahmed.
- Successfully started subagents now remain visible in
/subagents listandsubagents(action="list"), including when different sessions own control and completion. #99410 Related #75593. Thanks @aaajiao, @sheyanmin. - Codex app-server agents can again list allowed agents, spawn OpenClaw or ACP subagents, and yield during delegated work without resumed heartbeats hitting incompatible tool definitions. #99561 Related #99464. Thanks @100yenadmin, @joshavant.
- OpenClaw no longer crashes when a supervised child output stream fails immediately after launch. #99802 Thanks @cxbasdev, @vincentkoc.
- MCP stdio sessions now report stderr pipe failures as transport errors without taking down OpenClaw or losing available diagnostics. #99803 Thanks @cxbasdev, @vincentkoc.
- ACPX MCP proxies now turn closed input or output pipes into a clear proxy failure instead of an uncaught Node stream crash. #99852 Thanks @sunlit-deng, @vincentkoc.
- Images attached to a CLI-backed prompt now survive embedded-model fallback, preserving the visual context needed to answer. #99891 Thanks @vincentkoc.
- Messages mixing inline and offloaded images now preserve every attachment position so model instructions that depend on sequence remain accurate. #99902 Thanks @vincentkoc.
- Requester agents now receive a follow-up when an accepted
sessions_senddelivery later fails because the target session is locked, so they can retry or choose another route. #99907 Thanks @849261680, @alex-heyuqing. - Operators can now set
OPENCLAW_SANDBOX_IMAGEto build revision-specific sandbox image tags for controlled rollout and rollback. #99915 - Agent sessions are less likely to lose output, alter unrelated formatting, stall after temporary provider errors, reject BMP images, or drop longer ChatGPT connections. #99949
- Images from the current prompt now reach CLI fallback attempts in the right order, without pulling stale image references from earlier retries or history. #100035 Thanks @vincentkoc.
- Long Claude CLI-backed runs now show honest
Thinking... (~N tokens)activity for direct and queued work instead of appearing stalled when readable reasoning text is unavailable. #100148 Thanks @obviyus. - Edge-case fixes now preserve literal memory text and valid Unicode, improve voice-call cleanup and port checks, report Claude models and context limits accurately, and retain useful ClickClack connection errors. #100204 Thanks @cxbasdev, @harjothkhara, @lilan0125, @lin-hongkuan, @liuhao1024, @mikasa0818, @pandah97, @sunlit-deng, @zoowh.
- Emoji and other supplementary characters now remain intact when long agent progress or active-memory recall text is shortened. #100244 Thanks @vincentkoc, @xialonglee, @zengwen-dt.
- Sub-agents and other HTTP loopback MCP clients can again receive browser screenshots and valid image or embedded-resource results without schema failures. #100336 Thanks @tzy-17.
- Interactive turns that truly end without visible output now send a clear failure reply, while intentional silence and already-completed actions remain quiet. #100474
- Batched media replies can now finish successfully after delivery without a misleading session-change failure, while active conversation ownership checks remain enforced. #100490 Thanks @scotthuang.
- Fresh Claude CLI workspaces now run a pending
BOOTSTRAP.mdon the first reply so required identity, memory, and setup steps are completed before normal conversation. #100560 Thanks @bill-starfoundry, @kruegerb, @vincentkoc. - Completed answers from tool-using tasks now reach the user instead of being replaced by an incomplete-turn error, with run metadata attached to the same final response. #100655 Thanks @liuwqgit.
- Shell snapshot capture and validation no longer crash OpenClaw when an unused helper-process output pipe reports a stream error. #100744 Thanks @lsr911, @vincentkoc.
- A node-host
system.runstream failure now returns a clear failed result instead of crashing the node host, and a child that will not stop is terminated after one second. #100849 Thanks @cxbasdev. - Long-running agents are less likely to lose workspace instructions such as
AGENTS.md,SOUL.md, orMEMORY.mdfor a turn during a temporary filesystem error. #100910 Thanks @masatohoshino. - Docker-backed sandbox file and shell commands now fail promptly with the original input-stream error instead of crashing, hanging, or remaining pending. #101032 Thanks @cxbasdev.
- Existing Codex sessions can resume their bound threads more reliably after upgrades, resets, and compaction without depending on leftover transcript-side JSON files. #101210
- Lean local-model agents can now choose the familiar
exectool directly when policy permits it, while existing allowlists, sandboxing, approvals, and hooks still govern command execution. #101607 Thanks @vincentkoc. - Shortened text across CLI output, diagnostics, plugin messages, previews, errors, task summaries, and Zalo sends now preserves complete emoji and other supplementary characters. #101654 Thanks @lsr911, @maweibin, @wm0018.
- Long names, labels, summaries, previews, titles, and diagnostics across OpenClaw now truncate without splitting emoji or other supplementary Unicode characters. #101685 Thanks @lsr911, @ly85206559, @maweibin, @wings1029.
- Bounded text in Parallel searches, compaction, telemetry, presence, Workboard, badges, and Control UI metadata now keeps or omits whole Unicode characters instead of leaving malformed fragments. #101711
- Long streamed replies now split only between complete Unicode characters, preserving emoji in plain text and fenced Markdown even at tight message limits. #104441 Thanks @mushuiyu886.
- Embedded agent runs that omit a session key now retain the intended fallback session context more reliably. 31a65e0 Thanks @vincentkoc.
- Long status messages and command output now stay readable when shortened, without splitting emoji or non-English characters into corrupted text. 2e7ffca Thanks @vincentkoc.
- Using
/stopduring a late-aborting prompt no longer leaves a stale session lock that blocks the next turn in the same conversation. f8016c4 - A malformed custom tool in realtime Talk no longer removes the built-in consult tool or other valid custom tools from the session. 170150a Thanks @vincentkoc.
- Busy or slower hosts now give Codex native permission checks and pre-tool hooks more time to finish, reducing dropped policy decisions. 123ec16 Thanks @vincentkoc.
- A yielded Codex native subagent's completion now reaches its parent run before the shared app-server connection is cleaned up. 2f89de8 Thanks @vincentkoc.
- Long agent runs can now resume from a valid conversation boundary after compaction recovery instead of wedging or incorrectly demoting the selected model. 486033b Thanks @mettlyz11, @neltomw, @obviyus.
- Embedded agent jobs with an explicitly longer timeout now keep their lane until that requested deadline instead of being recovered at the default limit. 1437512 Thanks @vincentkoc.
- A successfully delivered heartbeat notification no longer leaves stale recovery state that can block later heartbeat alerts or check-ins. #83187 Thanks @agocs.
- A Codex reply delivered through
sourceReplyDeliveryMode: "message_tool_only"now completes its turn promptly instead of later ending as an incomplete reply. #95942 Thanks @omarshahine. - Local-model conversations now retain reusable prompt work when switching between interactive chats and background jobs, avoiding repeated multi-minute warm-up delays. #98267 Related #98261. Thanks @headbouyjb.
- Mobile, WebChat, consult, and other
chat.sendclients can apply a one-time thinking level without losing the assistant reply or having the message mistaken for a text command. #98855 Thanks @jesse-merhi. - Sandboxed auto-replies now wait for remote media copied over SCP to finish and report transfer failures without crashing or cleaning up too early. #100861 Thanks @cxbasdev.
- Codex app-server installations using the retired
on-failureapproval policy now upgrade to the supportedon-requestbehavior without losing saved bindings. 70153f7 Thanks @vincentkoc. - Existing Codex app-server conversations with dynamic tools can resume through the tool-fingerprint format upgrade instead of starting an avoidable replacement thread. 3051748 Thanks @vincentkoc.
- Legacy Codex bindings with large tool or MCP configurations can now migrate without overflowing plugin-state records or copying raw configuration secrets. 23228b6 Thanks @vincentkoc.
- Upgraded Codex installations can now finish legacy binding migration and archive old sidecars instead of repeatedly retaining them after an earlier partial import. 39fac06 Thanks @vincentkoc.
- Codex sessions created in beta 5 can keep their existing conversation after upgrade when the user MCP configuration is unchanged, without retaining its authorization token. 272750d Thanks @vincentkoc.
- Completed or expired exec approvals no longer add misleading follow-up warnings, making the remaining dispatch warnings more useful for spotting real delivery failures. #66685 Thanks @pfrederiksen.
- Large agent and subagent workloads now place less memory pressure on the Gateway because completed run snapshots are bounded while results still remain available to active waiters. #77973 Related #77976. Thanks @fede-kamel, @vincentkoc.
- Local Gateway approval read or write failures now return a consistent
UNAVAILABLEresponse instead of a generic handler error. #79861 Thanks @martins-oss. - Parent sessions waiting on a subagent now receive the subagent's actual hard-timeout phase and timestamps instead of a generic timeout. #89367 Thanks @pick-cat.
- Agent requests with several MCP servers now initialize those servers concurrently, shortening the wait before the model begins while isolating slow or failed servers. #94230 Thanks @mmyzwl, @vincentkoc.
- Restarting the Gateway during a deferred channel reload no longer starts the same channel twice, avoiding webhook port conflicts and repeated restart failures. #94964 Related #79487. Thanks @lzyyzznl, @tseller.
- External tools can now receive session-scoped Gateway access without process-wide credentials or permission to impersonate another session, forming the secure base for
openclaw attach. #96351 Thanks @anagnorisis2peripeteia, @obviyus. - Malformed cyclic attachments can no longer crash subagent delivery-evidence collection, so the reply handoff completes and still returns reachable media URLs. #97041 Thanks @pick-cat.
- A parent session waiting on several subagents now resumes and returns their combined results when the last outstanding work finishes, without requiring the user to send another message. #97090 Thanks @galiniliev.
- Manually spawned ACP child runs now appear once in the task ledger instead of creating duplicate requester-visible rows. #97131 Thanks @moeedahmed.
- A response interrupted mid-tool-call no longer runs or saves that incomplete action, preventing accidental child sessions and other unintended side effects. #97140 Thanks @galiniliev.
- Operators can inspect the effective tools for global sessions assigned to any configured agent, not only the default one. #97265 Thanks @pick-cat.
- Useful JSON, resource data, and CLI tool results now remain visible in transcripts instead of disappearing behind an attachment placeholder. #97268
- Codex usage-limit previews and plan status labels now truncate emoji and uncommon Unicode cleanly at their display boundaries. #97299 Thanks @zenglingbiao.
- Cancelling an ACP task from the CLI now reaches the live Gateway-owned run, reports real failures, and avoids duplicate active task rows. #97352 Thanks @aliahnaf2013-max.
- An empty non-image tool result no longer becomes
(see attached image)in OpenAI-compatible agent context, avoiding misleading follow-up behavior. #97423 Thanks @scribe-dandelion-cult. - APNs relay pushes now reject oversized response bodies as
RelayResponseTooLargeinstead of exhausting Gateway memory or reporting false delivery. #97550 Thanks @alix-007. /subagents listnow shortens long names and task descriptions containing emoji or uncommon CJK characters without displaying broken glyphs. #97557 Thanks @zenglingbiao.- Provider-owned CLI conversations now keep the same session and transcript across the daily default reset boundary unless an explicit reset policy or
/resetapplies. #97931 Thanks @yetval. - New Codex-backed threads now preserve configured plugin apps, can activate remote curated plugins, and run Guardian on the first eligible native OpenAI turn. #98042 Thanks @kevinslin.
- A damaged SQLite delivery-queue entry no longer blocks recovery of every other valid queued session or outbound delivery after restart. #98354 Thanks @pick-cat.
- A stuck Claude CLI startup now fails only the affected turn instead of exiting the Gateway, and heartbeat activity no longer causes the next user turn to lose its CLI conversation history. #98933 Related #98894, #98895. Thanks @obviyus.
- Claude CLI agent runs now fail clearly when messaging tools are unavailable, recover when Claude exits without a result, retain more long-session continuity, and clean up prompt images and failed preparation files. #99159 Related #98946. Thanks @obviyus.
- Gateway startup lock failures now clean up partial files and open handles, allowing a later startup to acquire the lock normally. #99291 Related #98958. Thanks @chenyangjun-xy, @zhanglei99586.
- Gateway status now reports unavailable SSH cleanly and promptly instead of crashing or waiting indefinitely when tunnel startup fails. #99800 Thanks @cxbasdev, @vincentkoc.
- Stopping a subagent now clears its running task reliably and prevents late completion races from reviving or overwriting the canceled state. #99806 Thanks @masatohoshino, @timofa.
- Agent runs, Doctor, and Gateway tool views now describe access using the same policy that actually governs the run, reducing confusing permission mismatches. #99817
- Heartbeat and cron work on macOS and Linux is less likely to fail with
Unknown system error -11when reconnects overlap session or workspace updates. #100389 Thanks @ogarciarevett. - Gateway event-delivery failures now produce actionable warnings instead of unexplained process-level promise rejections, while unrelated subscriptions keep running. #100401 Thanks @cxbasdev.
- An ACP Gateway event-handler failure now produces a concise diagnostic instead of terminating the ACP process or corrupting protocol output. #100558 Thanks @ajwan8998.
- Gateway startup no longer performs unsolicited provider-auth discovery across every configured agent, helping channels and local commands remain responsive while authentication loads on demand. #100667 Thanks @vincentkoc.
- Trusted Gateway clients can now browse workspace directories and preview supported files, enabling the iOS and Android apps to inspect and share agent output without SSH. #100738
- Unexpected SSH tunnel diagnostic-stream closure no longer crashes the Gateway during tunnel checks or shutdown. #100855 Thanks @cxbasdev, @vincentkoc.
- Bounded write-scope clients can now rename, pin, archive, categorize, and mark sessions unread without admin access, while user labels and stable list ordering survive refreshes. #100964
- A runaway
tool_search_codesubprocess can no longer grow Gateway memory without limit through stderr, while failure reports retain the latest useful diagnostic detail. #101007 Thanks @hugenshen, @vincentkoc. - Built-in grep stream failures now become ordinary tool errors instead of crashing the agent runtime, hanging the search, or leaving incomplete results unexplained. #101014 Thanks @cxbasdev.
- SSH-backed sandbox commands and uploads now stop cleanly, clean up child processes, and preserve the useful error when an input or output stream fails. #101031 Thanks @cxbasdev.
- A disconnected or failing session-history stream no longer crashes the Gateway and interrupts service for everyone else. #101571 Thanks @vincentkoc, @zengwen-dt.
- Gateway startup can now be retried immediately after a configuration-change rejection instead of being blocked for up to five minutes by a stale migration lease. #103157
- Discord now presents commentary, reasoning, and tool activity in a clearer sequence across queued turns, while loopback MCP clients can attach to one Gateway session with an expiring, revocable token. 35af831 Thanks @dwc1997, @lsr911, @ooiuuii, @romneyda, @solodmd, @vincentkoc, @wendy-chsy, @yeager, @zenglingbiao.
- After a Gateway restart, a redirected subagent now continues the user's newest instruction instead of returning to stale work. 7b5d86e Thanks @amittell.
- Embedded terminals can now open, resize, stream output, and close consistently across the Gateway, Control UI, and native apps. 6601576
- Gateway startup channel warnings now use the same plugin manifests as the running startup process, reducing inconsistent warnings and repeated discovery. 10ca94e Thanks @vincentkoc.
- A wedged provider call now releases its embedded agent lane on a bounded watchdog instead of indefinitely blocking queued work when run timeouts are disabled. ec28935 Thanks @arismontclair, @obviyus, @patelmm79.
- Gateway conversations with an orphaned active task can now recover through diagnostics instead of leaving later turns blocked until restart. b1da734 Thanks @arismontclair, @obviyus, @ralf003.
- An agent no longer stays silent after compaction when a plugin's final-answer hook hangs; OpenClaw times out the hook and still delivers the response. b2baf79 Thanks @dserious, @obviyus, @villa-feng.
- Gateway startup now skips unnecessary provider thinking-policy work when an explicit setting or model catalog already determines the banner result. b18af41
- Developers can build against and consume managed-worktree session results from the Gateway protocol package without duplicate-name failures. 8ce620f Thanks @vincentkoc.
- The same-release Codex session-continuity work now covers app-server thread start and resume, with binding fingerprints kept bounded throughout. 78edf1c Thanks @vincentkoc.
- Agents running on macOS 26 now receive the macOS product version in their runtime prompt instead of the Darwin kernel version. #95225 Thanks @sunlit-deng.
- Unusual ACP failure causes now produce stable, readable diagnostic details instead of a missing or invalid explanation. #96270 Thanks @ly-wang19.
- ACP run-to-session lookups now return the current active run instead of a stale association from an older run. #96427 Thanks @lin-hongkuan.
- Level directives such as
/verboseand/thinkno longer remove the first word of the user's message when both are sent together. #97929 Thanks @yetval. - Successful agent tools that return safe plain text now show that output instead of leaving users with an apparently empty result. #99526 Related #99523. Thanks @snowzlm.
- Malformed surrogate HTML entities in provider output no longer corrupt agent tool arguments, transcripts, or URLs, while legitimate entities and emoji still decode normally. #99564 Thanks @mikasa0818.
- Compact subagent lists now keep long labels and task text within their display budget without splitting emoji or breaking alignment. #100013 Thanks @qingminglong.
- Leaving one answer blank in a multi-question prompt no longer shifts the remaining typed answers onto the wrong questions. #100832 Thanks @machine3at.
- Parent sessions no longer repeat an earlier child-agent progress message when the child later reports completion. #101042 Thanks @mushuiyu886.
- ACP runtime controls can now truly clear saved model, thinking, working-directory, permission, timeout, mode, and backend-extra settings so later turns do not reuse stale values. #101044 Thanks @mushuiyu886.
- Very long agent conversations are less likely to loop through failed overflow recovery because compaction now reflects the prompt OpenClaw actually prepared. #101181 Thanks @jalehman.
- Shortened web, media, TTS, status, transport, and voice-call text now preserves complete Unicode characters instead of producing replacement symbols or malformed downstream content. #101355 Thanks @alix-007, @vincentkoc.
- Codex desktop notifications now shorten long assistant previews containing emoji or CJK text without malformed characters. #101534 Thanks @lsr911.
- ACP tool titles, permission prompts, warnings, and errors now keep long emoji or CJK argument previews readable when shortened. #101535 Thanks @lsr911.
- Suppressed auto-reply previews in verbose logs now preserve complete emoji and other supplementary characters instead of showing corrupted text at the length limit. #101575 Thanks @wm0018.
- Normally completed agent and subagent runs no longer appear as error-level log entries, reducing false alarms while genuine failures remain elevated. #101703 Thanks @zengwen-dt.
- Oversized agent tool results now preserve complete emoji and similar Unicode characters when shortened before being sent to the model. #102087 Thanks @chengzhichao-xydt.
- With
messages.suppressToolErrorsenabled, tool failures no longer leak into chat as progress updates while normal progress and final replies continue. #98063 Thanks @amittell, @moeedahmed. - Skill Workshop sessions now carry a clearer prompt with about 1.8KB less repeated prompt and schema overhead while retaining the same reviewable proposal flow. #100481
- Prompt caching and cache traces now fingerprint malformed incoming text consistently with the cleaned text providers receive, avoiding needless cache misses and misleading diagnostics. #101009 Thanks @qingminglong.
- Gateway connection failures now identify the last completed handshake phase, helping operators distinguish upgrade, credential, authentication, session, and ready-state stalls. #93402 Thanks @849261680, @bzelones, @vincentkoc, @youngting520.
- Operators now receive
payload.largeortruncateddiagnostics and an accurate count wheneverchat.historyomits older messages, making hidden history trimming visible without changing client responses. #96788 Thanks @zengwen-dt. - Gateway logs now reveal when OpenClaw cannot save a terminal session's final lifecycle state, making silent persistence failures diagnosable. #97839 Related #97795. Thanks @aniruddhaadak80, @lzy3538.
- Gateway MCP logs are now quieter and identify the responsible tool when schema problems occur, while distinct conflicts remain visible. #98821 Thanks @alvelda, @harjothkhara.
- Malformed Gateway MCP
tools/callarguments now return a clear invalid-parameters response before any hook or tool can process them. #99180 Thanks @vectorpeak. - MCP attach requests without a valid session key now return the intended validation error instead of crashing the Gateway with a TypeError. #99488 Thanks @zhanglei99586.
- Control UI and other Gateway clients now show the correct pairing or protocol-version guidance even when detail codes contain extra whitespace. #99555 Thanks @ly85206559.
- Gateway WebSocket failures now keep non-ASCII close reasons readable and within the byte limit instead of cutting characters into garbled text. #100047 Thanks @narahariraghava.
- Discord Code Mode progress no longer fills with repetitive Wait rows from background polling, while ordinary custom and plugin tools remain visible. #100164
- Gateway override authentication errors now tell CLI and TUI users whether to add a token or password, remove
--url, or pair the relevant environment variables. #100418 Thanks @gmays. - Interactive and queued turns that finish without a visible answer now return a clear, sanitized failure message instead of leaving the chat looking stuck. #100456 Thanks @mushuiyu886.
- Starting a new Codex session no longer emits a false history warning before its transcript exists, while genuine history failures remain visible. #100484 Thanks @litang9, @vincentkoc.
- Gateway usage reports now label start and end dates in the requested timezone, including correct calendar-day handling across local daylight-saving transitions. #100567 Thanks @nianjiuzst.
- Session usage details now recover malformed transcript dates from available message timestamps and return finite, consistently ordered values instead of nulls. #100687 Thanks @sheyanmin.
- Standalone ACP clients now close the shared SQLite state database during shutdown so hot reloads and immediate restarts can reopen it without stale locks or callbacks. #100691 Thanks @lzy3538.
- First-run macOS setup now recognizes a successfully saved Codex login and is less likely to finish with a stale Gateway or bundled-skills warning. #101218
- Voice-call webhook setup through ngrok or Tailscale now fails cleanly on tunnel stream errors instead of crashing the Gateway, and shutdown avoids waiting on an already-ended tunnel. #101394 Thanks @cxbasdev.
Accounts, devices, and private data
Credentials, permissions, pairing, and file safeguards
Trust-sensitive actions stop earlier and explain more of what requires attention. The persistent activity audit can be filtered and exported after restarts, ClawHub installations distinguish blocked releases from releases that need deliberate acknowledgement, and guarded networking supports approved proxy-only paths without weakening destination checks.
Credential resolution and redaction now cover more model and plugin paths, while sandboxing and approvals enforce clearer device, permission, and workspace boundaries. The secrets workflow also avoids exposing resolved model credentials in ordinary request and error paths.
Sources and contributors
- ClawHub now checks community plugin and skill releases before download, blocking prohibited releases and requiring explicit acknowledgement for suspicious ones while leaving existing installs in place when an update is skipped. #81364 Thanks @jesse-merhi.
- Authorized operators now have a durable audit history for agent and tool activity, with filters, stable paging, bounded JSON export, configurable recording, and automatic retention limits. #98704
- Provider, channel, media, and web requests can now reach public destinations through a managed proxy even when local DNS is unavailable or differs from the proxy's DNS. #98951 Related #98925. Thanks @momothemage, @sandl99.
- Model-provider keys stored with SecretRefs now receive additional protection against accidental exposure in logs, errors, proxy captures, SDK setup, and runtime inspection, with a compatibility switch for secret sentinels. #102009
- Operators can use targeted Doctor lint to detect credential residue in historical
config-audit.jsonlentries and preview redaction before runningopenclaw doctor --fix. #84450 Thanks @giodl73-repo. - Browser control now requires the same administrator permission through direct node invocation as through the standard browser request path, preventing write-only credentials or third-party plugins from gaining elevated access. #85916 Thanks @eleqtrizit, @laphilosophie.
- Slack rooms that require a mention no longer wake OpenClaw for ordinary messages when the bot identity is missing or untrusted, and setup warnings point operators to a Bot User OAuth Token when needed. #91584 Thanks @hiragram.
- Running a read-only local Gateway check no longer leaves stale pairing permissions that block a later agent, admin, write, or device-approval command. #96002 Thanks @vincentkoc.
- Gateway service regeneration now keeps environment-backed secrets out of Linux unit definitions and preserves resolved provider and channel credentials on macOS. #96065 Thanks @darren2030, @obviyus.
- With
strictInlineEvalenabled, versioned Python and PyPy commands plus additional PHP and R inline forms now require fresh explicit approval rather than inheriting executable trust. #96216 Thanks @eleqtrizit. - Agents using OpenClaw's cron tools are now limited to their own scheduled jobs and session targets, while operator-managed cron remains unchanged and mixed-version setups fail closed with an
openclaw gateway restartinstruction. #96883 Thanks @joshavant. - Multi-account Feishu setups can now start the default channel with an environment-backed top-level SecretRef and separate inline secrets for named accounts, without replacing the protected secret with plaintext. #96965 Thanks @zw-xysk.
openclaw doctor --fixnow preserves separate OAuth accounts for the same provider, including each account reference and saved display name. #97541 Thanks @liuhao1024, @yetval.- Only the configured owner can now change whether a group responds to mentions or every message through
/activation. #97838 Thanks @pgondhi987. - Cron wake actions started by an agent now remain within that agent's own session lanes, reducing the chance of waking another agent's conversation. #97949 Thanks @eleqtrizit.
- Starting or changing native Codex sessions now requires owner or
operator.adminaccess, while other authorized senders retain read-only inspection. #97952 Thanks @eleqtrizit. - ACP session lifecycle and runtime controls now require an owner or internal Gateway administrator instead of being available to any authorized channel user. #97953 Thanks @eleqtrizit.
- Sandboxed agents with host browser control disabled can no longer reach a signed-in host browser through a paired browser node. #97958 Thanks @eleqtrizit.
- Malformed MCP OAuth failures now return a bounded HTTP-status diagnostic instead of allowing an unbounded error response to exhaust agent memory. #98143 Thanks @pick-cat.
- Bare Fireworks API keys are now masked in logs, provider errors, command details, tool output, and Control UI diagnostics even without a nearby sensitive-field label. #98226 Related #98225. Thanks @ooiuuii.
- In shared channels, only the person who started a Claude Code command can approve or deny its tool permission requests. #98256 Thanks @eleqtrizit.
- IRC allowlists now reject host-less
nick!userentries by default and guide operators toward verified full host masks, reducing impersonation risk. #98339 Thanks @yetval. /pairnow refuses setup codes that point to non-routable0.0.0.0or::addresses and gives operators secure Gateway URL guidance instead. #98617 Thanks @crh-code.- Failed OpenAI or Codex credential refreshes now report that reauthentication is required and privately identify the affected profile instead of appearing healthy until model turns fail. #99134 Related #99120. Thanks @100yenadmin, @fuller-stack-dev.
- Gateway authentication retries now send stored device tokens only to true loopback endpoints, not remote hostnames that merely resemble
127.*addresses. #99859 Thanks @ly85206559. - A temporary output-stream read failure from an exec-based SecretRef provider no longer crashes OpenClaw during credential resolution. #100521 Thanks @cxbasdev.
- Write-scoped Gateway clients can still perform supported message actions but can no longer supply identity fields that masquerade as a trusted requester or owner. #102031 Thanks @pgondhi987.
- Approving a node that can handle sensitive browser traffic now requires administrator permission, matching the security level already required to use that capability. #104491 Thanks @yetval.
- Agent payload logs and cache traces now redact provider keys even when those credentials appear inside free-text diagnostic values. d8ee630 Thanks @joshavant.
- Authorized non-owner chat participants can no longer inspect or change owner-controlled MCP server configuration through
/mcp. ad5a26c Thanks @joshavant. - Auto-reply diagnostics now remain owner-only instead of allowing non-owner participants to run the command. 170bf72 Thanks @joshavant.
- Failed cron webhooks no longer forward raw command summaries or diagnostics that may contain setup prompts, codes, or secret-like output. 1d17263 Thanks @joshavant.
- Secret target discovery now works consistently for both scoped requests and the full compiled registry instead of failing when no allowed subset is supplied. e490171
- Under strict SSRF policy, remote-browser discovery can no longer redirect OpenClaw from the configured CDP endpoint to a different host, port, or security mode. cbc833a Thanks @vincentkoc.
/login codexnow switches the active chat to the account just authenticated without overwriting a newer manual profile choice, and gives recovery guidance if the switch fails. 02c3de9 Thanks @vincentkoc.- Profile changes made through
/loginnow use the standard session save path, preserving newer concurrent selections and existing recovery behavior. f07c478 Thanks @vincentkoc. - Codex session bindings now keep large MCP configurations and rotated Authorization credentials in bounded fingerprints without persisting readable bearer values. 491e42e Thanks @100yenadmin.
- Hooks and skills no longer activate from unsafe inherited configuration values, while ordinary configured paths and explicit defaults continue to work. #59694 Thanks @yonganzhang.
- After an agent is removed, its leftover sessions can no longer start new model runs through the Gateway. #97260 Thanks @obviyus, @pick-cat.
- Unsafe, malformed, or unexpectedly large fd and ripgrep helper archives now fail early and clean up after themselves instead of putting agent setup at risk. #98988 Thanks @leonidaslux, @vincentkoc.
- Oversized or malformed Microsoft Teams personal-chat attachment metadata now fails safely with a warning instead of consuming unbounded Gateway memory. #99125 Thanks @ly85206559.
- Config show, set, and unset now operate only on values truly stored in the user's configuration, preventing inherited object state from masquerading as saved settings. #99846 Thanks @vincentkoc, @zenglingbiao.
- Android Canvas content can no longer navigate to device-local web services, while normal remote and Gateway-hosted pages continue to work. #99874 Thanks @ly85206559.
- Oversized or never-ending responses from supported external providers now stop at a fixed limit with a labeled error instead of consuming memory until the full body arrives. 0a14444 Thanks @joshavant.
- Terminal requests with an unknown agent ID now fail clearly instead of falling back to global defaults and potentially opening a host shell outside the intended agent boundary. 3601dca
- The Windows installer now accepts patched SQLite runtimes, rejects unsafe or unreadable ones, and reports the detected version when another Node.js upgrade is required. 28db140 Thanks @vincentkoc.
- QQBot now avoids accidental reminders, limits exposure of private media details, and requires explicit confirmation before destructive channel or announcement actions. #98032 Thanks @patrick-erichsen.
- Operators using workspace repairs can now run
doctor --fixto disable policy-denied Gateway HTTP endpoints without removing nested URL-fetch settings. #99731 Thanks @giodl73-repo. - Web fetch and provider integrations now enforce response-size caps without allocating an entire nonstandard response in memory. #99884 Thanks @zenglingbiao.
- Trusted custom provider hosts are now protected from DNS rebinding into local services; intentional loopback aliases must use an explicit local origin or enable
allowPrivateNetwork. #100835 Thanks @machine3at. - Browser-control requests now reject oversized successful JSON responses with a
BrowserServiceErrorbefore they can consume excessive memory, while supported large browser results still work. #100889 Thanks @mushuiyu886. - The
/pairmobile setup flow now accepts local IPv6 ULA and link-local Gateway addresses without requiring TLS or a different advertised host, while public cleartext URLs remain blocked. #101008 Thanks @zhangguiping-xydt. - Running
/prosenow shows operators the transitive remote imports and asks for consent before OpenProse fetches those code dependencies. 259877d Thanks @joshavant. - Codex plugin users can allow read-only app actions while requiring a fresh approval for every write or destructive action. #97123 Thanks @kevinslin.
- Codex plugin apps now avoid approval prompts for read-only actions, preserve per-app write policies across recovery, and refresh their app inventory after upgrades. #97327 Thanks @kevinslin.
- Device owners can approve the request ID most recently shown by
openclaw devices listafter a reconnect, without weakening protection against newly expanded scopes. #98145 Thanks @romneyda. - Windows exact-path execution approvals now launch the approved executable rather than a same-named program from the working directory. #98260 Thanks @eleqtrizit.
openclaw security auditnow warns that per-agent skill allowlists do not prevent shell-capable agents from reaching globally configured MCP servers. #98352 Thanks @momothemage.- The Codex plugin now names per-action destructive approval mode
ask, making it clear that each write or destructive action remains available but requires confirmation. #98501 Related #98499. Thanks @kevinslin. - Managed deployments can now require entries such as
system.runingateway.nodes.denyCommands, and Policy doctor warns when configuration drift leaves a privileged node command available. #99121 Thanks @giodl73-repo. - Managed host tools no longer inherit the active Conda environment from the shell that launched OpenClaw, avoiding unintended Python and package-manager behavior. #99425 Related #99424. Thanks @krissding, @ooiuuii.
- Long Discord approval previews now preserve complete emoji and flags when shortened, avoiding broken replacement characters. #99539 Thanks @zhangguiping-xydt.
- Exec approval prompts now display and transmit long command text containing emoji or malformed Unicode without broken characters or encoding failures. #99566 Thanks @mikasa0818.
policy check --jsonnow tells administrators whether each finding is automatically repairable, needs review or manual work, is validation-only, or is unsupported. #99686 Thanks @giodl73-repo.- Operators who explicitly enable Policy workspace repairs can now automatically narrow several unsafe settings, while OpenClaw remains read-only without that opt-in. #99690 Thanks @giodl73-repo, @omarshahine.
- Policy workspace repairs can now add required tools to the affected deny list while preserving existing entries and avoiding unintended root-policy widening. #99700 Thanks @giodl73-repo.
- Policy workspace repairs can now move reported open channel groups to allowlist mode and require mentions without changing inherited defaults. #99720 Thanks @giodl73-repo, @omarshahine.
doctor --fixnow shows the exactgateway.bind=loopbackorgateway.nodes.denyCommandschange needed for sensitive findings without applying it automatically. #99776 Thanks @giodl73-repo.- The Control UI terminal is now explicit opt-in, opens tabs under the selected agent's workspace and policy, and closes affected shells when accepted access restrictions tighten. #100081 Thanks @rayncc.
- Repeated pairing repair attempts now produce one usable macOS approval prompt per device instead of stacking stale alerts that cannot complete approval. #100976
- Windows companion-node exec policies can now be viewed and updated through node-aware approvals commands and displayed correctly in Control UI. #101669 Thanks @vincentkoc.
- Non-owner Gateway chat users are no longer offered the protected
cron,gateway, ornodescontrol tools, even when those tools are otherwise allowlisted. #102030 Thanks @pgondhi987. - Using
jqthrough exec now requires an explicit trusted allowlist entry or approval instead of being treated as a harmless stdin-only safe binary. #102032 Thanks @pgondhi987. - Always-allow approvals for
npm exec,npx,pnpm, andyarnwrappers now apply to the actual command rather than unintentionally trusting different future payloads. #102035 Thanks @pgondhi987. - OpenShell workspace file operations now stay inside the validated local sandbox mirror, with unsafe symlink, hard-link, cross-root, and changing-directory cases failing cleanly. c6f5725 Thanks @joshavant.
- Swift native clients now support device-scoped skill approvals, with the reviewer-device field encoded in their generated Gateway models. 1403c64
- Gateway sign-in tracking now keeps bounded memory use during floods of failed attempts from many addresses while preserving existing lockouts. #96224 Thanks @eleqtrizit.
- Copied provider keys and tokens now have hidden terminal control characters removed before request headers are prepared, while intentional spaces remain intact. #96444 Thanks @lin-hongkuan.
- Masked malformed credentials now stay on one safe line in setup and authentication diagnostics even when the original input contains newlines or other control bytes. #96445 Thanks @lin-hongkuan.
- Security audits no longer mistake bundled placeholder keys for LM Studio, Ollama, and other keyless local providers as exposed plaintext credentials. #97622 Thanks @xydigit-sj.
- Trajectory exports from chat now require owner authority, preventing other command-authorized channel users from retrieving sensitive session artifacts. #97840 Thanks @pgondhi987.
- Gateway-wide Active Memory can now be changed only by owners or administrators, while other authorized users retain session-level controls. #97841 Thanks @pgondhi987.
- Only owners and administrative Gateway clients can now turn Memory Core dreaming on or off through
/dreaming, while status and help remain available to others. #97869 Thanks @eleqtrizit. - Non-admin Telegram and Discord users can no longer change the Gateway's Talk voice, though they can still view the current and available voices. #97874 Thanks @eleqtrizit.
- Installing or reconfiguring Codex Computer Use resources now requires owner or administrator access, while other authorized senders can still inspect status. #97955 Thanks @eleqtrizit.
- Renaming iMessage groups, changing icons or membership, and leaving groups now require verified owner or administrator authority. #97961 Thanks @eleqtrizit.
- Skills created by agents now remain pending for Skill Workshop review and approval instead of becoming active immediately without the expected safeguards. #98346 Related #96054. Thanks @momothemage, @xianshishan.
- Discord read allowlists now block guild metadata, channel details, and thread listings before any provider request when those resources are outside the configured scope. #98966 Thanks @pgondhi987.
- Telegram timeout logs now hide bot tokens embedded in Bot API paths, including custom and proxy roots, while retaining useful endpoint context. #99428 Related #96982. Thanks @liuhaiyang14, @xialonglee.
- Control UI Activity previews now conceal API keys stored under dotted configuration names or returned in structured tool output. #99460 Related #99459. Thanks @ooiuuii.
- Custom ACP error redactors now keep OpenClaw's built-in secret cleanup, preventing known tokens, credentials, and private-key material from leaking into formatted errors. #100191 Thanks @lin-hongkuan.
- Android SMS commands now clearly distinguish phone permission from the Gateway's separate opt-in, allowing read-only
sms.searchwithout also enablingsms.send. #100993 Thanks @narcissus0702. - Browser automation now keeps Chrome control traffic tied to the configured or explicitly allowed CDP host, reducing the risk that a discovered debugger address redirects credentials or control elsewhere. #101171
- Authenticated owners can use their already-granted shell, file, process, Skill Workshop, and plugin tools in WebChat without extending those permissions to guests or external senders. #101271 Thanks @fuller-stack-dev.
- When another OpenClaw process is refreshing OpenAI OAuth credentials, operators now see one useful contention error without duplicated wording or exposed local file paths. #101573 Thanks @vincentkoc.
- On macOS, an explicit
OPENCLAW_STATE_DIRnow stays isolated from the machine's existing App Group pairing identity and device tokens. #101779 - Telegram bot tokens now remain masked even when they cross internal boundaries inside very large logs or tool-error messages. #103861 Thanks @vincentkoc.
- Hidden control characters can no longer break terminal hyperlink boundaries or inject control behavior through documentation link text. #96440 Thanks @lin-hongkuan.
- MCP include and exclude filters with many wildcard segments now reject nonmatches quickly instead of stalling tool discovery for minutes. #100330 Thanks @lsr911.
- Signal local-file attachments that are oversized or use suspicious paths now fail quickly with a clear error before consuming excessive Gateway memory. #101391 Thanks @cxbasdev.
- Multi-user bridges using
openclaw agent --agent ... --channel ... --to ...now keep recipients in separate sessions when per-recipient isolation is configured. #101507 Thanks @pingfanfan, @vincentkoc. - Anthropic and Gemini PDF analysis now blocks unsafe private-network redirects and oversized responses by default while still supporting configured local endpoints. #97872 Thanks @eleqtrizit.
- Anthropic requests through Cloudflare AI Gateway now receive OpenClaw's standard private-address blocking, timeouts, retry guidance, and managed response safeguards. #98003 Thanks @wangmiao0668000666.
- Config recovery now warns when the file was repaired but its final permissions could not be hardened, preserving the recovery while exposing the security issue. #95348 Thanks @hugenshen.
openclaw security auditnow reports Browser exposure only when plugin policy actually allows the Browser plugin to run. #97732 Thanks @amtellezfernandez.- Read-only voice-call status now omits phone numbers, transcripts, routing details, processed event IDs, and raw metadata. #97870 Thanks @eleqtrizit.
- Status and diagnostic tools can now identify stale exec approval follow-ups intentionally suppressed after
/newor/resetinstead of treating them as unexplained delivery failures. #98293 Thanks @bsniznd. - Codex
/btwside conversations now preserve an ask-mode plugin app's requirement to obtain approval before destructive actions. #98812 - Android release builds no longer expose detailed
camera.clipsettings, device data, temporary paths, and recording events in production logs. #99484 Thanks @nianjiuzst. - Long Codex app-server approval details and command previews now preserve emoji and extended Unicode characters instead of showing corrupted text. #100177 Thanks @xialonglee.
- Android notification forwarding now leaves WhatsApp, Telegram, Discord, and Signal messages with their dedicated channel sessions, preventing duplicate or wrong-conversation replies while other selected apps continue to follow forwarding rules. #101170
- Installing or updating ClawHub skills, plugins, and packages on Linux no longer risks changing shared
/tmppermissions and disrupting unrelated services. #101246 Thanks @ch3ch2cho2021, @yangxiansheng. - Strict exec approval now keeps joined or clustered interpreter inline-code commands such as
python3 -xcprintas one-time approvals rather than reusable allowlist entries. #101353 Thanks @pgondhi987. - Long exec auto-review explanations containing emoji or supplementary CJK characters now shorten cleanly instead of showing a broken replacement symbol. #101513 Thanks @wm0018.
- Plugin approval titles and descriptions now remain readable when emoji or supplementary CJK characters fall at the Gateway's text limit. #101580 Thanks @wm0018.
Official app details
Shared app changes
Across first-party client surfaces, conversation lists, command palettes, notifications, media, connection state, and file or diff views behave more consistently. The TUI stays open with useful errors, Diffs controls remain scoped to the comparison on screen, and shared keyboard, path, status, Talk, and voice behavior is less likely to drift between clients.
The official apps share broader native localization, voice-message workflows, multiple Gateway profiles, cached conversations, and clearer connection state when people switch between installations.
More iOS, iPadOS, and Apple Watch changes
iOS adds refreshed navigation and chat, voice notes, workspace files, safer setup recovery, multiple Gateway profiles, and Apple Watch dictation and quick replies.
More Android changes
Android improves first-run setup, navigation, chat and session tools, voice, permissions, notifications, scheduled work, localization, multiple Gateway profiles, and connection recovery.
More macOS changes
macOS improves first-run local-agent setup, native chat and session controls, remote-mode tunnels, app launching, background efficiency, and device identity across upgrades and reconnects.
Terminal UI and other clients
Terminal conversations remain open with useful errors, session lists preserve readable previews, and Diffs actions stay attached to the comparison currently on screen.
Sources and contributors
- Android users in supported languages now see key Gateway setup, connection, trust, shell, and recovery prompts in their device language. #97111 Thanks @vincentkoc.
- The iOS Control, Chat, Talk, Agent, Settings, Gateway, and Overview screens now use clearer navigation, status cues, controls, and a compact expanding chat composer. #98452 Thanks @joelnishanth.
- The iOS Control, Agents, and Settings screens are now easier to scan, with fewer duplicate destinations, more compact controls, standard navigation, and a direct Gateway shortcut from detail views. #98811 Related #98803.
- Native iOS Chat now gives the conversation more room, uses a compact composer that grows with longer drafts, and keeps attachment, Talk, and send controls comfortably tappable. #98953 Related #98929.
- Chat, Talk, Settings, navigation, and onboarding on iPhone and iPad now use more consistent native controls, appearance, and back behavior. #99231 Related #99195. Thanks @marvkr.
- iOS users can record and send a voice note of up to three minutes from the chat composer, optionally add text, and see the recording's duration in chat. #100946
- Android users can record and send a voice note of up to three minutes from the chat composer without entering live Talk mode. #101193
- Third-party Android builds can allow Gateway-requested location checks while the app is in the background by selecting Location > Always and granting Android's persistent location permission. #100967 Thanks @ioridev.
- Android can now keep multiple Gateways paired and switch among them without repeating setup, while each Gateway retains its own credentials, chat state, queued messages, and removable local data. #100947
- iOS users can pair multiple Gateways once and switch among them while keeping credentials, trust, chats, preferences, device access, and push registration attached to the correct Gateway. #100948
- Android Chat now includes a New chat action and a
/command browser that filters the current agent's advertised commands without dropping command arguments. #98796 Thanks @iwhatsskill, @solvely-colin. - Android Chat now lets users choose and verify the configured agent for new messages, with Chat, Talk mode, and the home canvas staying aligned to that selection. #80422 Thanks @bcperry.
- Android chats now render links, lists, quotes, emphasis, code, and plain text consistently through the shared Markdown renderer. #88899 Related #88014. Thanks @iman-sharif, @pluviobyte.
- Android notification automations now queue accepted events during Gateway connection or reconnection and deliver them in order once the link is ready. #92602 Related #79552. Thanks @ashishpatel26, @hectorrp13.
- Android users can open a scheduled job to inspect its timing, payload, delivery state, recent results, errors, and exact ID. #95107 Thanks @tosko4.
- Android one-shot camera captures now turn the camera and privacy indicator off promptly after success, failure, or cancellation. #98040 Thanks @nianjiuzst.
- Android background push-to-talk requests now return
NODE_BACKGROUND_UNAVAILABLEinstead of attempting a microphone start that the operating system may reject. #98055 Thanks @nianjiuzst. - Android's selected-photos permission now counts as usable access, allowing
photos.latestwhile clearly showing how to manage the limited selection. #98059 Thanks @nianjiuzst. - Android Gateway actions now stop promptly when their connection closes, while requests started after reconnect are not cancelled by old cleanup. #98067 Thanks @nianjiuzst.
- Android connection recovery now identifies expired setup codes, stale credentials, and missing or invalid authentication with the appropriate next step. #98094 Thanks @qingminglong.
- Android now reports Realtime Talk and Dictation readiness separately, opens setup only for the mode that needs it, and keeps useful provider failure details visible. #98269 Related #98268. Thanks @solvely-colin.
- Android can reconnect to the same Gateway without erasing saved access when credential fields are blank, while endpoint and setup-code changes avoid carrying stale credentials silently. #98277 Thanks @solvely-colin.
- Android now gives clearer TLS verification guidance for reachable remote and Tailnet Gateways and allows slow valid handshakes more time to show the trust prompt. #98366 Related #98365. Thanks @joshavant.
- Android can now pair with local Gateways advertised by standard cleartext
.localnames while continuing to reject unsafe remote or ambiguous cleartext addresses. #98439 Thanks @joshavant. - Scanning a valid Gateway setup QR code on Android now starts pairing immediately and advances to recovery or approval instead of leaving users on setup. #98483 Thanks @joshavant.
- Android Gateway setup now replaces a generic authentication warning with specific recovery labels for expired setup codes, missing or invalid credentials, stale saved authentication, and required device identity. #98698 Related #98046. Thanks @ccaprani, @masatohoshino.
- Android Back navigation now returns users from Gateway or Talk settings, Sessions, and Providers to the Voice, Chat, or command-palette tab where they started. #98914 Thanks @lokimorty.
- Android onboarding now marks Contacts and Calendar ready only after both read and write access are available, including when those permissions arrive in separate prompts. #99158 Thanks @nianjiuzst.
- Android now reports Contacts and Calendar access as granted only when both reading and adding entries are authorized, preventing misleading setup results. #99204 Thanks @nianjiuzst.
- Android Talk and Dictation now use a connected Bluetooth headset microphone for hands-free capture and fall back cleanly when it disconnects. #99259 Related #96241. Thanks @gwtaylor.
- Android users can now read bundled third-party and open-source license notices directly from Settings > Licenses. #99299 Thanks @joshavant.
- Android gateway setup now gives specific recovery actions for expired codes, stale credentials, pending node approval, and terminal authentication failures. #99414 Related #98045, #98046. Thanks @ccaprani.
- The Android companion no longer forwards OpenClaw's own notifications back to the Gateway, even when older allowlists still include the app package. #99568 Thanks @ly85206559.
- Android manual Gateway setup now defaults blank ports to 18789 for ordinary TLS and cleartext hosts while retaining port 443 for Tailscale MagicDNS. #99865 Thanks @ly85206559.
- Android push-to-talk now takes exclusive microphone control during Talk Mode and resumes the correct realtime listener afterward, preventing duplicate capture. #99986 Thanks @nianjiuzst.
- Android chat now adds light- and dark-mode syntax highlighting to supported fenced code, making code-heavy replies easier to scan without delaying partial or oversized messages. #100217
- Saved Android Gateway sessions now reconnect promptly when validated internet access returns, without unnecessary retries during captive or partial network changes. #100347 Thanks @ly85206559.
- Android Gateway settings now give connection details, setup fields, and helper text more stable space on phone-sized screens, reducing clipping and crowding. #100363 Thanks @iwhatsskill.
- Android now presents evenly spaced bottom tabs and avoids the chat-cache startup crash that could block entry to the post-onboarding shell. #100382 Thanks @iwhatsskill.
- Android chat now restores an active response with buffered text after reconnecting or reopening, and recovers missed event gaps without duplicating transcript rows. #100384
- Android now isolates cached conversations and queued commands when users re-pair, sign out, or replace Gateway credentials, preventing a new identity from inheriting the previous one's data. #100454
- Android chat now keeps sent messages and active replies stable through reconnects, reconciling delayed history without duplicate turns or stale composer activity. #100551
- Android push-to-talk now cleans up backgrounded, cancelled, or retried captures without reopening the microphone or stopping a newer voice session, and overlapping requests return busy. #100552 Thanks @xialonglee.
- Android users can now long-press an assistant reply and choose Listen, with visible playback status, tap-to-stop, and on-device speech fallback. #100772
- Android Talk Mode now keeps push-to-talk busy until the active turn is safely handed off, preventing overlapping microphones, stale playback, or the wrong relay resuming. #100786
- Android chats now keep internal reasoning, tool results, and raw operational details out of both live conversations and reopened offline caches. #100826 Thanks @iman-sharif.
- Android users can long-press a completed chat message to copy all text, select an excerpt, share it, or quote it in a reply without losing their current draft. #100879 Thanks @bdhwan.
- Android chat users can preview a link's destination and summary before opening it, without messages triggering background lookups and with a clear unavailable state when inspection fails. #100898
- Android onboarding now finishes after permission-triggered node approval instead of trapping users in a loop between the Permissions and approval screens. #100959
- Android's model picker now stays aligned with the active chat and agent, and a failed model change no longer sends the next message with the previous model. #100985
- Android hides thinking controls for models that do not support configurable reasoning, prevents unsupported settings from breaking live or queued sends, and restores the user's preference on compatible models. #101002
- Android users can search sessions by name, label, or key beyond the currently loaded Recent or Archived window, with cached active-session matches still available during a temporary Gateway outage. #101102
- Android users with a physical keyboard can press Enter to send a chat message while modified Enter combinations remain available for multiline text. #101321 Thanks @3ninyt3nin-creator.
- Android users can now see safe page thumbnails in expanded link previews, while bad or blocked images quietly leave the text preview intact. #101396
- Android users can now archive a chat session and delete it from the Archived view even with the app's bounded operator permissions. #101522
- Indonesian Android strings ship under Android's recognized locale; the same prior-release work also prepared the 2026.6.11 Play version and store text. 3412318 Thanks @joshavant.
- Traditional Chinese users now see localized wording for common native app actions, permissions, connection messages, and mobile states. f0d2066
- Android now explains in the selected language how to keep a saved token or replace an existing Gateway setup. Sources: 32f3eb3, 6336762, eeb0682, ed72b86, e376f28, a6631fe, 283bd82, 6d5a1db, d3087fc, 8bab3f7, dfb7bc8, 7780e30, b109b88, c1b7bf2, dedb17c, 6f84c10, a8358e8, 2501ca3, 1b40eb9, d47308f, 3a2baef.
- Android license notices, acknowledgements, empty states, and open-license actions now use the selected language across the translations in this release. Sources: 4b8b60f, 3b16c41, c4966e8, 116e9db, 1617233, a598c97, 3b9e0c8, eebbf6c, 4c08ea4, 21be45c, b415072, 9eec24d, de23987, 898564e, 7af800b, a47ec8d, fac9e58, 61e4ef0, 399f9d6, 9069f69, 2e049f5.
- Android Talk, dictation, speech-provider setup, readiness, and failure guidance now use the selected language across the translations in this release. Sources: c785196, 9edb906, da67520, 88f13ca, e878efe, 662d127, 5002a0e, fe57718, ebcf8dc, 4e7ca8e, 9863ceb, 768da09, ff5d986, 005ebd1, 2824796, 4eaec93, f99fdc9, 555f601, d2af689, 81e92de, 8ed6c78.
- Android pairing and connection failures now provide localized next steps for expired codes, credentials, approvals, and retries. Sources: 48eae1b, f095eb9, 714c2b0, d2b5bb7, d2551bd, 6b91507, f1c4476, 5ef6fb4, e2e0312, 7fb70b2, d702f5c, 24e6b9f, 7cb41cc, a6040c3, 5e61da3, 18360ac, 17a1e3b, adafb56, 5b5fadb, 9b30570, d331a36.
- Android Gateway discovery, QR and manual setup, connection checks, approvals, and permission guidance now use the selected language across the translations in this release. Sources: 28062c8, 3d43858, ad74b32, 1b07620, 4fa4c9e, 1dd5230, 9db7ec5, e6f8788, e5cf67e, b52d988, cd3b4ee, c3bcb9f, 8af3aa0, c34e79e, c9c8f6c, 255e251, 0e98ba4, 0cc9927, 97955d9, ba449f2, 0e22e54, ae65251, d957f5a.
- Android now explains in the selected language when a scoped IPv6 address must be replaced with an unscoped address or LAN hostname. Sources: 5793f73, 066e697, bf35947, 3385817, a0a5054, 66cb9a9, 3da73a7, df659ec, 57a3975, 141b2cf, b043adf, dcc4fa8, eade8f1, 72a8098, 355fa77, 8cc1786, a3ef37b, cb9ac50, cab8147, 7cc3cb0, ca258fb.
- Android command search and New Chat labels now use the selected language across the translations in this release. Sources: b81c58b, 8929118, 1eee853, a5c9662, 9035729, 2e359d4, 91f4d0a, e785c4a, 2c5a076, 02250d9, bf23194, 603502f, a837a1a, 26df1fa, c926610, c312f9f, f4275fa, 69d4657, 3e66eb9, db5057e, 1fee4a5.
- Supported non-English Android builds now localize offline Gateway queue guidance and the Retry and Delete actions for text messages. 660d752
- Supported non-English Android builds now translate more cron inspection, delivery error, copy feedback, default-state, and agent request details. d83ee4c
- Android model organization, default-model, and pinning controls now use the selected language. Sources: 41bea62, bdc98f4.
- Android link-preview controls and status messages now appear in the selected language across refreshed locales. 9997c53
- The Android background-location explanation, settings action, and Not Now choice now appear in the selected language when Always location mode is offered. 4c38d89
- Android users with a hardware keyboard can now send from the chat composer with Enter, while an unaccepted send still preserves the draft. de8db74 Thanks @vincentkoc.
- Android users can now connect to Gateways behind Cloudflare Access or another authenticating reverse proxy by saving the required credential headers in Advanced manual-connection settings. #100765
- The Android Files card now lets users browse the active agent workspace, preview text and images, and share output directly from their phone. #100776
- Android users can switch the current chat's model from the composer, pin favorites, revisit recent choices, and return to the default without leaving the conversation; older pairings may need to be renewed. #100798
- Android's About screen now clearly identifies OpenClaw and provides direct links to the website, documentation, source repository, and Discord community. #100994
- Android chat now renders top-level display LaTeX as readable equations while invalid or still-streaming math remains visible as text. #101435
- Broader native app setup, chat, Talk, permission, connection, session, provider, and status text now uses the selected language across the language packs updated in this release. Sources: a39b07b, f8e1e0c, db27d2e, 28a8414, e8e96bf, 6ea407d, 0011a18, 8c5adbf, 019603d, d3d7282, 267898c, 55ed57a, c54dc67, fd0355d, 49726a5, 2ffeedf, #98043, beca2b1, 4078dc7, e7e98f6, 3020f78, 0c82908, 8a3935f, 3f289fd, 203a896, 6afef15. Thanks @yeager.
- Native chat controls for jumping to the latest message or reply now use the selected language across the translations in this release. Sources: e31fa36, 375def8, aabe44f, 48c3f4b, 3db6fb9, a4b51e5, a60686d, 12e17ec, 6c4ac0c, bdc6258, a775f9f, a1f6acc, ee9f61d, f188c66, 2525078, ed5ccda, a6a4792, 0924bee, 0420aef, d23c4fd, 37f0067.
- New-chat and worktree-chat entry points now appear in the selected language across supported Android and Apple app locales. 24bca38
- Supported non-English native apps now cover more Gateway setup, session, provider, health, messaging, terminal, and device text without English gaps. 52f1e05
- Refreshed native language packs now cover workspace files, sharing actions, folder states, Android SMS guidance, message delivery states, and related branding. a9b0a9a
- Native app command search now translates loading, unavailable, retry, and no-result states across the languages updated in this release. Sources: 745d2d0, 7f7bec7, 35be1c8, 7db67ab, 4bc5766, 0672720, 2a8cd44, fd648fb, 00b0b40, a67990a, 7640f67, 15f4819, 4d1d720, d1d3a27, c2737d5, bd3263d, 127ce63, 0c960cd, e6c3ad9, 84c86f7, e7aea60.
- macOS onboarding now translates local Gateway installation, checks, repairs, retries, paused setup, and resume guidance across the languages updated in this release. Sources: 7a717b7, 85d31e1, 27778a7, cffc6ad, ab0d604, 972d394, edbbdf6, 863a054, ef5650f, 5f2e51f, 5769416, a3aa917, 2f7bd01, c54a6f3, 9c3ffc5, 469e707, d066a81, 72a3b71, 63aa909, b68e2e7.
- Native prompts for starting work, checking status, using phone and voice controls, pairing, and returning to Chat now use the selected language across the translations in this release. Sources: dd050bc, db72ffd, 4997802, 2dc7bd1, 4381c29, 9eb1a05, 7838bc8, 4352eaf, 43fe5cc, 6bd1a4b, 531af42, 305715c, 8f9e163, 2abad57.
- Supported non-English native apps now translate the new Terminal destination, Gateway setup guidance, Back action, connection messages, and OpenClaw branding. e069cb2
- Localized macOS builds now translate the new GitHub link label, including its accessibility-facing text, instead of falling back to English. 8be1d36
- Native app onboarding and AI connection guidance now reflects Crestodian and the current setup flow across supported non-English locales. Sources: ad4809f, f0ecc16.
openclaw tuinow finds the custom port of an active local Gateway automatically, so users usually do not need to repeat its URL with--url. #73338 Thanks @haishmg, @vincentkoc.- Gateway-backed and local TUI sessions now display assistant text as it arrives instead of appearing quiet until the final response. #83000 Thanks @flashosophy.
- The TUI now explains when repeated invalid tool arguments abort a run, giving users a useful correction clue without exposing sensitive inputs. #91002 Thanks @taerlandsen, @wsyjh8.
- The
/usage fullfooter is shorter and easier to read on Telegram and other narrow displays, with detailed token information still available through dedicated views. #92877 Thanks @marvinthebored. - Typing indicators now remain active during long Codex model, tool, command, recovery, and queued follow-up work instead of making the reply appear idle. #95844 Thanks @jalehman.
- Shortened exec and bash summaries now keep emoji and other supplementary characters intact around the ellipsis instead of displaying a broken replacement glyph. #96963 Thanks @bartok9, @ly-wang19, @vincentkoc.
- Replies triggered through Telegram or another external channel now appear only once in the terminal UI after history refreshes, while resets, session switches, delayed events, and in-progress recovery continue normally. #96980 Thanks @xialonglee.
- Long assistant and provider errors now end cleanly when emoji or rare Unicode characters land near the display limit. #97289 Thanks @zenglingbiao.
- The TUI now directs users to the pending device or scope-upgrade approval command instead of incorrectly sending them through chat-DM pairing. #98144 Thanks @romneyda.
- Mobile camera clips and screen recordings longer than 30 seconds can now finish within the existing duration limit without the request expiring early. #99455 Thanks @nianjiuzst.
- Embedded and local TUI sessions now contain event-consumer errors instead of terminating the terminal. #100117 Thanks @cxbasdev.
- TUI users can now submit prompts while an agent is working and receive the configured followup, collect, or interrupt behavior, with Esc and
/stopcanceling only the intended work. #100123 Thanks @kevinlp, @sebtardif. - TUI
/newnow performs a real session transition with the expected lifecycle hooks and prevents a new session from racing an active turn. #100241 Thanks @caopulan. - The Diffs viewer now provides a multi-file overview and direct file navigation, while PNG and PDF exports omit controls that cannot be used. #100753
- Native app status and appearance choices now use the selected language across the translations in this release. Sources: 58d199b, c15348b, c047a3a, e191685, b1e173d, 50fecf8, 5211afe, 4c43cf5, fb394de, ba8c1fa, 7bee4f6, 77ab268, 2417d94, 9b6ef34, 9c4274f, 2671bcc, b21153b, 117e8e1, cc0d7e1, e6f3f54, dd64f66, 4c16e66, 3a8375c, 3e3b6d6, c356245, d506201.
- Native app license notices, acknowledgements, and unavailable-file explanations now use the selected language across the translations in this release. Sources: 34bf5a9, 068088c, a623ac7, 71374d3, a9b0de8, 8f495e2, 436dd39, f917e89, 2c8b97c, ace162b, e60cccf, 359ea4c, b7bc860, 49ea27e, 99cbc58, 204526a, 3821c36, 030d184, 24f639c, 499feb2, 591d099.
- Native photo-permission controls now explain limited, selected, and recent-photo access in the selected language across the translations in this release. Sources: c360f92, 4dd027e, 9cde1ca, 328fb70, 71e5fcc, b11d710, 55a2a9b, c4b40d0, 3a1b983, dea40a5, 4b1fab8, 44ca739, d36452c, a50a59e, 49b68e1, 122e4ba, 4086d35, 547a563, 538f28a, c5afa92, 32a986d.
- iOS location settings now explain Off, While Using, Always, Precise Location, restrictions, and permission mismatches in the selected language across the translations in this release. Sources: 3542585, 261d79a, ef1474d, cc1d61b, 2a1e118, 748bfee, e0b2dda, f371a2f, ee00cc7, 27f9ae0, 51a07ae, ba9d167, 576169e, 10500a6, a344252, d7d280f, cb2547f, 2191c2e, c63e9f9, 4b1e0de, 525c4c7.
- Native skill availability, Gateway setup, diagnostics, privacy, and access guidance now use the selected language across the translations in this release. Sources: fdcd5c0, 26f6735, 5220eff, bb7dbda, 952245b, edb1e74, f7bad57, 0602930, e779b8f, 0400be7, 851d0ad, 1e0dd95, 703e1ad, 1c93e50, 37c45f2, 8fe917b, da21e4b, f4f63b1, 3e4febb, a82cd35, 52323b6.
- Native Gateway connection, diagnostics, permissions, onboarding, Chat, and Talk guidance now uses the selected language across the translations in this release. Sources: 3b27bb4, e296d14, 5516775, 6ec4962, 291f2a4, 7e2d41b, 81bc96f, 574556c, 8bb44e6, ae09908, 42fc19d, 28bbb43, 6ff9185, 4be0be6, 0f1fbbe, d893a72, f5cb29b.
- Transcript export controls, chat actions, and export failure messages are now translated across 21 supported native app locales. 45f561a
- Supported non-English native apps now translate newer app information, support links, and message retry, delete, and waiting-to-send states. 82f5ac1
- Wake Words and Discovery Logs now use current, natural labels across supported non-English native app locales. de30d2f
- Supported non-English native apps now translate workspace file browsing and sharing, image preview failures, offline status, and custom Gateway header controls. 6b99fd9
- Apple native app users across 21 supported non-English locales now see translated Listen and speech-playback status controls. 0146534
- Swift clients can now decode skill curator actions and status details such as pinned state, use counts, timestamps, archived reasons, and overlaps. ad833d7
- Android and iOS now explain which side needs an update when app and Gateway protocol versions differ and avoid offering reconnect attempts that cannot succeed. #98385 Related #98384. Thanks @joshavant.
- Authorized remote clients can now request playable speech for an individual assistant message using the existing Gateway TTS configuration without accessing server-local files. #100770
- iOS and Android users can create empty session groups, rename them once across their sessions, and remove a group without deleting the conversations inside it. #101234
- OpenClaw's mascot now uses the same float, blink, antenna, and claw animations across web, iOS, and Android surfaces while respecting reduced-motion preferences. 851156a
- The iOS and Android terminal pages now receive the operator credential from the connected device session, so authenticated users do not land on a terminal that cannot connect. 451190d Thanks @vincentkoc.
- iOS and Android can now show the Gateway terminal as a focused full-screen view with stored credentials and a clear unavailable state instead of embedding the full desktop Control UI. 9c78489
- On iPad, selecting Overview, Chat, Talk, or another sidebar destination now leaves the current Settings detail and opens the requested screen. #94991 Thanks @solvely-colin.
- Translated Gateway controls on iOS and approval actions on Apple Watch no longer fall back to English in supported locales. #97112 Thanks @vincentkoc.
- Native iOS Chat now follows Larger Text and Dynamic Type settings for messages, the intro, and composer text with less clipping. #97552 Thanks @jmcte.
- iPhone users pairing with a LAN Gateway now stay authenticated after the one-time bootstrap so Chat and the node connection do not immediately disconnect. #98066 Related #98064. Thanks @ooiuuii.
- iOS Chat now keeps one final assistant reply per turn instead of briefly showing a duplicate that disappears after history refreshes. #98117 Related #98116. Thanks @joshavant, @ooiuuii.
- Paired iOS users can start native ElevenLabs Talk with a SecretRef-backed Gateway key without copying the credential into plaintext mobile configuration. #98210 Related #98209. Thanks @joshavant, @ooiuuii.
- After scanning an iOS pairing QR code, users now move to a live connection-progress screen instead of returning to Welcome while pairing continues invisibly. #98302 Related #98297. Thanks @joelnishanth.
- iOS Chat now preserves intentional line breaks in assistant responses and other multiline messages without disrupting normal Markdown rendering. #98304 Related #98028. Thanks @jabato01, @joshavant.
- The iOS app now opens to Chat for normal launches while preserving direct navigation to Control, Settings, Agent, Talk, and nested destinations. #98353 Thanks @bsniznd.
- iOS Talk's Gateway Default now uses the configured Gateway speech provider, and stopping a reply prevents delayed audio from leaking into later turns. #98376 Related #98153. Thanks @jraxworthy, @tony-ooo.
- iOS Control, Talk, and Settings are easier to scan with clearer status emphasis, safer action styling, calmer idle visuals, and improved large-text support. #98423 Related #98397.
- iOS now explains secure Gateway connection and certificate-verification failures precisely and reliably presents the fingerprint trust prompt for first-time HTTPS connections. #98429 Thanks @joshavant.
- iOS connection, warning, and information text is now easier to read in light and dark modes, and Appearance settings accurately describe the selected behavior. #98443 Related #98440.
- OpenAI Realtime Talk on iPhone now uses native WebRTC by default, recovers continuous sessions from provider disconnects, and respects speaker, Bluetooth, and AirPlay output choices. #98563 Thanks @pollybot13.
- The iOS Talk fallback banner now opens Voice & Talk settings directly instead of sending users to unrelated Gateway settings. #98602 Related #98593. Thanks @pollybot13.
- The iPhone app now presents a compact Talk control bar, a cleaner Appearance picker, and a properly aligned realtime-audio button beside the resting Chat composer. #98736
- New iPhone users now get clearer QR, setup-code, and manual Gateway choices, better nearby and connection status, and a direct handoff to Chat after connecting. #98868 Thanks @solvely-colin, @thats2easyyy.
- iOS users who open Gateway, Voice, or Notifications settings from another screen now return to the Chat, Talk, Agent, Control, or Approvals screen they came from. #98898 Thanks @lokimorty.
- The iOS app now applies OpenClaw's palette consistently across Talk, settings, Gateway, privacy, usage, and workboard views while retaining accessible contrast. #98930 Thanks @joelnishanth.
- Voice Wake on iOS can now pause while Talk, camera audio, or another feature uses the microphone and resume without crashing the app. #99137 Thanks @pollybot13.
- iOS users can correct gateway details after a failed manual setup and retry immediately with the values currently on screen. #99220 Related #99219. Thanks @abdullahtas0.
- The iOS chat experience now offers useful starting prompts, clearer pairing and setup actions, better agent placeholders, and steadier message ordering during refreshes. #99243 Thanks @jcooley8.
- iPhone users who open Chat from a Control detail can now return to that same Overview, Activity, Workboard, or Sessions screen without losing their place. #99245 Thanks @solvely-colin.
- OpenClaw now uses consistent branded typography throughout its iOS, Watch, and Live Activity interfaces while retaining Dynamic Type and accessibility support. #99246 Thanks @joelnishanth, @joshavant.
- iOS location settings now show the permission that is actually in effect, including Precise Location and mismatches between OpenClaw's selected mode and the iOS grant. #99247 Thanks @pollybot13.
- iOS users can now read OpenClaw's bundled third-party license acknowledgements from Settings > Licenses. #99290 Thanks @joshavant.
- iOS chat now lets users browse, filter, and select available commands and skills from the composer instead of memorizing exact slash commands. #99426 Thanks @solvely-colin, @viczhang6.
- iOS users can now add contacts and search affected records without crashing the app or disconnecting the node. #99475 Thanks @abdullahtas0.
- iOS Calendar, Reminders, and Contacts commands now return an immediate permission-required result instead of opening a prompt that leaves the agent request waiting. #99477 Thanks @nianjiuzst.
- iOS gateway QR pairing now stays open through trust and approval, avoids scanner crashes, and keeps credentials and pending actions with the correct gateway during switches. #99572 Thanks @pollybot13.
- On iOS 26, affected Settings switches now respond when users tap anywhere on the labeled row, with accessibility labels and values preserved. #99888 Thanks @ly85206559.
- Apple chat now presents fenced code with theme-aware highlighting and GitHub-style tables as aligned native tables on iOS and macOS. #100207
- Apple chat now restores the visible in-progress state after backgrounding or reconnecting, preventing overlapping sends and reconciling one correct final reply. #100277
- Repeated iOS Gateway setup links now update the visible settings screen with the newest connection instead of being consumed by a hidden view or replaying stale details. #100328
- iOS chat now provides tactile feedback for accepted sends and most completed or failed runs, though some abort paths may still omit or misclassify failure feedback. #100416
- iOS users can export the current conversation as a named, readable Markdown file and save or send it through the system share sheet. #100417
- Choosing While Using for location access on iOS now remains selected after approval and after the app is relaunched. #100512
- Talk and Settings rows on iOS now use consistent title sizing and typography, making adjacent options easier to scan. #100515
- The iOS About screen now presents OpenClaw branding, license information, and direct links to the website, documentation, GitHub repository, and Discord community. #100531
- Apple Watch pairing and companion status now refresh without restarting the iPhone app, while cold-launch actions wait for readiness or return a clear
WATCH_UNAVAILABLEerror. #100732 - iPhone and iPad users can now browse an agent workspace, preview generated files, logs, and configuration, and share a file without returning to the host computer. #100767
- The iOS app can now connect through Cloudflare Access, Basic authentication, and similar proxies by storing per-Gateway credential headers for the next reconnect. #100768
- iPhone users can now choose Listen on an assistant reply, follow preparation and playback status, stop at any time, and fall back to on-device speech when needed. #100771
- iOS chat now shows and switches the active model, while iOS and macOS model pickers support pinned favorites and the five most recent choices. #100774
- Display equations in iOS and macOS chats now appear as readable, accessible typeset math, with horizontal scrolling for wide formulas and raw text retained for malformed expressions. #100829
- iOS and macOS hide the thinking-level control for models that cannot use it, avoid sending stale unsupported settings, and restore the previous level when a reasoning-capable model is selected again. #100875
- Streaming replies in iOS and macOS chats now reveal text more smoothly word by word, while reduced-motion users still receive immediate text and completed messages remain unchanged. #100884
- Offline iOS messages now survive relaunch, remain tied to their original Gateway and conversation, and send once only when delivery can be confirmed, with clear uncertain-delivery status when it cannot. #100942
- iOS and macOS chat now show a context-usage ring that changes warning color near the limit, helping users anticipate compaction or truncation in long conversations. #101183
- iOS and macOS users can preview a safe link's title and description inside chat before deciding whether to open it. #101198
- Expanded link previews on iOS and macOS can now show a safe page thumbnail, with the existing text card retained when image loading fails. #101387
- Finished iOS and macOS chat replies now typeset inline LaTeX formulas while streaming text, code, currency, and invalid math remain readable as plain text. #101388
- The iOS
screen.recordcommand now finishes more reliably with a nonempty MP4 instead of crashing the app and disconnecting the node as recording stops. #101550 Thanks @tony-ooo. - The iOS app now recovers when a location permission prompt returns without a clear decision instead of waiting indefinitely. 75c8753 Thanks @vincentkoc.
- The Mac About screen now links directly to the OpenClaw website, documentation, GitHub project, and Discord community, matching the other native apps. 6e7ef63
- iOS pairing codes can now advertise both local and Tailnet Gateway routes, allowing the phone to save the first reachable address when it is away from the private LAN. #100317
- iOS chat and macOS webchat users can search, pin, rename, archive, restore, and reopen sessions from the in-chat switcher instead of scrolling a simple recent list. #101053
- macOS remote mode can now connect through explicitly selected managed SSH aliases and recover app-owned tunnels when SSH multiplexing or backgrounding is enabled. #99661
- Finder-launched macOS sessions can now use SSH aliases backed by common user-installed
ProxyCommandhelpers without losing agent state or failing Gateway readiness checks. #100214 - Multiple macOS app instances now preserve shared SSH tunnel tracking and clean up stale processes more reliably, reducing port conflicts after a crash. #100601
- The Mac app now shows the animated OpenClaw mascot in onboarding and About, while Reduce Motion keeps it still. f052a2f
- The macOS onboarding and About mascot now more closely matches openclaw.ai with theme-aware colors, glow, hover scaling, and smoother motion that keeps its antennae visible. 05c9dcc
- The macOS Dashboard now follows a restarted remote SSH tunnel to its new local port automatically and keeps authentication tokens out of logged URLs. #100488
- After a macOS crash or force quit, OpenClaw now reclaims confirmed orphaned remote-mode SSH tunnels so relaunches can reuse the preferred local Gateway port. #100489
- When Android Chat cannot reach the Gateway, users can open Gateway Settings or copy connection diagnostics directly from the blocked screen. #94566 Thanks @tosko4.
- Android manual Gateway setup now accepts IPv6 hosts such as
::1directly instead of rejecting an address that works only when entered as a bracketed WebSocket URL. #99107 Thanks @ly85206559. - Android manual setup now accepts and preserves complete
ws://,wss://, and HTTP Gateway addresses, including embedded ports, so private-LAN onboarding reaches the intended server. #99110 Related #87216. Thanks @cursoragent, @ly85206559, @ruben2000de. - Android voice features now speak only chat events explicitly identified as assistant replies, preventing user, tool, system, or role-less text from being read aloud. #99123 Thanks @ly85206559.
- Android third-party onboarding now recognizes SMS access when send and read permissions are granted in separate prompts, while genuinely missing permissions remain unauthorized. #99147 Thanks @nianjiuzst.
- Cancelled, timed-out, failed, or interrupted Android
camera.cliprequests now release the camera and remove unfinished temporary files before later camera commands run. #99153 Thanks @nianjiuzst. - Android's thread picker now prioritizes real conversations, hides internal setup and device sessions, and still makes valid older chats available through All. #99557 Thanks @ly85206559.
- Android setup now rejects gateway URLs with unsupported IPv6 interface zones and directs users to an unscoped address or LAN hostname before saving. #99570 Thanks @ly85206559.
- Android now preserves specific Gateway and A2UI error codes containing numbers, such as
A2UI_HOST_UNAVAILABLE, instead of replacing them with a generic failure. #99591 Thanks @ly85206559. - Android Talk now applies supported directive values even when generated or dictated JSON uses different capitalization for keys such as
VoiceorLanguage_Code. #99592 Thanks @ly85206559. - Android node commands now honor common boolean values such as
yes,no,1, and0for app filters and camera audio options. #99873 Thanks @ly85206559. - Android Talk Mode now delivers agent-consult answers even when realtime completion events arrive out of order, preventing sessions from remaining stuck on
Thinking.... #100049 Thanks @qingminglong. - Android's Home overview now uses more consistent card, Talk, and recent-session spacing for a calmer, easier-to-tap first screen. #100059 Thanks @iwhatsskill.
- Android Voice and Talk setup text now truncates cleanly on narrow screens and at larger accessibility font sizes instead of appearing clipped. #100060 Thanks @iwhatsskill, @solvely-colin.
- Android Gateway settings now show both setup actions as full-width buttons, keeping
Pair New Gatewayreadable and easy to tap. #100090 Thanks @iwhatsskill. - The Android Voice tab now gives Realtime Talk and Dictation text and controls enough room to remain readable on phones and at larger font sizes. #100491 Thanks @iwhatsskill.
- Android's "New chat in worktree" action is now translated across supported non-English locales instead of appearing with a missing resource. #100805 Thanks @amknight.
- Tapping an Android notification created by
system.notifynow brings OpenClaw to the foreground. #100888 - Returning to an already loaded Android chat no longer flashes a loading screen, and the Overview recent-session list stays deduplicated and steadier during refreshes. #100966 Thanks @solvely-colin.
- Android's command palette now keeps action and session rows visually aligned, with consistent icons, navigation spacing, and clean truncation for long labels. #101072 Thanks @iwhatsskill.
- Android Home's Recent Sessions section now keeps recently active rows in a stable order, collapses duplicates, and preserves labels and timestamps during partial live refreshes. #101161 Thanks @solvely-colin.
- Android physical-keyboard users can press or hold Enter to send once without leaving a stray newline, while Shift+Enter and in-progress input-method composition keep working. #101360 Thanks @3ninyt3nin-creator, @joshavant.
- Expanded Android link previews now keep thumbnail memory within a byte budget, reducing excessive memory retention during long chats. #101560
- The Android app now respects a user's disconnect, connect, or gateway-switch choice during startup and reports final disconnect failures to fire-and-forget callers. #101799
- Opening OpenClaw again from the macOS Dock or Finder now brings up the dashboard or its failure window even when the menu-bar app is already running. #97637 Thanks @solvely-colin.
- Opening Control -> Terminal on iOS now goes directly to the terminal without briefly showing the general Web UI login screen during connection. #100727
- Realtime Talk consult calls acknowledge as soon as the embedded agent run is accepted, rather than waiting for it to finish. #101091 Thanks @romneyda.
- Terminal Hatch onboarding and other TUI connections now show
starting upuntil session loading finishes, with accurate running indicators after reconnects. #93999 Thanks @ml12580. - After the Diffs viewer is reopened or refreshed, its toolbar controls now act only on the currently displayed diff cards. #96138 Thanks @brokemac79, @davinci282828.
- Session tools now display the correct absolute path for projects beside the home directory instead of turning a shared text prefix into a misleading
~...path. #96562 Thanks @he-yufeng. - Codex CLI session lists now shorten long last-message previews without splitting emoji or similar characters into broken text. #96582 Thanks @llagy007, @weeli-009.
- Custom usage footers now render alias and map fallbacks correctly even when model or mode names collide with properties such as
toStringorconstructor. #98503 Related #98466. Thanks @chenyangjun-xy, @zhanglei99586. - Repeated submits while the TUI agent is busy now update one warning instead of flooding the conversation with duplicate notices. #99879 Thanks @vincentkoc.
openclaw tui --localnow explains when a known slash command requires the Gateway instead of sending that command to the model as an unwanted prompt. #100188 Thanks @goslingmanagment.- Workspace skill approvals started in the TUI now appear in that terminal, so users can review and unblock the run without switching to Telegram. #100251 Thanks @vincentkoc.
- The terminal UI now stays open and shows a safe, useful error when a local shell command, slash command, or message submission fails. #100340 Thanks @cxbasdev.
- iOS Gateway connection errors now appear as one dismissible toast that returns for a later failure and visibly reacts instead of stacking when the same problem repeats. #98856 Thanks @lokimorty.
- Equivalent rows in the iPhone Control and Settings tabs now use the same rounded icon treatment, making both lists easier to scan. #98936 Related #98916. Thanks @sahilsatralkar.
- The iOS About screen now shows a concise app, device-family, and iOS summary without duplicated identity or a raw hardware identifier. #98985 Related #98943. Thanks @sahilsatralkar.
- The iOS appearance setting now sits in the normal Settings list, shows the current System, Light, or Dark choice at a glance, and behaves consistently on iPad. #99052 Related #98995. Thanks @sahilsatralkar.
- Cancelling or interrupting an iOS
screen.recordrequest now stops the system recorder instead of letting capture continue after the tool call fails. #99155 Thanks @nianjiuzst. - iOS now recognizes Limited Photos access as usable, offers in-app controls for requesting or managing the grant, and avoids interrupting gateway requests with a surprise prompt. #99350 Related #99046. Thanks @tony-ooo.
- The iPhone Control destination list is now denser and easier to scan without changing navigation or status information. #99468 Related #99439. Thanks @sahilsatralkar.
- Apple Watch quick replies now survive an unavailable iPhone and reconnect later to the intended Gateway without being lost, duplicated, or misrouted. #100372 Thanks @nianjiuzst.
- Tapping the iPhone status bar now leaves the chat at the top for reading older messages until the user chooses Jump to latest. #100502
- The iOS QR setup scanner is less likely to crash or become unstable when users open, cancel, or close the camera during onboarding. #101235 Thanks @joshavant, @solvely-colin.
- Already-paired iPhone users now return to Chat, Talk, and Settings instead of being trapped in setup when older onboarding flags are stale. #101481
- The iOS camera permission prompt now clearly connects access to Gateway setup and assistant-requested photo, video, document, screen, or workspace capture. e77994e Thanks @joshavant.
- Android and iOS Gateway setup now clearly requires Secure TLS for remote hosts, warns before trusted LAN use without encryption, and offers actionable update guidance for protocol mismatches. #101325 Thanks @joshavant.
- The macOS menu-bar app now uses fewer idle CPU wakeups and less repeated configuration and permission work, reducing background battery use without changing active status behavior. #100463
- Long-running
system.runcommands on the macOS app node no longer make the node appear offline or block unrelated Gateway traffic. #100842 Thanks @lvan185, @vincentkoc. - The macOS app no longer mistakes a valid launchd-managed local Gateway for an unexpected listener and terminates active assistant or channel work. #100867 Thanks @lsr911, @vincentkoc.
- The macOS app now keeps the same paired device and node identity across upgrades, restarts, and Gateway reconnects instead of repeatedly asking for approval or creating stale duplicates. #101105 Thanks @yetval.
Skills, plugins, and installs
Skills, connected apps, packages, and repairs
Skills can be drafted from a conversation or source, reviewed, pinned, archived, restored, and kept out of future context when stale. Plugin management is clearer about discovery, installation, updates, marketplace snapshots, connected Codex apps, approvals, and runtime failures, while Codex supervision can give each new thread an explicit bounded app allowlist.
Official packages are easier to obtain through the supported Docker and Android paths, and plugin-backed workflows such as Google Meet and Apple Messages recover from more setup and migration problems. Doctor also handles damaged migration caches and older plugin or skill layouts without turning a recoverable upgrade into a dead end.
Sources and contributors
- Users can turn a conversation, file path, URL, or pasted note into a reviewable Skill Workshop proposal with one message instead of starting from a blank draft. #100442
- Long-running agents can automatically retire unused Skill Workshop skills from future context, pin important ones, restore archives, and surface possible overlaps without deleting the underlying skills. #101214
- Operators can run
openclaw plugins marketplace refreshto verify and save a hosted feed, enforce a SHA-256 match, and see whether live, saved, or bundled data was used. #96155 Thanks @giodl73-repo. - Owner-operated native Codex agents can now use selected apps already connected to the operator's Codex account, with a bounded per-thread allowlist and existing approval controls preserved. #100973 Thanks @pash-openai.
- Official OpenClaw container images are now available from Docker Hub as well as GHCR, reducing reliance on unofficial mirrors. #97122 Thanks @vincentkoc.
- Android users can sideload the official signed
OpenClaw-Android.apkfrom a stable GitHub release and verify it with the published SHA-256 checksums. #101212 - The opt-in Logbook lets users review a model-organized workday timeline, generate standups, and ask questions about captured activity, with owner-only local storage and configurable retention. #99930
- Google Meet join, creation, talk-back, transcription, and related automation now work across browser and account languages by using English in OpenClaw-controlled Meet tabs. #89671 Thanks @unayung.
- Discord users can complete approved Codex Computer Use actions such as
get_app_stateand receive the native tool result instead of getting a false timeout while the tool is still running. #96818 Thanks @pollybot13, @zhangguiping-xydt. - Updated integration runtimes keep Codex, ACP, Copilot, Telegram, and diff rendering aligned with compatible upstream behavior, while reconnect recovery no longer floods operator logs with duplicate messages. #100027
- Docker users now get a more complete bundled AI runtime, reducing startup and runtime failures caused by package links removed during image trimming. 57ca1b0 Thanks @vincentkoc.
- Declared plugin tools now remain callable in subagent sessions after plugin registry changes, avoiding repeated
plugin tool runtime missingfailures and Gateway restarts. #82562 Thanks @luoyanglang, @vincentkoc. - Plugin metadata cache hits no longer flood diagnostics with repeated full-scan entries, leaving smaller timelines where real scans are easier to identify. #86796 Thanks @galiniliev, @vincentkoc.
- Plugin loading no longer evaluates OpenClaw's own package code twice, reducing startup work and avoiding duplicate module, class, singleton, or registry identities in one process. #88384 Thanks @vincentkoc.
- Affected npm installations can once again start the Gateway and produce replies because speech now loads only through its supported package-backed TTS path. #89899 Thanks @zhangguiping-xydt.
- Starting QR login without a required official channel plugin now returns the exact installation command or
openclaw doctor --fixinstead of only saying the provider is unavailable. #90517 Related #83277. Thanks @carol-iung, @tuaran. openclaw plugins inspectnow shows the bundled document-extract plugin's PDF extractor as an available capability instead of reporting none. #91597 Thanks @xydt-tanshanshan.openclaw plugins initcan now scaffold a model-provider plugin with authentication, model setup, tests, packaging, validation, and ClawHub publishing structure. #94352 Thanks @patrick-erichsen.- Existing plugin discovery keeps the same bundled official catalog while gaining a versioned, fail-closed fallback format for the hosted marketplace work. #95846 Thanks @giodl73-repo.
- ClawHub marketplace reads now fail back to OpenClaw's bundled plugin catalog when hosted data is unsafe or unusable, providing a guarded base for the new marketplace workflow. #95868 Thanks @giodl73-repo.
- A hosted marketplace can keep serving its last verified catalog when the feed is unchanged or briefly unavailable, without trusting stale or invalid saved data. #95877 Thanks @giodl73-repo.
- The latest verified hosted marketplace catalog can survive a restart and remain available through unchanged responses or temporary feed failures, with persistence still optional. #95964 Thanks @giodl73-repo.
- Hosted marketplace entries become installable only when they match approved local sources and trusted ClawHub packages, preventing unknown or untrusted choices from slipping into installation. #95969 Thanks @giodl73-repo.
- Administrators can configure named hosted marketplace feeds and the trusted local package sources those feeds may reference, while unsupported trust settings are rejected. #95981 Thanks @giodl73-repo.
- Plugin update failures now report the real npm metadata or registry problem instead of disguising it as an unsupported package specification. #96143 Thanks @brokemac79, @romneyda, @slideshow-dingo.
- The new
openclaw plugins marketplace entriescommand lists available hosted plugins, versions, and install choices while showing whether results came from live, saved, or bundled data. #96158 Thanks @giodl73-repo. - Configured context-engine plugins such as lossless-claw now stay active after discovery instead of being silently replaced by the built-in legacy engine. #96357 Thanks @vincentkoc.
- Gateway startup now reports configured channels that failed to load, so operators can fix plugin trust, enablement, or installation before messages go missing. #96397 Thanks @849261680.
- Operators can install a pinned older ClawHub plugin when that version is compatible with their OpenClaw deployment, without the latest release's requirements incorrectly blocking it; incompatible or unverifiable versions remain blocked. #96506 Thanks @isaiahstapleton.
- Plugin-heavy startup and configuration checks, especially on Windows, now repeat fewer package-path lookups while rebuilding installed-plugin fingerprints, making those paths more responsive. #96710 Thanks @211-lee, @sheyanmin, @vincentkoc.
- macOS users can run Codex Computer Use desktop controls through managed installation without a manual
appServer.command, and an outdated Codex Desktop app-server no longer blocks a supported plugin-local binary. #96730 Thanks @bdjben. - Official Weixin installs and core-upgrade reconciliation now target plugin version 2.4.6 with its correct compatibility requirement instead of unexpectedly returning users to 2.4.3. #96801 Thanks @lin-hongkuan.
openclaw plugins update --allnow realigns trusted official plugins with the current stable or beta catalog after a core upgrade, without manual force installs or overwriting intentional targeted pins. #96831 Thanks @ooiuuii, @velvet-shark.- Configured and accessible native Codex plugin apps now remain available when a new OpenClaw thread starts during an app-inventory and activation-state transition instead of disappearing silently. #96872 Thanks @kevinslin.
- Google Meet sessions launched through a paired macOS Chrome node now open the intended URL with the configured Chrome profile and audio tools, while unsupported actions and executable overrides are rejected before reaching the node. #96908 Thanks @joshavant.
- Changes made by plugin hooks now reach agent and child-run context, including replacements or removals made by
agent:bootstrap. #97281 Thanks @outdog-hwh. openclaw plugins update <id> --dry-runnow tells operators when a newer default release exists even if the installed plugin is pinned exactly. #97282 Thanks @yungchentang.- Embedded context-engine plugins now see the current turn in the transcript during
afterTurn, preventing missing first messages and duplicate imports. #97342 Thanks @gorkem2020, @iwhatsskill, @sgh6688, @udjin79. /status pluginsnow labels a plugin as loaded only when it is actually running, while still showing healthy installed inventory. #97479 Thanks @masatohoshino.- Windows plugin updates no longer create managed paths so long that official Codex-backed agents fail before they can start and reply. #97488 Thanks @ooiuuii.
- Raising a running Gateway's log level to debug now immediately enables Mattermost, Matrix, Microsoft Teams, IRC, Nextcloud Talk, and other plugin diagnostics without a restart. #97617 Thanks @amknight, @vincentkoc.
- Windows can now load valid inbound media when configured roots and runtime file paths differ only in letter casing. #97630 Thanks @vectorpeak.
- Plugins can now react when a new DM pairing request is created, enabling owner alerts, audit records, tickets, and approval integrations without polling. #97733 Thanks @clawsean, @omarshahine, @trupe-rs.
- Detailed
/status pluginsnow flags a plugin that was configured to run but did not load, separating runtime drift from ordinary inactive inventory. #97878 Thanks @masatohoshino. openclaw updatenow accepts valid bundle-format marketplace and ClawHub plugins withoutpackage.json, preventing plugin sync from aborting and leaving the Gateway stopped. #98010 Related #97985. Thanks @herove, @lilan0125.- OpenClaw npm packages are now about 3.18 MB smaller unpacked and 371 KB smaller compressed, with plugin SDK entrypoints and runtime behavior unchanged. #98758 Related #98757. Thanks @romneyda.
- Native
/oc_*Mattermost commands work again in packaged installs usingopenclaw/mattermost, without allowing disabled or denied plugins to bypass Gateway checks. #98819 Related #98740. Thanks @amknight, @keltech-services. openclaw/memory-lancedbcan now install and update under normal npm dependency resolution, keeping LanceDB-backed memory active without version pinning or bypass flags. #99118 Related #90295. Thanks @allenhurff, @joshavant.- Installing a managed npm plugin no longer makes workspace plugins from
plugins.load.pathsdisappear after startup or restart. #99196 Thanks @leonidaslux. - Git-backed plugin installs and updates now work when
~/.openclawand the system temp directory are on different filesystems, without aTMPDIRworkaround. #99896 Thanks @bartok9, @carelvanheerden, @vincentkoc. - Plugin loading now honors operator-configured Jiti native-module exceptions while retaining protection against duplicate OpenClaw package evaluation. #100344
- Extended-stable users can install, repair, and update eligible official plugins at the exact OpenClaw core version instead of drifting onto the regular stable line. #100448 Thanks @kevinslin.
- Bundled channel setup plugins now load correctly through current-release symlinks and mixed source/dist layouts without false outside-package warnings. #100758
- Source checkouts with a partial bundled plugin tree now retain complete built-in metadata for plugin health checks and provider endpoint discovery. 26c0285 Thanks @vincentkoc.
openclaw updateno longer retries a plugin after successfully moving it to ClawHub, preventing a redundant transient failure from disabling the migrated plugin. 3ce26d6 Thanks @vincentkoc.- Mac users setting up iMessage can install or update
imsgfrom the setup flow, receive clearer probe guidance, and recover sessions that still reference the old skill location. #101407 Thanks @omarshahine. - Source and macOS package builds no longer fail when the tsdown configuration is loaded from a temporary directory that cannot resolve the runtime package. #100499
- Global npm upgrades can continue as OpenClaw's packaged files grow without hitting
InstalledDistScanLimitError, while runaway scans remain bounded. #101206 - When Google Meet's local OAuth callback port is occupied,
openclaw meet auth loginnow offers the manual redirect-paste flow instead of stopping sign-in. #96492 Thanks @jinduwang1001-max, @yetval. openclaw doctorcan continue legacy dedupe migration when a retired cache file contains malformed JSON instead of stopping with a parsing error. #98125 Thanks @pick-cat.- Completed Voice Call status remains available through the Gateway, tool, and CLI after restart or eviction instead of incorrectly appearing missing. #99797 Thanks @darren2030.
- Source builds now work on supported Node.js distributions without native TypeScript stripping, avoiding a late failure tied to
--experimental-strip-types. #91262 Thanks @smoe, @vincentkoc. - The GitHub Copilot plugin no longer breaks
openclaw plugins listoropenclaw statusduring metadata-only loading before full runtime state is available. #95229 Related #94516. Thanks @cuihaijun, @sunlit-deng. - When a Telegram plugin approval cannot be routed, operators now receive practical Web UI, terminal UI, and configuration guidance instead of a generic failure or timeout. #95973 Related #95800. Thanks @chrisbot2026, @monkeyleet.
- Marketplace diagnostics now show whether refresh and entries commands used a hosted feed, a saved snapshot, or a fallback without logging feed secrets. #96194 Thanks @giodl73-repo.
- Provider plugins that mask text now restore intended values inside tool-call inputs before messages, file operations, and other external actions run. #97769 Related #97761. Thanks @get-viti, @zoowh.
- Plugin install and update failures now show whether npm exited, was killed, or timed out instead of presenting a blank error that makes valid packages look invalid. #98497 Thanks @sanjays2402, @vincentkoc.
- Plugin and media workflows now handle malformed or truncated ffprobe output without crashing while continuing to read valid video dimensions normally. #98613 Thanks @pick-cat.
/status pluginsnow groups disabled plugins by reason, including allowlist, denylist, default, and override decisions, without changing activation behavior. #99598 Thanks @masatohoshino.- Plugin authors can now import shared
textResultandjsonResulthelpers fromopenclaw/plugin-sdk/tool-resultsinstead of recreating common response shapes. #99740 Thanks @romneyda. - Plugin authors now have a shared
formatByteSizehelper for consistent byte labels, while existing labels across OpenClaw remain unchanged. #99768 Thanks @romneyda. - Failed plugin installations now show the useful plugin error without adding a false
Also not a valid hook packdiagnosis, while genuine hook-pack failures remain visible. #100554 Thanks @vincentkoc. - Bundled channel runtime and setup plugins now load from valid source-only registry roots in mixed source/dist checkouts instead of silently disappearing. #100737
- Ordinary Lobster run and resume approvals no longer fail TaskFlow-only validation simply because unused default flow fields were present. #102036 Thanks @arthurnie, @lilan0125, @vincentkoc.
- Migration
agentDirvalues beginning with~now resolve against OpenClaw's effective home. #99901 - Duplicate plugin-request scopes now normalize consistently, and genuine plugin scan access failures are surfaced. #99932
- Skill archive validation and upload hashing errors now identify the missing or unreadable file while preserving the original filesystem error. #101085 Thanks @cxbasdev, @vincentkoc.
- The bundled xurl skill now shows a working Node/npm installation path, and the github skill no longer advertises an unsupported Linux apt option. #102158 Thanks @not-stbenjam.
Setup, maintenance, and tools
Command-line setup, updates, and administration
Operators can attach an external coding harness to an existing Gateway session and work with compatible Codex-supervised threads across native and OpenClaw surfaces. Status and configuration commands provide clearer diagnostics, safer defaults, and more dependable control of sessions, services, credentials, and runtime behavior.
The supported installation and update paths preserve working state more carefully across packages, containers, and daemons. Onboarding and doctor retain choices through interrupted setup and migrations, surface actionable repair steps, and avoid silently continuing with stale services, missing plugins, or unusable model configuration.
Sources and contributors
openclaw attachnow launches Claude Code with temporary access to the main or selected Gateway session, keeps credentials out of arguments, and revokes the grant when the session ends. #96454 Thanks @anagnorisis2peripeteia, @obviyus.- Owner-controlled agents can opt into
appServer.homeScope: "user"to inspect and safely fork the same Codex threads available in Desktop and the CLI. #99821 - The bounded
openclaw hookscommands now return control promptly after printing their output, so terminals, scripts, and CI jobs no longer remain stuck. #76922 Thanks @dorukardahan. - Non-interactive
openclaw models listandopenclaw models statusnow exit normally after printing their results, allowing scripts and SSH diagnostics to finish without an external timeout. #77904 Thanks @dorukardahan, @vincentkoc. openclaw confignow recommends a Gateway restart only when the changed settings require one, so hot-loadable agent, model, and provider edits no longer prompt unnecessary restarts. #80823 Thanks @kiranmagic7.- Removing a visible built-in model alias now explains that the alias is automatic and shows how to shadow it, while genuinely absent aliases still report as not found. #81641 Thanks @scientificprogrammer, @vincentkoc.
openclaw sessions --jsonnow includes available subagent lineage and runtime details such as parent linkage, workspace, depth, role, timestamps, and status. #87917 Related #80286. Thanks @islandpreneur007, @zhangguiping-xydt.openclaw logs --followcan bridge a brief local Gateway outage with journal output and automatically return to normal Gateway logs after recovery. #88159 Thanks @anyech, @vincentkoc.- Built-in
openclaw nodes status,openclaw nodes list, and related node commands now start quickly without unnecessary plugin initialization, while plugin-provided node commands still load when requested. #96702 Thanks @erhhung, @qijian-zhang, @zengwen-dt. - Debug proxy capture now keeps oversized or endless response bodies from crashing the agent, while retaining useful status and header metadata. #97551 Thanks @alix-007.
- The first Gateway status check after a restart now reports the selected model's actual context window instead of briefly showing a generic 200k limit. #97576 Thanks @turbotheturtle.
- Android node reconnects now point users from a failed
devices approveattempt to the correctopenclaw nodes approve <requestId>command, including a reminder to reuse connection flags. #98115 Thanks @welfo-beo. openclaw healthnow surfaces permanently failed deliveries with queue counts and oldest-failure age instead of reporting an all-green state. #99842 Thanks @masatohoshino.- Timing displays now roll rounded sub-second values over to
1sinstead of showing the awkward1000ms. #100006 Thanks @qingminglong. - Repeated configuration warnings are now suppressed between meaningful recurrences, keeping long-running Gateway logs readable without hiding new diagnostics. #100569 Thanks @vincentkoc.
- Gateway settings marked as no-restart now take effect in live and heartbeat-driven turns without requiring a manual restart. #100586 Thanks @obviyus, @sedrak-hovhannisyan.
- TUI links now leave malformed fragments and stray punctuation as plain text while keeping valid parenthetical, IPv6, and line-wrapped URLs clickable at the correct target. #100780
openclaw logsnow reports log-tail stream failures cleanly instead of crashing, hanging, or leavingjournalctlrunning. #100850 Thanks @cxbasdev, @vincentkoc.- Trimmed OpenClaw CLI logs now remain valid UTF-8 when the retained byte range begins inside an emoji or other multibyte character. #101029 Thanks @ly85206559.
- Windows backups now recover more reliably from live-write races by avoiding repeated use of the same locked temporary archive and cleaning stale retry files. #101449 Thanks @lilan0125, @vincentkoc.
- Session cost summaries now estimate a real charge when a transcript records zero dollars despite token use and known model pricing. c5260a3 Thanks @nianjiuzst.
- Session logs and cached cost views now preserve provider-reconciled zero-dollar totals while recalculating genuinely missing costs from stored provider and model details. c45124a
- LaunchAgent-managed Gateways on permission-constrained macOS volumes now start the generated environment wrapper through
/bin/sh, preventing immediate background-service exits. #89967 Related #87199. Thanks @joshdaynard, @zhangguiping-xydt. - Windows command lookup now honors the caller's
PATHEXT, allowing valid PowerShell scripts and executables to resolve in containers, CI, and isolated environments. #98093 Thanks @wendy-chsy. - Failed
openclaw devices approveattempts now explain whether to approve a scope upgrade elsewhere or refresh the pending request ID and retry. #98146 Thanks @romneyda. openclaw gateway statusnow gives relevant credential, configuration, restart, and log guidance when a running Gateway fails its probe instead of telling operators to wait for warm-up. #98183 Thanks @masatohoshino.openclaw docsnow rejects oversized search responses with a clear error before they can destabilize the CLI or exhaust memory. #98188 Thanks @cxbasdev.- Gateway
config.patchnow accepts unrelated configuration updates when a bundled provider uses its default endpoint, without saving empty runtime-only provider fields. #98396 Related #98270. Thanks @momothemage, @weltmaister. - OpenClaw update checks now limit malformed or unexpectedly large npm registry responses before they can consume excessive memory. #98508 Thanks @lzyyzznl.
- Several edge cases now preserve transcript and voice text, surface MCP failures, bound oversized responses, show current session time, choose the right Linux package manager, and use port 443 for secure Gateway links without an explicit port. #100258 Thanks @connermo, @cxbasdev, @gfaerny, @hailory, @harjothkhara, @ly85206559, @mushuiyu886, @simon-xydt, @sunlit-deng, @uditdewan.
- Valid
openclaw.jsonfiles with a BOM, PowerShell formatting, or deep indentation can now save authentication, model, repair, and other configuration changes without manual reformatting. #100591 Thanks @vincentkoc. openclaw updateon Windows now prevents the managed Gateway Scheduled Task from relaunching during package replacement, avoiding partially updated or mixed-version processes. #100757 Thanks @vincentkoc.- Shell-completion repair during
openclaw doctorand updates now skips expensive plugin-command loading, avoiding unnecessary delays while full user-requested generation still includes plugin commands. #76235 - Windows Gateway setup now detects when Task Scheduler exits without starting a listener and can use the existing fallback launch without creating a duplicate if startup is merely late. #76245
- Pressing Ctrl+C during the installer upgrade doctor now stops the flow cleanly and prevents an incomplete or failed installation from opening a stale dashboard. #76386 Thanks @sebtardif.
openclaw doctornow warns when QMD session search is enabled without transcript export and provides commands and documentation to correct the missing recall setup. #80947 Thanks @anyech.openclaw doctornow gives a missing-transcript preview command that actually shows the entries eligible for removal before users choose to enforce cleanup. #83630 Thanks @yuanhanzhong.- Operators can inspect stale session write locks with
openclaw doctor --lint --json --only core/doctor/session-locksand preview which locks a repair would remove or preserve. #84366 Thanks @giodl73-repo. openclaw doctornow evaluates the default agent's actual per-agent bootstrap limits, producing accurate truncation warnings and remediation guidance. #84424 Thanks @kasangyong, @vincentkoc.- Gateway-managed skill checks can now find commands installed through pnpm 11 and common npm-global layouts, reducing false missing-tool warnings and unnecessary reinstalls. #85238 Thanks @shbernal, @vincentkoc.
statusandstatus --jsonnow build session model labels with less unnecessary normalization, improving readback speed for larger session sets and incident checks. #87831 Thanks @acskamloops.openclaw doctoron Windows now detects supported Chrome versions accurately instead of warning that a working installation could not be identified. #87937 Thanks @mukundakatta.openclaw doctorno longer aborts when a configured agent workspace has not been created yet, while real file operations still enforce workspace boundaries. #89226 Thanks @sasan1200, @shifengwang333-ai.- An invalid
openclaw nodes approve <requestId>now shows available pending IDs and theopenclaw nodes pendingrecovery command instead of a raw client error. #94452 Thanks @mushuiyu886. - Optional Doctor lint can now report missing, unsafe, unwritable, cloud-synced, removable, volatile, or incomplete OpenClaw state storage with paths and repair guidance. #95979 Thanks @giodl73-repo.
- An opt-in Doctor lint check now explains which configured plugin installation is broken and previews the repair before operators run the existing fix workflow. #96171 Thanks @giodl73-repo.
- When cron command output is truncated, operators can still recover the earlier login or setup instruction they need without exposing its raw secret through notifications. #96393 Related #96346. Thanks @nz365guy.
- A timeout while one isolated cron job is setting up no longer restarts the Gateway or interrupts unrelated agent and scheduled work. #96396 Thanks @849261680, @brycemurray, @velvet-shark.
- Operators can run
openclaw doctor --lint --allto include every opt-in diagnostic check without changing the behavior of existingdoctor --lintautomation. #96471 Thanks @giodl73-repo. - Default cron failure alerts enabled with
openclaw cron edit <job> --failure-alertnow survive Gateway restarts instead of silently disappearing after reload. #96615 Thanks @liuhao1024. - Operators can run
openclaw doctor --lint --only core/doctor/gateway-health,--only core/doctor/gateway-daemon, or--allfor structured, credential-safe warnings about Gateway reachability and local service health without changing service state. #97075 Thanks @giodl73-repo. - Operators can use the focused auth-profile Doctor lint check to find expired, missing, malformed, cooled-down, disabled, or legacy credentials with structured repair guidance. #97125 Thanks @giodl73-repo.
- A focused memory-search Doctor lint check now reports provider, credential, backend, and QMD setup problems with structured paths and fixes. #97137 Thanks @giodl73-repo.
- The workspace-status Doctor lint check now reports plugin drift, compatibility, loading diagnostics, and recoverable TaskFlow state in machine-readable form. #97358 Thanks @giodl73-repo.
- A focused device-pairing Doctor lint check now provides structured warnings and repair guidance for pending requests, stale authentication, missing scopes, and unreadable stores. #97366 Thanks @giodl73-repo.
openclaw onboardnow explains up front what setup covers, why full onboarding can take longer, and which optional steps can be postponed. #97482 Thanks @ly85206559.- Operators can request a structured Doctor lint check for configured channels whose backing plugins are blocked, including the unmet requirement and suggested fix. #97496 Thanks @giodl73-repo.
- A focused tool-result-cap Doctor lint check now identifies settings below model-aware defaults or above the runtime ceiling with actionable paths. #97500 Thanks @giodl73-repo.
- Linux operators can use the systemd-linger Doctor lint check to learn when logout may stop the Gateway and get the exact
loginctl enable-lingerremedy. #97514 Thanks @giodl73-repo. - Remote node hosts can now connect to Gateways mounted at reverse-proxy paths such as
/openclaw-gw, including after daemon installation or reconnect. #97679 Related #97678. Thanks @wm0018. - Local Docker source builds are less likely to run out of memory, and failures that still exhaust memory now suggest the relevant build settings. #98119 Related #98118. Thanks @zyzo.
openclaw pairing listnow gives a useful device-approval next step when no chat DM pairing channels exist instead of displaying a broken empty-choice error. #98142 Thanks @romneyda.openclaw doctornow warns when cron jobs target channels whose plugins are inactive, letting operators correct delivery before the next scheduled run fails. #98184 Thanks @masatohoshino, @vincentkoc.- Docker and bind-mount installations can finish legacy cron migration across filesystem boundaries, with actionable warnings and duplicate-safe retries when cleanup cannot complete. #98217 Thanks @masatohoshino.
- Linux operators now see when systemd has stopped restarting a repeatedly crashing Gateway, and
openclaw gateway restartcan recover the latched failed service. #98291 Thanks @masatohoshino. - Doctor lint can now identify legacy fenced
HEARTBEAT.mdtemplates and distinguish files suitable for automatic cleanup from those containing custom content. #98400 Thanks @giodl73-repo. - Doctor lint can now flag the combination of WhatsApp, a strained Gateway event loop, and active local TUI sessions that is associated with delayed replies. #98406 Thanks @giodl73-repo.
- Control UI, pairing, setup-code, QR, and status links now prefer a reachable LAN address on hosts with VPNs, virtual adapters, WSL, Hyper-V, or multiple networks. #98482 Thanks @joshavant.
openclaw doctornow explains cron jobs that still look in flight after an interrupted Gateway run and how those leftover markers are cleared on the next start. #98620 Thanks @masatohoshino.openclaw gateway status --deepcan now identify Windows Firewall rules blocking LAN devices and suggest practical rule, loopback, Tailscale, or SSH-tunnel remedies. #98666 Thanks @joshavant.- Structured Doctor lint can now report stale global plugin-runtime symlinks, including the obsolete link, its target, and the
openclaw doctor --fixcleanup command. #98729 Thanks @giodl73-repo. - After
openclaw doctor --fixarchives a legacy sidecar, the macOS app no longer recreates it or triggers the same migration conflict warning on every command or Gateway start. #99039 Related #98917. Thanks @momothemage, @p51moustache. - Gateway status, Doctor, and onboarding diagnostics now read large logs within fixed bounds and surface recent useful failures instead of stale noise. #99407 Thanks @sunlit-deng.
- Doctor now warns when enabled cron jobs are stuck in repeated failures without configured alerts, while healthy and below-threshold jobs stay quiet. #99606 Thanks @masatohoshino.
- Managed Gateway updates now allow active work to finish within the configured drain period before timing out the service handoff. #99695 Thanks @zoowh.
- Large session histories now produce smaller
.usage-cost-cache.jsonfiles with less parsing and rewrite work, rebuilding automatically after upgrade. #99714 Related #99511. Thanks @dexhunter, @wayne524. - First-run skill setup on minimal machines now groups missing Homebrew, uv, or Go prerequisites into one clear note while still installing dependencies that can succeed. #99726 Thanks @fuller-stack-dev, @sedrak-hovhannisyan.
- Upgrades from the legacy config-health store no longer repeat a permanent conflict warning, and existing recovery backups remain available without overwriting newer observations. #99728 Related #99280. Thanks @ccbridle, @jalehman, @joshavant.
- Installers and runtime checks now reject Node 23.0-23.10 early with supported-version guidance instead of leaving users with a broken OpenClaw CLI. #99832 Thanks @fuller-stack-dev, @vincentkoc.
- Crestodian on Claude Code or Gemini CLI can now hold multi-turn setup conversations, inspect state, request exact approval for changes, and verify writes instead of falling back immediately to a single-turn planner. #100029
- Crestodian setup and repair chats no longer destabilize the local TUI when a terminal event consumer fails during response delivery. #100341 Thanks @cxbasdev, @vincentkoc.
- Extended-stable Gateways now show a periodic
openclaw updatehint when a newer exact package is verified, without changing the installation automatically. #100438 Thanks @kevinslin. - Crestodian now distinguishes ordinary questions from operational requests, accepts natural approval phrases, clears stale proposals, and keeps sensitive configuration out of the conversation model. #100656
- Fresh git installs now lead users through setup, or give the exact command to finish later, before missing configuration or Gateway authentication can break first use. #101901 Thanks @fuller-stack-dev.
- Setup now checks the configured custom agent or auth directory for credentials instead of reporting the wrong bootstrap state from a default location. 0fd69dc Thanks @vincentkoc.
- The CLI and full-screen TUI now open with a clear recovery message when their launch directory has been deleted instead of crashing before startup. #93636 Thanks @ml12580.
- Node status, list, and pending-pairing views now tolerate malformed saved values and show the usable node information instead of crashing. #93930 Thanks @ly-wang19.
usage.costandsessions.usagenow reject a start date later than the end date with a clearINVALID_REQUESTinstead of returning a misleading empty report. #94096 Thanks @alix-007.- Browser CLI commands now accept
--browser-profilebefore or after the subcommand, restoring existing remote-browser and WSL2 command patterns. #94431 Thanks @ml12580. - Langfuse, OpenTelemetry, and Prometheus can now capture usage, cost, model, provider, timing, and session data for runs started through
/v1/responsesand/v1/chat/completions. #96152 Thanks @rocke2020, @xialonglee. openclaw tasks maintenance --applynow preserves active cron session history even when job IDs contain spaces, capitals, punctuation, or explicit session keys. #96352 Thanks @ly-wang19, @vincentkoc.openclaw cron addnow rejects invalid--no-output-timeout-secondsand--output-max-bytesvalues immediately instead of silently creating a command job without the requested limits. #96516 Thanks @zhangguiping-xydt.openclaw config unsetnow explains when a visible value is an inherited runtime default that is not stored in the user's config, avoiding an unproductive loop betweenconfig getandconfig unsetwhile leaving failed attempts unchanged. #96557 Thanks @moeghashim.- Failed
openclaw --helpandopenclaw --versionstartup now returns exit code 1 promptly instead of leaving the terminal process stuck. #97807 Thanks @aniruddhaadak80, @maweibin. gateway run --forcenow ignores malformed listener PID records during port cleanup instead of carrying invalid process state into recovery. #98371 Thanks @lzyyzznl.- Gateway busy-port diagnostics and forced cleanup now ignore malformed listener IDs, avoid phantom processes, and verify that a port is actually free before reporting recovery. #98505 Thanks @qiuyuang.
- CLI tables now shorten only the actual home directory and its descendants, so sibling paths such as
/home/alice2/projectno longer appear as misleading home-relative paths. #98876 Related #98872. Thanks @qingminglong. openclaw backup createnow tolerates disposable runtime files disappearing during a live backup, while continuing to protect durable files under the existing inclusion policy. #98879 Related #98865. Thanks @carterstebbins23-spec, @vincentkoc, @zengwen-dt.- File-backed usage-bar templates now keep watcher and file-descriptor use bounded in long-running OpenClaw processes while still reloading templates when needed. #98990 Thanks @chenyangjun-xy, @vincentkoc, @zhanglei99586.
- Configuration and plugin-schema validation hints now show clear allowed values instead of the misleading literal label
undefined. #99045 Thanks @lzyyzznl. - Message read, pinned-message, and search commands can now display more than 25 returned rows when a higher
--limitis requested and warn when additional provider results remain. #99089 Thanks @jerrytao-ai, @wm0018. openclaw healthnow warns when gateway configuration hot reload has stopped, so operators know a restart is needed instead of unknowingly running stale settings. #99267 Thanks @masatohoshino, @vincentkoc.openclaw sessions tail --tailnow rejects counts too large to represent safely instead of applying an imprecise history limit. #99398 Thanks @qingminglong.- A malformed transcript timestamp no longer corrupts session usage and cost records with invalid values. #99420 Thanks @krissding.
- Human-readable
cron listandcron showoutput now reveals repeated failure streaks such aserror (12x)while leaving JSON status values unchanged. #99602 Thanks @masatohoshino. - Windows now detects active Gateway listeners reliably from localized
netstatoutput, improving port diagnostics andgateway --forcecleanup without confusing established connections for listeners. #100012 Thanks @qingminglong, @vincentkoc. - Session maintenance warnings now say
1 minute,1 hour, or1 dayat rounded boundaries instead of awkward values such as60 seconds. #100096 Thanks @narahariraghava, @vincentkoc. - Compact
/statusno longer shows the ambiguousPlugins: OKrow, while warnings and detailed plugin diagnostics remain available. #100143 openclaw --helpnow matches command-specific help and completions, withconfig patchandconfig schemavisible from the main command list. #100670 Thanks @amirf194, @vincentkoc.- Terminal-rendered links containing balanced parentheses now remain clickable through the complete intended URL instead of being shortened or misdirected. #100697 Thanks @aniruddhaadak80, @zoowh.
- A Gateway WebSocket 1006 disconnect now gives operators accurate connection-loss guidance instead of implying that a healthy Gateway necessarily crashed. #101219 Thanks @darren2030, @vincentkoc.
- Failed OpenClaw and plugin-harness traces now include useful redacted error details in OpenTelemetry instead of only a generic failure label. #101244 Thanks @amknight.
- Windows Gateway restarts no longer depend on the
findstrcheck that could leave a visible or hung command window blocking the handoff. #101366 Thanks @deepujain. - OpenTelemetry trace viewers can now display captured tool results alongside tool inputs in standard GenAI fields, making failed-run investigation more complete. #101371 Thanks @amknight.
- Timed-out commands on Windows are less likely to leave child processes running when
taskkill.execannot start. #101392 Thanks @aniruddhaadak80, @zengwen-dt. openclaw backup createon Windows now retries live-file archive races with fresh temporary paths, reducing locked partial backups and leftover retry archives. #101464 Thanks @lilan0125, @zoowh.openclaw status --allnow keeps shortened channel issue messages readable when an emoji falls at the display boundary. #101503 Thanks @wm0018.- Session maintenance warnings now show more accurate wait estimates near unit boundaries, so a roughly 90-second delay is not inflated to two minutes. 58d707f Thanks @vincentkoc.
openclaw status,status --json, andstatus --allnow respect their timeout on Linux when systemd is unresponsive instead of hanging indefinitely. #94149 Related #84698. Thanks @zengwen-dt, @zus-assistant.- When a local Gateway is listening but unhealthy,
openclaw gateway status --deepcan surface a recent likely cause such as a full disk instead of only reporting a generic disconnect. #95902 Thanks @vincentkoc, @wangbyg. - Restarting, updating, reinstalling, or repairing a macOS Gateway now preserves active SecretRef-backed channel credentials instead of leaving Telegram and other integrations unable to authenticate. #99124 Thanks @mushuiyu886.
- Gateway configuration updates now reject missing redacted values for keys such as
toStringorconstructorinstead of restoring an inherited JavaScript function. #99152 Thanks @zenglingbiao. - Generated shell completion now suggests accepted OpenClaw command aliases and continues completing their options and subcommands. #99419 Thanks @amirf194, @jack-dev-ops, @vincentkoc.
- Update and status checks now identify malformed npm metadata as invalid JSON instead of returning only an opaque syntax error. #100338 Thanks @cxbasdev.
- Operators can upgrade the Gateway before N-1 subordinate nodes without losing the normal update, restart, repair, status, and maintenance path for those nodes. #101109 Thanks @jtczville.
- Windows users can launch globally installed Gemini CLI and Claude Code backends through their npm command shims without immediate spawn failures or mangled prompt arguments. #101378 Thanks @wendy-chsy.
- A failed Gateway replacement process during an update no longer causes an additional uncaught crash in the existing parent process. #101489 Thanks @aniruddhaadak80, @momothemage, @vincentkoc.
- Failed CLI installations now clean up their temporary Node staging directories and pnpm workspace rewrite files. #103725 Thanks @sebtardif.
- Git installs now create an
openclawlauncher that keeps using the intended Node.js runtime even after the user's PATH changes. be7198f openclaw agents listnow shows configured external channels even when their plugin is missing and provides the appropriate install oropenclaw doctor --fixguidance. #95363 Thanks @hugenshen.- Operators can use targeted Doctor lint to inspect legacy session transcripts and stale snapshot paths, preview the cleanup, and choose whether to apply it. #95976 Thanks @giodl73-repo.
- WhatsApp and Telegram default-account routing warnings are now available through selectable structured Doctor lint while normal Doctor output remains unchanged. #96147 Thanks @pick-cat, @vincentkoc.
- Optional Doctor lint can now identify stale or missing plugin registry data, shadowed bundled plugins, stale install records, and broken OpenClaw peer links. #96169 Thanks @giodl73-repo.
- Terminal and setup documentation links now resolve correctly when relative paths begin with
httpor absolute HTTP schemes use uppercase letters. #96439 Thanks @lin-hongkuan. - Terminal notes, Doctor output, and diagnostics now wrap long runs of CJK, full-width, or emoji characters within the requested width instead of spilling across columns. #96746 Thanks @ly-wang19.
- Structured Doctor lint can now report low or critical disk space for the OpenClaw state directory, including the affected path, available space, requirement, and remediation. #98391 Thanks @giodl73-repo.
- Manual Gateway setup now rejects port entries such as
1e3or0x1000instead of silently saving a different port, while valid decimal ports remain unchanged. #98689 Related #98681. Thanks @qingminglong. - Plugin operators can run
doctor --lint --only core/doctor/legacy-plugin-manifestsor--allto identify legacy manifest keys and see the affected plugin, path, and repair command. #98695 Thanks @giodl73-repo. - Operators can use
openclaw doctor --lint --only core/doctor/legacy-plugin-dependenciesor--allto find stale plugin dependency state and receive a path plus safe repair guidance without changing the installation. #98725 Thanks @giodl73-repo. - Operators can opt into
core/doctor/legacy-cron-storeto find legacy cron data that needs attention without the lint check changing any stored state. #99211 Thanks @giodl73-repo. - Channel setup warnings are now available as structured Doctor lint findings with stable paths and repair guidance for operators and automation. #99238 Thanks @giodl73-repo.
- Default
doctor --lintresults now focus on actionable configuration and runtime problems, with optional backup and memory advice available only when requested. #99249 Thanks @giodl73-repo. - A normal Doctor lint run no longer invokes
crontab -lfor the optional legacy WhatsApp check unless an operator explicitly selects it. #99250 Thanks @giodl73-repo. openclaw doctor --fixnow completes successfully in locked-down environments when only shell-completion installation is blocked, while still reporting genuine write failures. #99540 Related #99237. Thanks @hunglp6d, @rballiance.doctor --lint --allcan now explain the path or permission that would block a configuration repair before operators rundoctor --fix. #100093 Thanks @giodl73-repo.- OTLP traces, metrics, and logs now follow
HTTP_PROXY,HTTPS_PROXY, andNO_PROXY, keeping diagnostics exports on the configured network path. #100616 Thanks @jesse-merhi. - Remote Gateway status checks now fall back to the configured SSH target when local effective-config probing fails instead of crashing or stalling discovery. #101160 Thanks @cxbasdev.
- Windows update and doctor repair now move an owned legacy Startup gateway to Task Scheduler without leaving a stale process, dropping authentication, or removing the fallback too early. #101213 Thanks @vincentkoc.
openclaw updatenow targets the global Node installation that launched it, avoiding false success when Homebrew, nvm, asdf, or Volta exposes another OpenClaw copy. #101228 Thanks @buddyh.- Pending exec approval cards now describe only the approval state, and the foreground-fallback warning appears only after a command actually runs that way. #101561 Thanks @vincentkoc.
openclaw plugins listnow uses substantially less peak memory on fresh and already-migrated packaged installs while preserving required migration behavior. #103132
Documentation and operating guides
Official operating guidance now matches shipped commands, configuration, setup, status output, placeholders, and recovery behavior more closely. Generated documentation maps also preserve literal command parameters, reducing the chance that a reader follows an example whose identifiers were stripped or whose workflow no longer matches the product.
Sources and contributors
- The CLI config documentation now clearly distinguishes normal JSON5 value parsing from
--strict-json, which accepts standard JSON and rejects JSON5-only syntax. #80981 Thanks @addu2612. - Plugin and channel-status documentation now clarifies that a
MessageReceiptor durablesentresult proves platform acceptance, not display or read confirmation on a recipient's device. #90063 Thanks @pdurlej. - The macOS guide now gives users a clearer path from downloading the app through first-run setup, Gateway selection, and focused troubleshooting. #97120 Thanks @romneyda.
- The Discord setup guide now points users to the correct Developer settings section for enabling Developer Mode and copying required IDs. #97336 Thanks @naseemm123.
- Plugin developers now receive clearer SDK deprecations and migration guidance for session-store and transcript-file helpers ahead of the planned SQLite transition. #97494 Thanks @jalehman.
- OpenClaw's public docs now use shorter, task-first instructions with corrected commands, configuration names, defaults, provider behavior, and troubleshooting steps. #100142
- Logbook users now have end-to-end guidance for setup, model routing, privacy choices, and troubleshooting missing capture or timeline results. b6a7898
- Safe-restart guidance now states that the default wait can end after
gateway.reload.deferralTimeoutMsand explains how to configure an indefinite wait. #95397 Thanks @zhangqueping. - The agent configuration guide now identifies the current models selected by the built-in
opusandgptaliases. #96375 Thanks @niks999. - Docker operators now have an official path to install, authenticate, verify, and persist the
claude-clibackend across container image upgrades. #96380 Thanks @fffrank, @zaidazmi. - OpenClaw's Anthropic and Claude CLI documentation now reflects the current subscription-limit treatment for
claude -pand related usage, with official references for billing and deployment decisions. #96848 Thanks @fightingsleep, @tirion-p. - The Discord setup guide now separates General Permissions from Text Permissions so bot access choices are easier to read correctly. #97584 Thanks @slammajamma28.
- Telegram's error-reply documentation now lists the supported policies and correct cooldown defaults, avoiding invalid
errorPolicy: "reply"configurations. #97635 Thanks @wm0018. - The Feishu documentation no longer suggests the rejected
dmPolicy: disabledsetting, reducing configuration failures copied from the guide. #97640 Thanks @wm0018. - The public onboarding docs now cover eleven existing non-interactive flags for token auth, Cloudflare AI Gateway, daemon, UI, hooks, and token output. #97753 Thanks @vincentkoc, @wm0018.
- Matrix documentation now explains progress streaming, room-specific mention matching, per-room enablement, and bot-loop safeguards that operators can configure. #98318 Thanks @vincentkoc, @wm0018.
- Telegram channel documentation now correctly states that an unset streaming mode uses partial previews and explains how to choose final-only replies. #98453 Thanks @solodmd.
- OpenClaw's mobile documentation now identifies the iOS and Android apps as official releases and provides consistent App Store, Google Play, and hosted iOS push-relay guidance. #98843 Thanks @joshavant.
- Plugin authors now get clearer packaging guidance for runtime dependencies, built artifacts,
npm-pack:validation, and trusted official-plugin checks before publication. #99962 Thanks @hxy91819. - Official plugin package examples now agree on the required
typeboxruntime andopenclawpeer dependencies, reducing copy-and-paste setup failures. #99973 - The bundled
imsgskill now guides agents toward the correct direct or group conversation, stable targets, least-privilege actions, and confirmation before visible or sensitive changes. #100105 Thanks @omarshahine. - Official OpenClaw docs now help operators and plugin authors handle credentials safely, preflight cron jobs that use local-provider fallbacks, apply Talk timing defaults, configure MiniMax providers and models, and copy a complete minimal plugin package with the required dependency metadata. #100182
- Android node operators now have an end-to-end guide for securely mirroring and controlling a remote device from macOS, including authorization, troubleshooting, and clean disconnection. #100398
- The Codex and WhatsApp plugin references now identify their tools contract, making supported plugin capabilities easier to match with OpenClaw workflows. 46ad3f9 Thanks @vincentkoc.
- The onboarding reference now explains that bare
openclawstarts onboarding for a missing config, opens Crestodian for an invalid config, and launches the agent TUI for a valid config. d9dbee7 - ACP troubleshooting now names
PermissionPromptUnavailableError, helping operators recognize a non-interactive permission failure and find the right configuration fix. b3a74cc - The onboarding reference now gives accurate signal-cli, Gateway runtime, and channel allowlist guidance, including Windows limits and the IDs expected for direct messages. aaaa803
- Generated documentation navigation now preserves complete headings with command placeholders such as
<id>and<deviceId>instead of hiding required arguments. #99099 Thanks @hxy91819.
Browser, schedules, files, and coding tools
Agents can read scanned PDFs with vision-capable models, work in isolated coding checkouts, and handle files, media, browser results, and execution failures with more usable output. Browser control preserves pairing and download state more reliably, while parallel workspace operations are less likely to collide with one another or the user's current files.
Scheduled automation retains intended models, timing, state, and delivery across more restarts and edits. Tool calls and results also recover more cleanly from timeouts, malformed content, oversized output, and interrupted work instead of leaving a task looking complete when its usable result was lost.
Sources and contributors
- Vision-capable models can now read rendered pages from scanned and image-only PDFs attached through chat channels. #97354 Thanks @joshavant.
- Workboard tasks can now use managed isolated worktrees, with CLI and Control UI tools for creation, cleanup, restoration, and recovery snapshots when work cannot be removed safely. #100535
- Users can now start a chat in its own managed worktree from the Control UI or mobile app, isolating parallel coding while preserving dirty work and cleaning safe idle checkouts automatically. #100788
- A stalled remote Chrome or WSL2 browser can no longer hold tab-list requests indefinitely; OpenClaw returns a bounded timeout and can reconnect on the next request. #80147 Thanks @hemantsudarshan, @keaneyan.
- Remote-browser actions now recover from a closed or replaced selected tab by retrying without the stale tab ID, matching local browser behavior. #89086 Thanks @rhclaw.
- CDP-backed browser navigation to CSV, PDF, and other attachment URLs now returns a safely saved managed file with its URL and suggested filename. #89416 Thanks @zhangguiping-xydt.
- Browser downloads now tell the agent the saved filename and path, helping it use the completed download instead of retrying the action. #93307 Thanks @sunlit-deng.
- Updating
browser.profiles.*connection details can now take effect without an unnecessary Gateway restart or interruption to active sessions. #93827 Thanks @goutamadwant. - Browser automation can now act on tabs by suggested ID, tab ID, label, or unique prefix without false target-mismatch failures. #96178 Thanks @zengwen-dt.
- Persistent managed-browser logins now survive ordinary Chrome and Gateway restarts, reducing repeated sign-ins and MFA interruptions for unattended browser work. #98284 Thanks @malashenia, @turbotheturtle.
- Oversized browser-control error responses can no longer consume excessive Gateway memory, while ordinary failures still provide useful diagnostics. #98455 Thanks @wings1029.
- Browser
responsebodyrequests for a short prefix of a large response now avoid decoding a second full-size text copy while still returning the requested truncated content. #98940 Thanks @pandah97. - Browser extensions can reconnect with a newly rotated pairing token while Browser control remains running, and old tokens continue to be rejected. a703183 Thanks @vincentkoc.
- Cron jobs with a valid future run exactly on a second boundary now keep that scheduled time instead of being incorrectly treated as stale and rebased. #81731 Thanks @vincentkoc, @yashkot007.
- Isolated
agentTurncron jobs can recover from temporarily mismatched runtime artifacts instead of failing at startup with asourceReplyDeliveryModeerror. #85249 Thanks @jerry-xin. openclaw tasks maintenance --applycan now repair false lost-task records when durable cron history proves the run completed successfully. #86088 Thanks @altaywtf, @liaoandi.- Scheduled agent jobs now warn when
ANNOUNCE_SKIPsuppresses a cron completion, making missing reports and partial output easier to diagnose. #90566 Related #68561. Thanks @mibslee, @sahibzada-allahyar. - Catch-up cron jobs deferred briefly after startup are no longer skipped merely because an operator checks cron status before they fire. #94022 Related #93935. Thanks @richchen01, @vincentkoc, @yetval.
- Scheduled agent turns using
claude-clior another CLI backend now start normally, while explicitly unsupported tool restrictions still fail closed. #95615 Thanks @anagnorisis2peripeteia, @obviyus. - Timed-out or cancelled isolated cron runs now retain their provider, model, and session details in
cron_run_logs, making failed jobs easier to trace. #95943 Related #95873. Thanks @luke-renjoy, @zengwen-dt. - A scheduled cloud-model job that opens a response but sends no content can now move to a healthy fallback model before the entire run times out. #96096 Thanks @849261680, @velvet-shark.
- Editing a recurring cron job no longer skips a run that is already due or shifts an unchanged interval schedule to the edit time. #96159 Thanks @yetval.
- Clearing a saved Model or Thinking/Effort override in the Cron Control UI now truly restores inherited defaults, with
--clear-thinkingavailable from the CLI. #96293 Related #96287. Thanks @takamasa-aiso, @zengwen-dt. - CLI-backed workers from isolated cron jobs now exit after completion instead of accumulating and slowing the host and Gateway. #97227 Thanks @vianne-droid, @xialonglee, @yusukeit0.
- Long cron failure alerts now preserve emoji and other supplementary Unicode characters instead of ending with a broken replacement symbol. #97298 Thanks @zenglingbiao.
- Heartbeat fallback failures no longer send noisy chat messages made only of repeated internal error placeholders. #97364 Thanks @turbotheturtle.
- Failed shell-tool messages now separate the command the agent typed from framework labels and show the exit code, node, and working directory more clearly. #97511 Thanks @aditya-vithaldas.
- Scheduled jobs that permit
web_searchnow report that no usable search provider is selected instead of completing with an unusable result. #97677 Thanks @lilan0125, @riazrahaman. - Scheduled commitment follow-ups now stay focused on their original conversation instead of absorbing unrelated heartbeat instructions, queued context, or recovery work. #98169 Thanks @bdjben.
- Scheduled deliveries to numeric threads such as Telegram forum topics now return to the configured thread after Gateway restarts instead of falling back to the general chat. #98699 Thanks @yetval.
- Scheduled jobs can deliver to a live chat without blocking replies or mixing background work into its transcript, and operators can clear stale childless cron tasks without cancelling active session-backed runs. #98755 Related #98121. Thanks @ethansk, @obviyus.
- Recurring cron jobs created for
currentorsession:<id>once again carry their selected conversation history into later runs, whileisolatedjobs still start clean. #98947 Thanks @ethansk, @obviyus. - Failed
cron add,cron update, andcron removecommands now leave the running scheduler unchanged, so live jobs match the saved configuration and reported result. #99960 Thanks @masatohoshino, @vincentkoc. - Editing a scheduled job's message no longer accidentally breaks later CLI-backed runs, while explicit tool restrictions remain protected where they cannot be enforced. #100203 Thanks @obviyus.
- Reliability fixes now reject unsafe cron and plugin inputs, preserve skill formatting, surface Gateway and memory failures, fail LSP startup sooner, and prevent stale Android camera results after cancellation. #100399 Thanks @849261680, @anyech, @cxbasdev, @lin-hongkuan, @masatohoshino, @nankingjing, @qingminglong, @simon-xydt, @snotty, @xialonglee.
- A broad reliability pass now replaces stalled child-process work with clear errors, improves sandbox diagnostics, bounds mobile calendar and voice state, normalizes cron fallbacks, and rejects unsafe provider responses. #100483 Thanks @aniruddhaadak80, @cxbasdev, @jincheng-xydt, @morluto, @nianjiuzst, @pandah97, @versatagent, @xialonglee, @zenglingbiao, @zengwen-dt.
- Transient stdout or stderr read errors from
gog gmail watch serveno longer crash OpenClaw while Gmail watch mode is running. #100519 Thanks @cxbasdev. - Exec and finished background-session results now include signals, timeout flags, failure kinds, and exit reasons so users can tell why a command stopped. #89104 Thanks @yu-xin-c.
openclaw mcp serveand bareopenclaw acpnow begin with clean machine-protocol output, preventing startup warnings from corrupting JSON-RPC for MCP and ACP clients. #89997 Thanks @kenners22, @vincentkoc.- Agent commands with an invalid explicit
workdir, including a literal~, now stop clearly instead of running from an unintended fallback directory. #94441 Thanks @jesse-merhi, @renaudcerrato. - SSH- and OpenShell-backed sandbox commands now clean up remote resources after failed launches, preserve the correct plugin session and channel context, and return a normal tool error for malformed input instead of an internal WeakMap failure. #96926 Thanks @jesse-merhi.
- Windows
autoreview --engine copilotruns now return a completed review result even when temporary-directory cleanup is briefly delayed. #97901 Thanks @paulcam206. - Oversized local socket replies now fail promptly without consuming memory until timeout, while large macOS commands still return completion status and bounded recent output. #98130 Thanks @pick-cat.
- Timed-out, aborted, or output-limited extension commands now clean up their child processes instead of leaving background work running after
api.exec()returns. #98340 Related #98335. Thanks @ooiuuii. web_fetchnow reaches provider fallback much faster for shell-style pages with no locally extractable content, cutting the measured fresh-process delay from several seconds to about one. #98559 Thanks @vincentkoc.- Emoji and other supplementary Unicode characters remain intact when long command output is shortened for polls, completion notices, or approval follow-ups. #98721 Thanks @zengwen-dt.
- A set of failure-path fixes now keeps commands and maintenance tasks running through isolated errors, preserves terminal and model text, improves skill and approval diagnostics, and stops Android voice sessions cleanly after microphone loss. #100440 Thanks @cxbasdev, @lavyatandel, @nankingjing, @nianjiuzst, @tzy-17, @wendy-chsy.
- Agent workflows can now survive transient stdout or stderr read failures from helper processes instead of losing the whole OpenClaw process. #100522 Thanks @cxbasdev, @vincentkoc.
- Docker sandbox commands now return an explicit failure when output cannot be read instead of crashing OpenClaw or reporting an incomplete result as successful. #100523 Thanks @cxbasdev.
- Crestodian setup and local-tool checks no longer terminate OpenClaw when a probed command encounters a rare output-stream read failure. #100741 Thanks @lsr911.
web_fetchnow handles malformed or adversarial HTML more predictably, reducing excessive processing and keeping hidden script-like text out of fallback output. #102033 Thanks @pgondhi987.- Screenshot-style images returned by plugin tools over MCP now reach clients as usable results instead of causing the tool call to fail. #90902 Thanks @k-schmidt, @mushuiyu886.
- After one generated video clip is ready, a different next clip can start immediately instead of waiting several extra minutes behind stale duplicate suppression. #96018 Thanks @palomyates516-alt, @vincentkoc.
- Agent runs now stop cleanly when a
write,edit, orapply_patchoperation would make no change, preventing repeated false-progress retries while real mutations and valid sibling edits continue normally. #97044 Thanks @vincentkoc, @zw-xysk. openclaw capability video generatenow returns a bounded, actionable error when a provider URL serves an oversized video without--output. #97549 Thanks @alix-007.openclaw infer image describenow tries configured fallback image models after an explicitly selected model fails and reports which model ultimately succeeded. #98347 Thanks @momothemage.- When a bundled MCP server stops mid-session, users now get a prompt server-specific disconnect message and can clear the dead session by refreshing the catalog. #98738 Thanks @masatohoshino, @vincentkoc.
- Fetching an empty file with an image-style name now returns a clear saved-file path instead of an unusable inline image result. #99370 Thanks @2loch-ness6, @vincentkoc.
- The diffs tool now renders default outputs faster, preserves highlighting for pack-only languages, handles unchanged input clearly, and reports file-render and invalid-patch errors more accurately. #100487
- Natural-language corrections can now become the right pending Skill Workshop improvement after successful or failed turns without repeating old feedback, duplicating
/learn, or replacing proposal context. #100576 Thanks @vincentkoc. - File Transfer folder downloads now either produce a complete verified archive or report a clear read failure instead of crashing or returning partial data. #101590 Thanks @sunlit-deng.
- OpenShell sandbox sessions now start with the intended workspace files in the managed remote directory, avoiding missing-file and wrong-directory failures. d9034da Thanks @vincentkoc.
- The optional common sandbox image now includes Node 24 and pnpm so documented Node-based development tasks can run inside it. eabc12b Thanks @vincentkoc.
- Agent-side
web_searchnow sees the configured provider in the active runtime, so Gateway and channel sessions can keep using providers such as Brave without a restart. #88684 Thanks @alexzhu0, @vincentkoc. - Malformed draft-2020-12 tool schemas from an MCP server now produce an actionable setup error that identifies the external schema and retains the underlying failure. #89619 Thanks @vincentkoc.
- Failed code-mode tool attempts now show the error type, message, and location, giving the model and operator enough detail to diagnose or correct the problem. #95906 Thanks @vincentkoc, @zengwen-dt.
- Prompt templates now preserve intentionally blank quoted arguments so later positional placeholders receive the correct values. #96405 Thanks @lin-hongkuan.
- OpenTelemetry latency dashboards now provide useful duration and context-size distributions for agent and harness work lasting well beyond 10 seconds, including multi-minute runs, without collector-side bucket customization. #96592 Thanks @hcnode, @vincentkoc, @zhiling-chen-20230331.
- When the edit tool cannot match
oldText, its error now points to likely nearby lines and explains common indentation, escaping, and whitespace differences, reducing blind retries. #97038 Thanks @aocogoal-gethub, @vincentkoc, @zoowh. - MCP tools now receive optional null values correctly instead of having them changed into empty strings that can break valid calls. #97212 Thanks @vincentkoc, @zw-xysk.
- Successful Codex thread-goal reads now appear as successful in model context, transcripts, and diagnostics instead of being recorded as failed tool calls. #98659 Thanks @yetval.
- Skill Workshop approval prompts now include the proposal details needed to apply, reject, or quarantine a change, while unanswered requests stay safely pending and return a clear timeout message. #100498
- When users say things like "next time" or "remember to," OpenClaw can now offer one reviewable Skill Workshop proposal without requiring autonomous capture or repeatedly prompting after dismissal. #100692
- Legacy task upgrades now restore persisted tasks automatically, preventing linked TaskFlows from falsely reporting them missing or requiring manual SQLite recovery. #103946 Thanks @bek91, @theo674.
- Remote browser CDP connections now accept URL-encoded Basic auth credentials containing spaces, at signs, and other reserved characters. #97972 Thanks @vectorpeak.
- Malformed browser fill data supplied through
--fieldsor--fields-filenow produces a clear actionable error and exits before any browser action starts. #98861 Thanks @lsr911. - Running
/newor/resetin a direct message now closes that conversation's managed browser tabs while leaving other people's tabs alone, even through a brief browser connection hiccup. #100792 Thanks @fmls. - Agents can now screenshot a selected background Chromium tab without waiting for the browser command to time out, though capture may bring that tab forward. #100857 Thanks @spencer2211.
- Managed local browser pages can navigate normally under a restrictive
browser.ssrfPolicy.hostnameAllowlist, while remote CDP endpoints and disallowed destinations remain blocked. #100986 Thanks @nianjiuzst, @sarinv. - Browser screenshots used privately for visual inspection are no longer attached automatically to channel replies and are shared only when explicitly requested. #101434
- Browser automation attached to an existing Chrome session now stops with a bounded error when Chrome crashes or a request is cancelled, and later requests can reconnect cleanly. #101454 Thanks @aniruddhaadak80.
- Browser uploads on re-rendering pages now recover more reliably and expose the real stale-reference or action error instead of a generic timeout. #101465 Thanks @diwakarrankawat, @m13v, @tigicion.
- Browser response bodies and page snapshots now stay valid and readable when output is shortened near an emoji. #101761 Thanks @mushuiyu886.
- Browser Control users who are missing Playwright now receive a working documentation pointer for installing or repairing the required browser runtime. d460635
- Browser Control can now emulate no explicit color preference with
openclaw browser set media no-preference, and invalid values list every supported choice. 9133118 - Browser POST actions now complete on supported Node 24.16 and newer runtimes after JSON parsing while still cancelling when the client disconnects. 52044e1 Thanks @obviyus, @vincentkoc.
- Cron job updates can now remove a job-specific fallback model setting so scheduled runs inherit the global defaults again without recreating the job. #100801 Thanks @sunnyshu0925.
- Completed heartbeat tasks remain recorded when the quiet
HEARTBEAT_OKacknowledgment cannot be delivered, reducing repeated work and duplicate follow-up actions on the next heartbeat. #100834 Thanks @machine3at, @vincentkoc. openclaw cron editnow finds jobs more reliably and with less delay on Gateways that contain many scheduled jobs, including--exactand timeout-only edits. #100836 Thanks @machine3at, @vincentkoc.- Editing a cron payload with
--no-best-effort-deliverno longer silently changes the job's delivery mode to announcements. #100846 Thanks @machine3at. - Using
openclaw cron edit <id> --no-best-effort-deliveron an older detached job no longer accidentally suppresses its completion announcement. #101027 - Agent and MCP cron requests using mixed-case command labels now fail closed instead of slipping past the restriction on shell-backed agent cron jobs. #101350 Thanks @pgondhi987.
- Replies now correctly confirm reminders scheduled through commands such as
openclaw cron addinstead of also claiming that no reminder was created. #101807 Thanks @bryantegomoh, @vincentkoc. - When an installed
fdorrgbinary is unusable, agent search can now install a working copy and recover instead of failing repeatedly. #96361 Thanks @miorbnli. - Link understanding now keeps page fetching available for the slowest configured fallback and applies
tools.links.timeoutSecondsconsistently regardless of model order. #100731 Thanks @aniruddhaadak80, @cxbasdev. - A failed
findsearch now returns one contained tool error and stops itsfdprocess instead of risking an agent crash or orphaned search. #101158 Thanks @cxbasdev. - Stopping a chat through
chat.abortcan now find and terminate its matching embedded run instead of reporting failure while the underlying tool process continues. #101222 Thanks @zoowh. - Tool Search now fails the affected call cleanly and terminates its unusable child when the diagnostic stream breaks, rather than risking a stranded request or Gateway crash. #101295 Thanks @cxbasdev.
- Broken child-process output, timeouts, and aborts during agent shell commands are now contained instead of causing rare Gateway crashes. #101370 Thanks @wings1029.
- QMD command pipe failures now report a clean memory-operation error instead of taking down the memory host. #101402 Thanks @wings1029.
- Terminal task lists now shorten emoji-heavy summaries without leaving broken replacement characters in the row. #101600 Thanks @maweibin.
- Markdown beginning with text such as
---notor----now remains ordinary content instead of being mistaken for frontmatter and stripped. #101795 Thanks @nianjiuzst. - OpenShell sandbox uploads now place workspace directories at the requested remote path so sandbox commands can reliably find their files. #96303 Thanks @vincentkoc.
- Multi-page scanned PDFs now keep later pages at a usable image size during fallback extraction, allowing vision models to read the full document. #96390 Thanks @cls3389, @vincentkoc, @zengwen-dt.
- Multi-attachment prompts now keep real captions while removing duplicate transport markers and placeholder-only text that could confuse the model. #96431 Thanks @lin-hongkuan.
- GIF attachments are now recognized despite normal Content-Type parameters, spaces, or mixed casing instead of falling through as another media type. #96435 Thanks @lin-hongkuan.
- Valid inline image data URLs without trailing base64 padding are now accepted, while malformed image payloads remain blocked. #96437 Thanks @lin-hongkuan, @vincentkoc.
- Video inputs near the configured size boundary are now accepted or rejected according to their actual byte size, avoiding unexpected failures for files that are still within the limit. #96519 Thanks @lin-hongkuan, @vincentkoc.
- Requesting nonexistent PDF pages now returns a clear range error instead of accidentally sending the entire document to a native provider. #97698 Thanks @zhangguiping-xydt.
- Message-tool calls with an invalid Gateway timeout now return an immediate validation error instead of appearing to stall. #98652
- Markdown frontmatter now preserves null-valued fields named
toString,constructor,valueOf, orhasOwnPropertyinstead of silently dropping metadata from skills, hooks, or commands. #99129 Thanks @vincentkoc, @zenglingbiao. - Progress summaries for inline scripts and generated files no longer present heredoc content as extra shell commands that ran. #99379 Thanks @zengwen-dt.
- Fractional PDF page selections such as
1.5now fail immediately with a clear validation error instead of silently omitting requested content. #99399 Thanks @qingminglong. - The agent
findtool now reports an interrupted or failed directory search as an error instead of returning a partial match list as complete. #99446 Thanks @zhangguiping-xydt. - Failed exact-match edits now show readable current-file context even when truncation falls beside an emoji or other non-BMP character. #99527 Thanks @mikasa0818.
- Invalid plugin approval requests now show the actual validation problem instead of misleading users with a Gateway-unavailable error. #100337 Thanks @tzy-17.
- Skill Workshop now explains when tool policy is hiding
skill_workshopand shows the exactalloworalsoAllowchange needed to enable manual review calls. #100654 Thanks @wangwllu. - Oversized ClawHub packages, skills, ClawPacks, resolver archives, and GitHub-source downloads now stop with a clear size-limit error before they can exhaust Gateway memory. #101176
- Automatic session rotation is less likely to strand the next conversation when a context-engine plugin immediately reads or checkpoints its transcript. #101192
- Recovered
web_fetchspill files now keep emoji intact and report the actual safely written length when a long page exceeds the inline limit. #101312 Thanks @alix-007. - Repeated failed or cancelled agent directory listings now release their cancellation listeners, avoiding listener buildup over time. #101588 Thanks @lzw112.
- Long IDs and scopes no longer push
openclaw commitmentscolumns out of alignment, keeping the table readable at a glance. #95923 Thanks @parveshsaini. web_fetchnow preserves emoji, mathematical symbols, extended Unicode, and intentionally escaped numeric entity text more faithfully. #96268 Thanks @ly-wang19.- DuckDuckGo results now preserve intentional entity notation such as
<and'instead of silently changing titles, snippets, or URLs. #96348 Thanks @ly-wang19, @vincentkoc. - Canvas embed replies now retain their visible message text when a self-closing embed shortcode is followed by an extra closing marker. #96449 Thanks @ly-wang19.
- Bracketed labels in Markdown citations no longer make link understanding fetch display-only URLs that the user did not intend to retrieve. #96476 Thanks @ly-wang19, @vincentkoc.
- DuckDuckGo search pages containing malformed numeric HTML entities no longer crash parsing or inject broken Unicode into titles, URLs, and snippets, while valid emoji entities remain supported. #96583 Thanks @llagy007, @weeli-009.
- Shortened tool descriptions in catalogs and
/tools verboseno longer split emoji or other Unicode characters into garbled replacement symbols. #98644 Thanks @zengwen-dt. - Internal hook authors now receive a warning when a likely event-name typo would otherwise leave a hook silently inactive. #99456 Thanks @masatohoshino.
- Codex session tools now honor their requested seconds-based timeout and return their own useful timeout status instead of ending early. #100722 Thanks @carterstebbins23-spec, @cxbasdev.
- Cancelled ACP background tasks now appear as cancelled in task lists, summaries, and parent-run updates rather than being reported as successful. #101245 Thanks @masatohoshino.
- Tool-using Anthropic-family requests can now fail over to OpenAI without a 400 error caused by an incompatible tool format. #101443 Thanks @chrisbaker2000.
Additional contributions
- Modernized internal configuration tracking without changing how configuration updates are detected. #59695 Thanks @yonganzhang.
- Improved bug-report forms so reporters can attach screenshots or recordings while keeping logs readable. #73649 Thanks @d1rshan.
- Strengthened Android gateway authentication coverage by making a timing-sensitive recovery check more reliable. #83826 Thanks @neatguycoding.
- Added clearer policy coverage reporting so maintainers can spot gaps as security-sensitive configuration evolves. #87081 Thanks @giodl73-repo.
- Restored reliable changed-code validation for plugin discovery work without altering plugin behavior. #87695 Thanks @vincentkoc.
- Strengthened coverage for binding Codex conversations without an explicit model, protecting the default workflow from regressions. #89535 Thanks @kesslerio.
- Clarified internal fallback behavior so future maintenance is less likely to mishandle provider errors or older model responses. #89558
- Documented compaction retry timing behavior to make future maintenance safer without changing runtime behavior. #89585
- Expanded browser safety coverage on Windows systems that support directory links, improving test portability. #90365 Thanks @aniruddhaadak80.
- Corrected contributor attribution so guanbear's merged work can be credited properly in generated contributor records. #90547 Thanks @guanbear.
- Added earlier validation for channel settings, reducing the chance of configuration changes causing gateway startup errors. #91134 Thanks @luoyanglang.
- Fixed local Python test setup so contributors can run the supported pre-commit checks reliably. #91276 Thanks @deepujain.
- Made the QA maturity scorecard easier to find and clarified how maintainers should update its documentation. #91483 Thanks @romneyda.
- Added repeatable Slack QA coverage for Codex command and file-change approvals. #91519 Thanks @kevinslin.
- Strengthened coverage so GitHub Copilot reasoning choices stay aligned with each account's supported models. #91728 Thanks @saju01.
- Reduced live-test disk usage by avoiding unnecessary copies of large Gemini browser data while preserving required credentials. #91907 Thanks @bryantegomoh, @pikaqqqqqq.
- Expanded automated security review for code that launches local processes, helping catch high-severity risks before merge. #92667 Thanks @hxy91819.
- Improved automated test cleanup and guidance, reducing leftover temporary files and inconsistent test setup. #93209 Thanks @hxy91819.
- Added routine smoke validation that helps maintainers catch and diagnose broad regressions earlier. #94291 Thanks @romneyda, @solvely-colin.
- Strengthened coverage to keep streamed Telegram replies inside the forum topic where the conversation began. #94526 Related #89352. Thanks @pmika, @xialonglee.
- Made validation faster and easier to inspect for small extension or script edits while preserving full checks when needed. #94708 Thanks @romneyda.
- Added regression coverage so code identifiers with underscores remain readable in the terminal interface. #95211 Thanks @zhangguiping-xydt.
- Expanded documentation discovery to include MDX pages, preventing real guides from being omitted. #95230 Thanks @hugenshen.
- Made QQBot and Zalo security tests depend on actual symlink support instead of the operating system name. #95531 Thanks @aniruddhaadak80, @vincentkoc.
- Made Control UI localization checks run reliably on Windows without changing translated content. #95534 Thanks @ooiuuii.
- Strengthened WhatsApp QA around messages, reactions, replies, media, polls, approvals, and group behavior. #95622 Thanks @mcaxtr.
- Prevented pre-commit formatting from unexpectedly rewriting files during merges, rebases, cherry-picks, and reverts. #95842 Thanks @nxmxbbd, @vincentkoc.
- Enabled repeatable WhatsApp integration testing against a controlled local service without requiring live credentials. #95920 Thanks @romneyda.
- Added a generated documentation map so contributors can locate relevant guides quickly and detect stale navigation. #95954 Thanks @glenn-agent.
- Improved cleanup and isolation in auto-reply and skill-install tests, reducing temporary-disk buildup. #96058 Thanks @xialonglee.
- Added regression coverage ensuring memory search can recover after a separate reindex without restarting the gateway. #96094 Related #91167. Thanks @849261680, @kiagentkronos-cell.
- Prepared conversation checkpoints for future storage changes without changing branch or restore behavior. #96222 Thanks @jalehman.
- Prepared startup-session handling for future storage changes without changing isolation or cleanup behavior. #96225 Thanks @jalehman.
- Added a maintainer runbook for diagnosing and tuning build capacity without confusing it with unrelated failures. #96302 Thanks @vincentkoc.
- Made pull-request smoke testing faster and more predictable while retaining broader release coverage. #96320 Thanks @romneyda.
- Improved QA run logs so maintainers can immediately identify the channel being tested. #96327 Thanks @romneyda.
- Prevented repeated tool calls in QA scenarios from causing false duplicate-identifier failures. #96338 Thanks @vincentkoc.
- Streamlined smoke testing to deliver faster feedback while preserving the intended QA coverage. #96340 Thanks @romneyda.
- Improved cleanup across command tests, reducing leftover temporary data in local and automated runs. #96359 Thanks @xialonglee.
- Strengthened coverage for safely handling oversized or malformed provider usage responses. #96360 Thanks @solodmd, @vincentkoc.
- Prevented valid Codex long-context results from causing false QA failures while still checking that earlier evidence remains available. #96366 Thanks @vincentkoc.
- Improved QA evidence traceability by recording the actual source revision used for each run. #96434 Thanks @vincentkoc.
- Added coverage for command output and warning formatting to reduce future presentation regressions. #96448 Thanks @dwc1997.
- Prepared session status and model selection for future storage changes while preserving current behavior. #96460 Thanks @jalehman.
- Prepared Feishu previews and Mattermost model summaries for future session-storage changes without changing behavior. #96507 Thanks @jalehman.
- Modernized Telegram's internal session handling while preserving polling, lookup, sending, and deletion behavior. #96524 Thanks @jalehman.
- Prepared bundled channel session handling for future storage changes without altering routing, model choices, or user workflows. #96527 Thanks @jalehman.
- Prepared WhatsApp group activation settings for future storage changes while preserving existing activation behavior. #96530 Thanks @jalehman.
- Modernized Voice Call's internal session handling without changing replies or call behavior. #96539 Thanks @jalehman.
- Made the QA maturity scorecard reflect partial coverage more accurately and show what evidence is still missing. #96543 Thanks @romneyda.
- Gave Claude CLI QA runs the appropriate longer time limits for Sonnet and Opus models. #96567 Thanks @clawsean.
- Clarified how maturity is scored while keeping coverage visible as supporting evidence. #96594 Thanks @romneyda.
- Made full QA evidence the default for maturity scorecard updates, preventing incomplete evidence from shaping results. #96595 Thanks @romneyda.
- Reduced repeated processing when the gateway reads metadata from very large transcript records. #96707 Thanks @vincentkoc, @yonganzhang.
- Improved temporary-file cleanup across configuration, gateway, scheduling, and state tests. #96711 Thanks @xialonglee.
- Documented how contributors should route issues, support requests, security reports, and pull requests. #96714 Thanks @100yenadmin.
- Strengthened coverage for verbose command-line logging to reduce future regressions. #96735 Thanks @dwc1997, @vincentkoc.
- Added coverage for terminal output and non-exiting command behavior, improving maintainability without changing the interface. #96736 Thanks @dwc1997.
- Clarified exported-session template code to make future maintenance less error-prone without changing rendered pages. #96765 Thanks @qiuyuang.
- Preserved token and cost totals when oversized exported run records are trimmed. #96811 Thanks @aleps001, @joshavant, @lin-hongkuan.
- Reduced routine build overhead by pausing unused timing-summary collection while keeping it available for future diagnostics. #96930 Thanks @romneyda.
- Reduced repeated browser work in large usage dashboards while preserving filters, totals, charts, and timelines. #96945 Thanks @ly-wang19.
- Reduced repeated work when plugins resolve cached tool calls without changing tool selection. #96948 Thanks @ly-wang19.
- Reduced bookkeeping during updates that encounter many missing plugin files while preserving repair decisions and warnings. #96950 Thanks @ly-wang19.
- Reduced unnecessary processing for local memory installations configured to use shorter embedding vectors. #96952 Thanks @ly-wang19, @vincentkoc.
- Made status reporting more efficient for installations with large session histories while preserving the same recent-session summary. #96955 Thanks @ly-wang19.
- Reduced CPU and temporary memory use when branching or restoring sessions with many saved checkpoints. #96964 Thanks @ly-wang19.
- Published the approved, detailed v2026.6.10 release story with clearer explanations, sources, and contributor attribution. #97079 Thanks @hannesrudolph.
- Recorded previously shipped pagination for inspecting older sections of long session histories. #97101 Thanks @galiniliev.
- Added translation coverage tracking for Android, iOS, and macOS interface text across supported locales. #97110 Thanks @vincentkoc.
- Added a consistent translation workflow for native app text across 21 locales, including safeguards for placeholders and terminology. #97113 Thanks @vincentkoc.
- Clarified macOS release instructions so maintainers use the correct repositories and source revisions for each publishing step. #97116 Thanks @romneyda.
- Adjusted automated build capacity to reduce avoidable Linux queueing while retaining existing safeguards for other platforms. #97119 Thanks @vincentkoc.
- Published the reviewed v2026.6.9 release story in the changelog with clearer grouping, sources, and attribution. #97124 Thanks @hannesrudolph.
- Made Nostr duplicate protection handle invalid timing values safely, preventing events from being forgotten too soon or retained forever. #97133 Thanks @zhangguiping-xydt.
- Connected existing end-to-end tests to the QA maturity inventory for more accurate coverage reporting. #97150 Thanks @romneyda.
- Made macOS packaging logs easier to follow by clearly identifying each product and architecture being built. #97151 Thanks @romneyda.
- Narrowed Matrix's native encryption repair process while preserving the same automatic recovery behavior. #97181 Thanks @patrick-erichsen.
- Added an index for repository scripts so contributors can find the right existing tool without disrupting established paths. #97250 Thanks @dboone323, @qingminglong.
- Aligned a historical changelog heading with the current release-note structure without changing its claims. #97297 Thanks @hannesrudolph.
- Restored the concise v2026.6.9 changelog while a release-page-compatible replacement could be prepared. #97306 Thanks @hannesrudolph.
- Added Cursor's command-line agent as an optional engine for repository code reviews. #97348 Thanks @hxy91819.
- Protected OpenClaw from excessive memory use when an agent proxy returns an unusually large error response. #97351 Thanks @zhangguiping-xydt.
- Made QA coverage reporting more accurately reflect existing OpenAI-compatible provider tests. #97369 Thanks @romneyda.
- Stabilized session migration testing while preserving focused coverage for Voice Call session handling. #97370 Thanks @romneyda.
- Connected existing Tool Search gateway coverage to the standard QA inventory for clearer tracking. #97374 Thanks @romneyda.
- Moved Tool Search gateway validation into the standard QA workflow for consistent execution and evidence collection. #97478 Thanks @romneyda.
- Protected Matrix QA runs from excessive memory use when a homeserver returns an unusually large response. #97547 Thanks @alix-007.
- Protected Discord smoke checks from excessive memory use when the service returns an unusually large response. #97548 Thanks @alix-007, @vincentkoc.
- Refreshed plugin SDK validation limits to match the current public surface while preserving future growth checks. #97604 Thanks @romneyda.
- Improved QA traceability for gateway connection, protocol negotiation, and startup retry behavior used by MCP channel bridges. #97609 Thanks @romneyda.
- Moved WebChat automatic text-to-speech validation into the standard QA workflow for consistent coverage and reporting. #97632 Thanks @romneyda.
- Contributed to the released fix that preserves Discord replies after large skill data is saved. #97657 Thanks @joshavant, @wiidz.
- Restored reliable plugin SDK build validation by removing a conflicting test-only definition. #97661 Thanks @vincentkoc.
- Made existing Docker release and upgrade checks available as structured QA evidence without duplicating the underlying tests. #97689 Thanks @romneyda.
- Clarified why several network and provider paths preserve useful results when secondary cleanup or parsing steps fail. #97701 Thanks @zengwen-dt.
- Brought additional Docker checks into the shared QA inventory, improving release coverage and reducing duplicated validation work. #97708 Thanks @romneyda.
- Added structured QA coverage for ClawHub marketplace listings and packaged plugin installation checks. #97712 Thanks @romneyda.
- Strengthened Firecrawl regression coverage for URL safety, search results, scraping, and response limits. #97714 Thanks @solodmd.
- Strengthened coverage for clear and accurate configuration validation messages. #97736 Thanks @solodmd.
- Added regression coverage for numeric command-line and configuration options, including defaults and boundary values. #97802 Thanks @dwc1997.
- Made intentional exits in tests and wrappers easier to distinguish from real runtime failures. #97803 Thanks @maweibin.
- Added regression coverage for Unicode-safe text slicing, including emoji and split character boundaries. #97805 Thanks @dwc1997.
- Enabled Slack QA flows to run against a local test provider, reducing reliance on live Slack credentials. #97891 Thanks @romneyda.
- Added repeatable release-candidate checks for fresh ClawHub package installation and upgrades before publication. #97896 Thanks @romneyda.
- Clarified the minimum Node.js version for source contributors before they run installation and test commands. #97898 Related #97792. Thanks @aniruddhaadak80, @lin-hongkuan.
- Added structured live QA evidence for hosted image and video providers while preserving existing manual checks. #97900 Thanks @romneyda.
- Improved official plugin publishing reliability by adopting corrected ClawHub package-family detection. #97907 Thanks @patrick-erichsen.
- Reduced transient Windows, macOS, and iOS validation failures by retrying timed-out source checkouts. #97912 Thanks @romneyda.
- Prepared more portable channel QA by making each scenario state its requirements before running. #97915 Thanks @romneyda.
- Made Docker-backed QA checks easier to find and maintain in one supported place. #97937 Thanks @romneyda.
- Reduced duplicated Linux CI configuration so checkout behavior can be maintained consistently. #97940 Thanks @romneyda.
- Kept QA Lab compatible with the current Crabline package and clarified local-provider terminology for operators. #97941 Thanks @romneyda.
- Updated CI capacity guidance so maintainers can size hosted runner bursts using current limits. #97943 Thanks @vincentkoc.
- Consolidated repeated workflow checkout configuration, reducing maintenance drift without changing validation behavior. #97946 Thanks @romneyda.
- Consolidated repeated credential checks for live channel QA without changing what is validated. #97947 Thanks @romneyda.
- Consolidated release QA credential checks across channel jobs while preserving the same validation behavior. #97948 Thanks @romneyda.
- Removed duplicated Docker readiness configuration from Crabbox validation, making future updates easier to keep consistent. #97950 Thanks @romneyda.
- Consolidated repeated Docker build preparation in the release workflow to reduce maintenance drift. #97951 Thanks @romneyda.
- Prepared a discoverable documentation home for polished OpenClaw release notes. #97959 Thanks @hannesrudolph.
- Made channel QA scenarios reusable across supported test environments without changing end-user behavior. #97962 Thanks @romneyda.
- Added regression coverage for consistent numeric values in SQLite-backed workflows. #98009 Thanks @dwc1997.
- Added coverage for global and per-agent command-highlighting settings and their fallback behavior. #98087 Thanks @solodmd.
- Prevented completed Tailscale detection checks from leaving unnecessary timers active during gateway setup. #98134 Thanks @zhanglei99586.
- Protected managed Chrome profiles from receiving malformed blank preference entries in an edge case. #98138 Thanks @zhanglei99586.
- Strengthened regression coverage for gateway node wake and reconnect state handling. #98205 Thanks @zenglingbiao.
- Added coverage for splitting lists consistently across normal and edge-case inputs. #98219 Thanks @zenglingbiao.
- Updated official plugin publishing to use corrected ClawHub tooling for package-family handling. #98233 Thanks @patrick-erichsen.
- Allowed four legacy official plugins to be republished without ClawHub rejecting their established package family. #98249 Thanks @patrick-erichsen.
- Published a readable, discoverable release story for OpenClaw v2026.6.11 in the documentation. #98319 Thanks @hannesrudolph.
- Updated generated documentation metadata so the v2026.6.11 release notes could pass deployment checks. #98325 Thanks @hannesrudolph.
- Added regression coverage for SQLite database version reads used during startup and schema checks. #98369 Thanks @dwc1997.
- Added regression coverage for correctly identifying thinking and redacted-thinking response blocks. #98370 Thanks @dwc1997.
- Added coverage to keep channel accounts enabled by default unless they are explicitly turned off. #98395 Thanks @dwc1997.
- Made maintainer bug sweeps support requested batch sizes and specific pull request lists while preserving existing readiness standards. #98494 Thanks @vincentkoc.
- Restored reliable hosted validation by repairing stale test expectations across core and provider checks. #98533
- Prepared a consistent internal foundation for future conversation-aware access controls without changing current permissions. #98536
- Restored core test typechecking so valid gateway and provider tests no longer blocked unrelated work. #98551 Thanks @romneyda.
- Restored green lint validation while preserving earlier Tailscale and Feishu safety fixes. #98598 Related #98462, #98464. Thanks @zhanglei99586.
- Added regression coverage for readable lists in approval notices and other user-facing messages. #98605 Thanks @dwc1997, @vincentkoc.
- Restored the tooling validation pipeline after new transcript coverage changed the expected test plan. #98610
- Contributed to the fix that keeps long workspace file lists scrollable in the chat sidebar. #98611 Related #98566. Thanks @645648406-max, @zw-xysk.
- Made QA credential requests fail cleanly when a shared broker returns an unexpectedly large response. #98619 Thanks @zengwen-dt.
- Prevented message-tool tests from timing out while preserving the plugin behavior they verify. #98701
- Consolidated repeated provider and utility loading patterns to improve consistency and maintainability. #98749 Thanks @romneyda.
- Strengthened QA proof that native stop commands interrupt the correct active conversation across supported test environments. #98751 Thanks @romneyda.
- Expanded QA coverage for Signal, Mattermost, and Matrix setup and message normalization through Crabline. #98779 Thanks @romneyda.
- Restored documentation and test type checks without changing the attach command's behavior. #98792
- Placed Telegram reliability guidance where contributors and reviewers will encounter it during future extension work. #98808 Thanks @obviyus.
- Made macOS Swift validation recover from incomplete build caches instead of repeating the same failure. #98818
- Kept native translation inventory checks responsive when scanning unusual source labels. #99098 Thanks @hxy91819.
- Protected QA Lab Telegram checks from excessive memory use when the Telegram API returns an unexpectedly large response. #99151 Thanks @hugenshen.
- Made QA Lab configuration checks stop early and clearly on unexpectedly large Gateway responses. #99165 Thanks @hugenshen.
- Protected QA Channel workflows from excessive memory use when a QA service returns oversized data. #99169 Thanks @hugenshen.
- Reduced false CI failures in reply-session concurrency coverage by making test coordination more reliable. #99212
- Prevented test-only proxy assertions from causing false network-safety validation failures. #99233 Thanks @joshavant.
- Established a shared internal foundation for loading runtime modules consistently without changing behavior. #99261 Thanks @romneyda.
- Added QA coverage for Signal message sends through Crabline and their normalized results. #99262 Thanks @romneyda.
- Added QA coverage to ensure Mattermost replies remain tied to the correct group conversation through Crabline. #99264 Thanks @romneyda.
- Added QA coverage to ensure Matrix messages remain tied to the correct room through Crabline. #99265 Thanks @romneyda.
- Consolidated repeated loading patterns across core runtime areas to reduce maintenance drift. #99278 Thanks @romneyda.
- Reduced transient QA smoke timeouts under heavy CI load without changing product behavior. #99294 Thanks @romneyda.
- Consolidated Gateway and stateful runtime loading patterns to improve consistency and maintainability. #99296 Thanks @romneyda.
- Unified repeated loading patterns across Discord, Slack, and Telegram while preserving existing channel behavior. #99298 Thanks @romneyda.
- Unified repeated loading patterns across Matrix and other channels to reduce future maintenance risk. #99302 Thanks @romneyda.
- Added end-to-end QA coverage for Zalo setup, inbound delivery, and outbound message normalization through Crabline. #99303 Thanks @romneyda.
- Restored reliable lint validation for the Memory Wiki extension without changing its behavior. #99307 Thanks @romneyda.
- Made streaming QA evidence prove that a channel shows a preview before the final answer. #99310 Thanks @romneyda.
- Added a guarded monthly npm publication path for release maintainers without moving the normal latest channel. #99352 Thanks @kevinslin.
- Restored CI checks for Telegram context handling and supported plugin SDK boundaries. #99355 Thanks @romneyda.
- Consolidated repeated data-shape checks across core code to improve consistency and maintainability. #99359 Thanks @romneyda.
- Consolidated repeated data-shape checks across bundled plugins to reduce maintenance drift. #99361 Thanks @romneyda.
- Reduced intermittent QA smoke timeouts when several isolated Gateway checks run together on limited CI hardware. #99368 Thanks @romneyda.
- Standardized QA results and diagnostics so release validation is easier to compare and trust. #99374 Thanks @romneyda.
- Restored clean-checkout Gateway validation after a missing test dependency caused false failures. #99520 Related #99513. Thanks @masatohoshino.
- Kept explicit Bedrock live checks on the real Bedrock runtime so maintainers can validate AWS-backed behavior reliably. #99607 Thanks @brian-bell.
- Made duplicate QA scenario coverage fail clearly so validation results remain trustworthy. #99628 Related #99627. Thanks @romneyda.
- Protected secrets in bounded QA evidence logs and failure details while preserving useful diagnostics. #99629 Thanks @romneyda.
- Simplified channel QA setup and made unsupported test actions fail more clearly. #99632 Related #99622. Thanks @romneyda.
- Reduced false cross-platform release-check failures around static server shutdown. #99642 Thanks @romneyda.
- Reduced intermittent Crabline QA failures caused by partially written test output. #99649 Related #99648. Thanks @romneyda.
- Reduced false QA failures by giving native stop-command recovery the full expected turn time. #99656 Related #99655. Thanks @romneyda.
- Consolidated numeric limit handling across OpenClaw to improve consistency and maintainability. #99671 Related #99667. Thanks @romneyda.
- Consolidated repeated string-option handling across commands, configuration, providers, and channels without changing behavior. #99676 Related #99663. Thanks @romneyda.
- Made local-provider activity appear promptly and consistently in Crabline-backed QA. #99679 Related #99664. Thanks @romneyda.
- Made configured model references more consistent across the catalog, agent runtime, Gateway, and plugins without changing intended behavior. #99682 Related #99674. Thanks @romneyda.
- Consolidated internal hashing for identifiers and validation records without changing their outputs. #99687 Related #99675. Thanks @romneyda.
- Consolidated tolerant JSON handling across several internal workflows to reduce duplication and future drift. #99688 Thanks @romneyda.
- Unified internal work ordering across account, session, file, message, and plugin paths while preserving existing behavior. #99691 Thanks @romneyda.
- Removed redundant list-cleanup layers across channels, agents, the CLI, and diagnostics to make maintenance clearer. #99702 Related #99697. Thanks @romneyda.
- Strengthened release validation for important chat, search, compatibility, and plugin workflows. #99705 Thanks @romneyda.
- Expanded shared live-channel QA coverage for Telegram, Slack, WhatsApp, and Matrix while preserving each channel's existing behavior. #99707 Thanks @romneyda.
- Restored reliable package and Docker preparation from clean checkouts. #99710 Thanks @romneyda.
- Standardized reference-image formatting across media providers to reduce maintenance drift without changing generated-media behavior. #99715 Thanks @romneyda.
- Strengthened validation of the interactive Telegram setup flow, including saving the resulting configuration. #99717 Thanks @romneyda.
- Consolidated internal text cleanup while preserving terminal formatting and outbound-message safety. #99718 Thanks @romneyda.
- Made web and WebSocket address validation more consistent across configuration, proxy, media, webhook, and plugin workflows. #99719 Thanks @romneyda.
- Consolidated common waiting and timeout behavior across core workflows, plugins, tools, and tests without changing intended timing. #99721 Thanks @romneyda.
- Strengthened release coverage for real Gateway and MCP startup, connections, discovery, negotiation, and tool calls. #99735 Thanks @romneyda.
- Made combined release validation more reliable by preventing missing packaged runtime files. #99736 Related #99734. Thanks @romneyda.
- Added stronger runtime coverage for voice, media, scheduling, browser cleanup, and telemetry workflows. #99737 Thanks @romneyda.
- Reduced false validation timeouts for native command session targeting under busy conditions. #99743 Thanks @romneyda.
- Unified safeguards for downloading bounded HTTP responses across agents, providers, the Gateway, plugins, documentation, and media. #99744 Thanks @romneyda.
- Centralized credential masking and secure secret comparison to keep authentication behavior consistent across supported workflows. #99746 Thanks @romneyda.
- Made true-or-false setting interpretation consistent across plugins, messaging, media, scheduling, and memory configuration. #99750 Thanks @romneyda.
- Unified cancellation handling so stops and timeouts remain consistent across agent, Gateway, reply, media, and process workflows. #99753 Thanks @romneyda.
- Consolidated repeated internal task handoffs across setup, approvals, agent turns, and plugins without changing behavior. #99755 Thanks @romneyda.
- Consolidated Voice Call route handling while preserving webhook and realtime matching. #99766 Thanks @romneyda.
- Simplified test maintenance by consolidating repeated local network setup. #99771 Thanks @romneyda.
- Simplified maintenance of the paired BytePlus and Volcengine model catalogs without changing provider behavior. #99777 Thanks @romneyda.
- Standardized text-pattern escaping across maintainer automation to reduce duplication and future inconsistencies. #99778 Thanks @romneyda.
- Made primary release validation faster and more reliable while retaining runtime and telemetry coverage. #99784 Thanks @romneyda.
- Consolidated duplicate list-cleanup behavior used in provider resolution and execution authorization. #99785 Thanks @romneyda.
- Unified numeric limit handling across agent workflows while preserving their existing allowed ranges. #99786 Thanks @romneyda.
- Consolidated internal hashing across authentication, sessions, approvals, identifiers, and plugins without changing compatibility. #99788 Thanks @romneyda.
- Extended consistent provider and model reference handling across media, speech, agent policy, and diagnostic workflows. #99790 Thanks @romneyda.
- Improved release-validation reliability by reducing package-build memory pressure. #99793
- Aligned internal conversation audience labels with verified group context for future access-control work. #99816
- Improved artifact-build reliability by preventing memory-related validation failures. #99820
- Consolidated shared channel state and plugin migration maintenance across Slack, Mattermost, Teams, and Matrix without changing workflows. #99850
- Made Control UI chat styling more predictable to update, with no intended visual change and less risk of regressions. #99900
- Made QA report command validation substantially faster and less memory-intensive without changing its results. #99909
- Corrected command output shortening so zero or invalid length limits no longer produce text beyond the requested size. #99917 Thanks @super-cabbage.
- Made plugin development surface validation faster and less memory-intensive without changing what it verifies. #99940
- Removed an unused Slack download path, reducing security-sensitive maintenance while preserving private-file and image downloads. #99944 Thanks @miorbnli.
- Sped up update-command coverage while retaining validation of managed-service restart failures. #99945
- Made Crabbox wrapper coverage faster and lighter while preserving the same behavioral checks. #99969
- Reduced unnecessary waiting in Docker scheduler coverage without changing runtime scheduling behavior. #99988
- Made lightweight realtime validation tools start faster and use less memory while preserving live smoke behavior. #100002
- Sped up package-candidate safety validation without changing the protections it provides. #100008
- Prevented Codex plugin releases from publishing with an outdated embedded runtime, reducing false-green updates. #100015 Thanks @100yenadmin, @fuller-stack-dev.
- Reduced memory use and kept isolated tests within their performance budget for faster, more dependable contributor feedback. #100019
- Restructured the Control UI for more predictable navigation, cleaner page transitions, and less unnecessary screen updating. #100024 Thanks @shakkernerd.
- Improved Matrix QA evidence so maintainers can diagnose request ordering, retries, errors, and state continuity more easily. #100039 Thanks @romneyda.
- Made validation from isolated development checkouts use the code actually under test, avoiding misleading results. #100053
- Removed redundant internal type names so maintainers and plugin developers can follow affected code more directly. #100061 Thanks @romneyda.
- Stabilized local macOS validation so maintainers can prepare releases and changes without host-specific false failures. #100069
- Updated TypeScript linting while avoiding misleading findings and unsafe automated changes. #100083
- Made the documented web-fetch performance benchmark command work as written. #100087 Thanks @vincentkoc.
- Stabilized Control UI routing coverage to reduce false failures around chat and session layouts. #100108 Thanks @vincentkoc.
- Made qa-channel final answers reliably replace previews even when optional delivery details are absent. #100114 Thanks @vincentkoc.
- Strengthened lint protection against accidentally sharing one mutable value across multiple array entries. #100122
- Updated documentation regression coverage to match current wording and prevent unrelated validation failures. #100183 Thanks @vincentkoc.
- Aligned documentation for environment protection, scheduled-task fallback checks, and Talk silence defaults without changing behavior. #100186
- Added repeatable Android chat-streaming coverage for duplicate, missing, stale, timed-out, and malformed messages. #100200
- Added repeatable Apple-platform chat coverage to catch duplicate, missing, reordered, or malformed streamed replies before release. #100201
- Strengthened mobile validation so new Gateway events cannot silently go unhandled by iOS or Android. #100206
- Updated the bundled automated review workflow with current reviewer options, configurable defaults, and stronger execution safeguards. #100210
- Improved the safety and consistency of maintainer validation for heavy workloads and untrusted contributions. #100220
- Isolated unit tests from live local configuration and credentials for safer, more consistent results across machines. #100221
- Let iOS developers keep debug and release apps installed side by side with distinct icons and separate app data. #100222
- Restored clean localization, documentation, and lint validation for the Crestodian onboarding flow. #100223
- Streamlined release publishing by carrying clear approval through the same named release while retaining checks for changed risk. #100239 Thanks @vincentkoc.
- Made release preparation more dependable on busy Macs and strengthened full-suite validation. #100242
- Stabilized OpenClawKit contract and chat coverage under parallel macOS load, reducing false validation failures. #100243
- Restored complete package artifacts for more reliable source, Docker, and plugin development builds. #100249 Thanks @vincentkoc.
- Reduced interruptions during bounded maintainer cleanup by allowing larger approved batches of stale pull requests. #100253
- Cleaned up iOS and Apple Watch debug icons by removing an unintended white outer rim. #100259
- Corrected QA prompt handling so validation responds to the user's actual instruction rather than hidden runtime context. #100272 Thanks @marvinthebored, @obviyus, @peetiegonzalez.
- Strengthened mobile protocol validation so native iOS or Android changes cannot bypass Gateway event coverage. #100278
- Restored a clean Android formatting baseline so contributors can validate and extend recent mobile chat work. #100304
- Prevented pull-request landing validation from exhausting shared service limits while preserving trustworthy results. #100332
- Completed the release record for landed WhatsApp reconnect, quoted-reply, credential-recovery, and delivery-status fixes. #100346 Thanks @bartok9, @leonidaslux, @masatohoshino, @vishalj99.
- Restored compilation of shared Apple-platform tests covering pairing setup results. #100355
- Prevented iOS startup failures when Voice Wake is disabled, including in Simulator development builds. #100370
- Stabilized load-sensitive Matrix, WhatsApp, and process coverage to reduce false failures on busy machines. #100420
- Reduced full-suite memory pressure so local validation is less likely to fail or overwhelm a developer workstation. #100437
- Completed the release record for several already-landed user-visible fixes and their original contributors. #100441
- Fixed a release-validation failure that prevented candidate packages from being prepared. #100459 Thanks @vincentkoc.
- Added the missing release credit for the fix to empty interactive replies. #100464 Thanks @mushuiyu886.
- Simplified the iOS development app label while keeping debug and release installations easy to distinguish. #100466
- Restored release validation for older OpenClaw candidates without weakening checks for current packages. #100469 Thanks @vincentkoc.
- Added repeatable visual evidence that candidate Control UI builds can send a chat message and render the final reply. #100472 Thanks @brokemac79.
- Completed the release record and contributor credit for three already-landed voice fixes. #100473
- Recorded an already-landed remote browser reliability fix while reducing repeated validation work caused by changelog conflicts. #100495 Thanks @hemantsudarshan, @keaneyan.
- Removed an obsolete macOS onboarding test so the current native test target compiles cleanly. #100497 Thanks @steipete-oai.
- Recorded that persistent logins in new isolated macOS browser profiles survive graceful Browser and Gateway restarts. #100507 Thanks @turbotheturtle.
- Strengthened macOS browser proxy test reliability by removing intermittent failures that caused needless reruns. #100517
- Added an accurate release record for managed browser attachment downloads and the file details they return. #100532 Thanks @zhangguiping-xydt.
- Recorded four previously shipped Control UI improvements so the release history and contributor credit remained complete. #100533 Thanks @evan-ym, @qingminglong, @tiffanychum, @xianshishan.
- Reduced unnecessary setup work for models that cannot use tools while preserving existing tool-enabled workflows. #100536 Thanks @vincentkoc.
- Clarified and strengthened retry coverage for Telegram message edits without changing their existing behavior. #100543 Thanks @lzw112.
- Completed the release record for three previously shipped reliability fixes and their contributor credit. #100545
- Documented the shipped Control UI previews that reveal useful GitHub issue and pull request details. #100555
- Added release-history coverage for Apple chat recovery after reconnecting to an active response. #100561
- Recorded three landed fixes covering streamed replies, phone identity handling, and bounded Tlon responses. #100562 Thanks @hugenshen, @morluto, @totobusnello.
- Added a traceable release record for safer browser action downloads and preserved user-owned tabs. #100575 Thanks @sunlit-deng.
- Reduced unnecessary repeat validation when concurrent pull requests land without changing the prepared patch. #100593
- Completed changelog coverage for five shipped Control UI and terminal interface fixes. #100599 Thanks @goutamadwant, @haishmg, @ml12580, @ruanrrn, @vincentkoc, @zengwen-dt.
- Restored documentation validation and indexing for the managed-worktrees guide. #100603
- Recorded three shipped plugin and configuration fixes so their release coverage remained complete. #100609 Thanks @vincentkoc.
- Corrected Workboard validation so legitimate cleanup behavior no longer caused false failures. #100611
- Simplified Control UI navigation maintenance while preserving saved sidebar choices and existing behavior. #100612
- Reduced duplicated and unused internal code across several areas, making future maintenance more consistent. #100650 Thanks @vincentkoc.
- Avoided redundant hosted validation after clean rebases when the prepared change was demonstrably unchanged. #100663
- Expanded the Android release record to include five previously shipped app improvements. #100702
- Restored core Gateway and code-quality validation so unrelated changes could proceed reliably. #100703
- Updated package acceptance coverage to reflect the current pinned Claude CLI setup. #100723 Thanks @vincentkoc.
- Added release coverage for corrected model labels and durable inbound-image previews in the Control UI. #100740 Thanks @hyspacex, @sweetcornna.
- Completed the prerelease record for four previously landed fixes and their contributors. #100781
- Completed developer support and validation for integrations using managed-worktree session results. #100793
- Made managed-worktree session results available through the supported developer interface. #100804
- Removed obsolete internal code and legacy Android artifacts, leaving a smaller maintenance surface. #100823 Thanks @vincentkoc.
- Pruned unused core runtime paths to make ownership and future maintenance easier to understand. #100856 Thanks @vincentkoc.
- Narrowed stale internal UI and provider surfaces, improving the accuracy of maintenance reports. #100882 Thanks @vincentkoc.
- Strengthened regression coverage for setting up Hugging Face local apps with compatible local model servers. #100887 Thanks @osolmaz.
- Improved the consistency of compact Android voice and screen captures used for release review. #100895 Thanks @iwhatsskill.
- Realigned validation with current Codex, Gateway, and Control UI behavior to prevent misleading failures. #100897 Thanks @vincentkoc.
- Restored compilation of shared Apple platform tests used to validate iOS and macOS chat changes. #100903
- Tightened internal agent code boundaries so maintainers have fewer accidental interfaces to preserve. #100909 Thanks @vincentkoc.
- Reduced the Control UI's internal surface while keeping its visible behavior unchanged. #100931 Thanks @vincentkoc.
- Made focused Control UI end-to-end checks prepare their required media tools automatically. #100950 Thanks @vincentkoc.
- Removed stale and unsupported Control UI development interfaces to reduce accidental dependencies. #100952 Thanks @vincentkoc.
- Prevented routine iOS package resolution from leaving unrelated local file changes behind. #100961
- Clarified Telegram's internal boundaries so private implementation details are less likely to become dependencies. #100975 Thanks @vincentkoc.
- Simplified Workboard's internal development surface without changing how Workboard behaves. #100989 Thanks @vincentkoc.
- Made plugin registry expectations clearer and easier to validate without changing runtime behavior. #100990 Thanks @romneyda.
- Consolidated duplicated script contracts so maintenance changes are easier to validate consistently. #100992 Thanks @romneyda.
- Simplified Gateway client maintenance by consolidating repeated internal contracts while preserving compatibility. #101012 Thanks @romneyda.
- Reduced unused Control UI development surface and noise in future maintenance reports. #101013 Thanks @vincentkoc.
- Kept private package code clearly internal, improving ownership boundaries and dead-code reporting. #101041 Thanks @vincentkoc.
- Strengthened Docker release validation by proving documented services and packaged installations actually start and run. #101045 Thanks @romneyda.
- Added stronger release evidence for Telegram startup, scheduled activity, and telemetry delivery. #101051 Thanks @romneyda.
- Unified Matrix lifecycle validation across supported test environments, making parity gaps easier to detect. #101055 Thanks @romneyda.
- Centralized channel restart and access-policy scenarios to reduce duplicated QA maintenance. #101063 Thanks @romneyda.
- Unified channel routing coverage so mention, room, allowlist, and reply regressions are easier to catch. #101076 Thanks @romneyda.
- Standardized Telegram and WhatsApp command and session checks across shared and live QA environments. #101080 Thanks @romneyda.
- Restored Android formatting and framework validation, reducing release-blocking maintenance noise. #101081 Thanks @vincentkoc.
- Consolidated Slack and Matrix thread and direct-message coverage for clearer cross-channel validation. #101112 Thanks @romneyda.
- Added changelog coverage for a broad set of previously shipped provider, channel, memory, browser, and configuration fixes. #101128
- Hardened QA credential administration against oversized service responses, failing clearly without excessive memory use. #101131 Thanks @cxbasdev.
- Cleaned up the Control UI's internal type surface to make maintenance reports more accurate. #101135 Thanks @vincentkoc.
- Kept private Control UI definitions internal, reducing noise and accidental dependencies for maintainers. #101165 Thanks @vincentkoc.
- Corrected QA smoke selection so routine runs could start instead of failing during setup. #101173 Thanks @romneyda.
- Increased parallel test capacity to reduce avoidable wait time during busy validation runs. #101174 Thanks @vincentkoc.
- Added maintainer validation that prevents new code from bypassing the supported session-storage path. #101178 Thanks @jalehman.
- Prepared compaction, scheduled checks, and session forks for future storage changes without altering behavior. #101179 Thanks @jalehman.
- Prepared session routing, goals, delivery, and compaction tracking for safer storage changes without altering workflows. #101180 Thanks @jalehman.
- Reverted a temporary QA smoke selection change that was not intended to ship. #101184 Thanks @romneyda.
- Temporarily removed an unreliable QA smoke requirement so unrelated contributions were not blocked. #101185 Thanks @romneyda.
- Restored reliable automatic smoke coverage for Matrix and Telegram channel changes. #101186 Thanks @romneyda, @vincentkoc.
- Kept native release validation available when the usual hosted runner capacity was unavailable. #101196
- Stabilized Windows startup fallback coverage and ensured scheduler changes reach the appropriate validation. #101223
- Refreshed native localization tracking after source movement to prevent false validation failures. #101232
- Corrected native localization references so app-related validation remains accurate. #101233 Thanks @vincentkoc.
- Updated the generated documentation index to match the Claude Mythos 5 guidance. #101242
- Reduced accidental internal API exposure and improved the signal from dead-code reviews. #101243 Thanks @vincentkoc.
- Simplified the Control UI's internal module surface while preserving pairing guidance and visible behavior. #101262 Thanks @vincentkoc.
- Made Android development commands find a standard local SDK automatically in fresh checkouts. #101273
- Added automatic Android formatting enforcement to prevent cleanup drift from reaching the main codebase. #101275
- Kept the local debug proxy available and its errors honest when an upstream server ends a response early. #101315 Thanks @sebtardif.
- Prevented Gateway reload and startup tests from hanging when run together. #101331 Thanks @obviyus.
- Narrowed Control UI module boundaries and reduced noise in unused-code checks. #101339 Thanks @vincentkoc.
- Modernized Android build dependencies and validation while keeping the app's target behavior unchanged. #101356
- Reduced unsupported memory SDK surface so developers are less likely to depend on private internals. #101362 Thanks @vincentkoc.
- Restored compilation of shared Apple platform tests used for local validation. #101372
- Clarified the Copilot plugin's internal boundaries without changing its runtime behavior. #101379 Thanks @vincentkoc.
- Reduced accidental API exposure in the GitHub Copilot provider, making its supported boundaries clearer. #101393 Thanks @vincentkoc.
- Kept private plugin details internal, improving dead-code reports and future cleanup. #101406 Thanks @vincentkoc.
- Clarified supported boundaries for the Brave, Firecrawl, and DeepInfra provider plugins. #101425 Thanks @vincentkoc.
- Kept OpenCode Go streaming and catalog internals private so extension developers see clearer integration boundaries. #101440 Thanks @vincentkoc.
- Cleaned up private OpenRouter and SMS plugin definitions to improve internal API accuracy. #101452 Thanks @vincentkoc.
- Enabled release operators to validate an exact extended-stable candidate before its final tag exists. #101466 Thanks @kevinslin.
- Removed an obsolete Android cache-cleanup path, leaving one clearer ownership model. #101470 Thanks @vincentkoc.
- Narrowed the private memory SDK surface and improved the accuracy of maintenance reports. #101508 Thanks @vincentkoc.
- Stabilized Android saved-gateway reconnect coverage to reduce intermittent validation failures. #101519
- Narrowed internal execution-timeout code without changing timeout behavior. #101523 Thanks @vincentkoc.
- Removed stale Control UI maintenance surfaces while preserving visible behavior. #101549 Thanks @vincentkoc.
- Added release-history coverage for the shipped Discord thread-title prompt fix. #101566 Thanks @alix-007.
- Simplified the private memory SDK surface by removing one-use layers and unused interfaces. #101568 Thanks @vincentkoc.
- Contributed to the fix that keeps plugin approval text readable when emoji appear near length limits. #101579 Thanks @wm0018.
- Reduced unused internal memory interfaces, making that code easier to maintain without changing user behavior. #101583 Thanks @vincentkoc.
- Simplified internal Windows process-launching code for memory features without changing how they work. #101594 Thanks @vincentkoc.
- Trimmed unused internal memory interfaces to reduce maintenance overhead while preserving existing behavior. #101604 Thanks @vincentkoc.
- Consolidated unused and duplicate Control UI code to improve maintainability with no intended visual change. #101632 Thanks @vincentkoc.
- Consolidated duplicate Control UI utilities so future changes have fewer paths to keep aligned. #101647 Thanks @vincentkoc.
- Clarified internal boundaries across reply handling and bundled plugins without changing runtime behavior. #101666 Thanks @vincentkoc.
- Removed superseded Android screens and translations, reducing maintenance work while leaving active app flows unchanged. #101680 Thanks @vincentkoc.
- Updated Control UI chat tests to reflect current avatar behavior and reduce stale test assumptions. #101682 Thanks @shakkernerd.
- Prepared chat history handling for future storage changes while preserving existing message and transcript behavior. #101688 Thanks @jalehman.
- Restored reliable Android translation validation after an obsolete app string was removed. #101689
- Prepared conversation branching for future storage changes without changing how parent sessions are copied. #101699 Thanks @jalehman.
- Reduced accidental internal interfaces across core, plugins, and the Control UI to simplify ongoing maintenance. #101701 Thanks @vincentkoc.
- Strengthened compatibility checks for the bundled Codex integration to catch request mismatches before release. #101726 Thanks @vincentkoc.
- Kept private implementation details from appearing as supported integration points, improving codebase maintainability. #101731 Thanks @vincentkoc.
- Expanded release preflight coverage so official plugin packages can be built and inspected before an extended-stable npm release. #101757 Thanks @kevinslin.
- Reduced unused internal declarations across core, plugins, and the Control UI without changing product behavior. #101758 Thanks @vincentkoc.
- Restored Control UI translation validation for the existing native approval interface. #101771
- Narrowed internal code boundaries so maintenance tools can identify unused code more accurately. #101831 Thanks @vincentkoc.
- Added consistent OpenClaw identification to requests sent through the official Google Gemini API. #101834 Thanks @vishal-dharm.
- Cleaned up unused internal declarations across UI and maintenance tools to make code ownership clearer. #101858 Thanks @vincentkoc.
- Reduced accidental internal interfaces in bundled extensions without changing plugin behavior. #101860 Thanks @vincentkoc.
- Tightened internal core boundaries to reduce dead-code noise and simplify future maintenance. #101869 Thanks @vincentkoc.
- Simplified internal test and tooling interfaces, making maintenance and code searches less noisy. #101875 Thanks @vincentkoc.
- Clarified which internal utilities are private, reducing the risk of accidental dependencies during maintenance. #101886 Thanks @vincentkoc.
- Simplified the private surface of Parallels validation tooling without changing its behavior. #101889 Thanks @vincentkoc.
- Reduced unnecessary internal script interfaces to make repository automation easier to understand and maintain. #101892 Thanks @vincentkoc.
- Narrowed Control UI internals to improve dead-code analysis without changing the interface users see. #101894 Thanks @vincentkoc.
- Made plugin tests more portable across common developer and hosted environments. #101896
- Clarified the browser plugin's supported surface by keeping implementation details private. #101898 Thanks @vincentkoc.
- Clarified Microsoft Teams plugin boundaries by keeping private implementation details internal. #101903 Thanks @vincentkoc.
- Simplified internal release and validation tooling interfaces while preserving existing commands. #101904 Thanks @vincentkoc.
- Narrowed internal AI provider interfaces without changing provider behavior or supported entry points. #101907 Thanks @vincentkoc.
- Kept Canvas implementation details private so its supported developer surface remains clear. #101915 Thanks @vincentkoc.
- Reduced unused internal types in repository automation, improving maintainability without changing commands. #101917 Thanks @vincentkoc.
- Clarified internal boundaries in the ClickClack and Logbook plugins without changing their behavior. #101922 Thanks @vincentkoc.
- Kept OC Path implementation details private while preserving its commands and file-editing behavior. #101925 Thanks @vincentkoc.
- Reduced unused internal Memory Wiki interfaces to make future maintenance and dead-code checks clearer. #101931 Thanks @vincentkoc.
- Clarified the iMessage plugin's internal boundaries without changing its capabilities or behavior. #101936 Thanks @vincentkoc.
- Narrowed internal terminal interfaces in the gateway while preserving existing terminal behavior. #101941 Thanks @vincentkoc.
- Reduced accidental internal interfaces in the Discord plugin without changing messaging or voice behavior. #101945 Thanks @vincentkoc.
- Clarified which Feishu integration details are private, making the code easier to maintain. #101949 Thanks @vincentkoc.
- Narrowed Matrix integration internals without changing user behavior or documented configuration. #101954 Thanks @vincentkoc.
- Clarified the WhatsApp integration's supported type surface while preserving messaging behavior. #101959 Thanks @vincentkoc.
- Reduced accidental internal interfaces in the Policy extension without changing its checks or reports. #101963 Thanks @vincentkoc.
- Tightened memory-core boundaries to reduce maintenance risk without changing storage or search behavior. #101969 Thanks @vincentkoc.
- Simplified QA Matrix internals while preserving the existing validation workflow. #101974 Thanks @vincentkoc.
- Narrowed QA confidence-report internals to keep the supported maintenance surface clear. #101980 Thanks @vincentkoc.
- Kept QA evidence-summary internals private without changing validation behavior. #101987 Thanks @vincentkoc.
- Reduced unused QA utility types to discourage reliance on unsupported internal details. #101990 Thanks @vincentkoc.
- Clarified the supported QA Lab surface by keeping internal coordination details private. #102005 Thanks @vincentkoc.
- Narrowed Google Meet integration internals without changing setup, authentication, or call behavior. #102010 Thanks @vincentkoc.
- Clarified internal boundaries in the Diffs and File Transfer plugins without changing their behavior. #102021 Thanks @vincentkoc.
- Kept Google Chat implementation details private while preserving all existing integration behavior. #102029 Thanks @vincentkoc.
- Narrowed LINE integration internals without changing messages, webhooks, or configuration. #102037 Thanks @vincentkoc.
- Clarified Mattermost integration boundaries by keeping implementation-only details private. #102040 Thanks @vincentkoc.
- Reduced accidental internal interfaces in the Signal plugin without changing how Signal works. #102042 Thanks @vincentkoc.
- Narrowed Slack plugin internals while preserving messaging and delivery behavior. #102044 Thanks @vincentkoc.
- Clarified QQBot's supported integration surface without changing runtime behavior. #102048 Thanks @vincentkoc.
- Kept voice-call implementation details private while preserving the plugin's existing behavior. #102059 Thanks @vincentkoc.
- Narrowed Zalo integration internals without changing messaging, webhooks, media, or configuration. #102065 Thanks @vincentkoc.
- Made remote validation more resilient when a newly started or busy validation environment responds slowly. #102159
- Kept unreliable automated QA from blocking unrelated contributions while focused manual validation remained available. #102256 Thanks @romneyda.
- Reduced false release-validation failures after successful tool-only OpenAI turns while keeping real errors strict. #102600
- Strengthened Telegram authorization coverage by verifying that denied commands receive the expected reply. #102732
- Updated Meta provider validation and guidance for the deployed Muse Spark 1.1 model. #103163
- Improved the reliability and security of documentation translation checks. #103244
- Restored reliable Codex plugin release validation after its connection records moved to a new storage system. #103467 Thanks @vincentkoc.
- Strengthened installer validation so incomplete packages missing the bundled AI runtime are rejected early. #103556 Thanks @vincentkoc.
- Ensured release update checks include and verify the bundled AI runtime before accepting a candidate package. #103564
- Improved QA accuracy so scenarios that recover successfully on retry are not reported as final failures. #103635
- Made token-usage validation more accurate by excluding scenarios that intentionally never produce an assistant reply. #103650
- Restored reliable manual runs of focused live-provider release validation. #103654
- Updated gateway restart validation to recognize current successful restart and cancellation outcomes. #103681
- Strengthened web-access validation by requiring a real fetch rather than merely discovering the capability. #103685
- Made webchat validation wait for saved replies and usage data before declaring success. #103718
- Protected release approvals from silently changing when validation is rerun, preserving the exact evidence operators reviewed. #103906
- Restored Chinese documentation validation for Meta provider and plugin reference pages. #103923
- Allowed release managers to reuse trustworthy validation for an unchanged candidate while still rejecting stale evidence. #104162 Thanks @vincentkoc.
- Allowed package-based QA to run between a version bump and finalized release notes without weakening release checks. #104186
- Kept Discord voice error details bounded and readable when failures contain multibyte text. #104684 Thanks @qingminglong.
- Backported protection against newly returned tool output being lost when long conversations are compacted. #104702 Thanks @acosx, @solvely-colin.
- Aligned plugin prerelease validation with the current GPT-5.6 model defaults. #104722
- Updated live-provider validation to use the intended July GPT-5.6 model by default. #104750
- Backported fixes for startup recovery, Discord reconnection, readable refusal messages, and lighter plugin listing. #104794 Thanks @wuqxuan.
- Reduced false GPT-5.6 release-validation failures by retrying a small set of incorrect validation responses. #104939
- Restored the self-contained package artifact needed for Parallels release validation. #104975
- Reduced false Control UI browser-validation failures around timestamp hover behavior. #105133
- Made Telegram release validation work reliably with model selections from older compatible candidates. #105401
- Preserved reproducible Codex QA coverage for model switching and image generation. #105444
- Kept offline memory-isolation QA fully local, preventing accidental calls to the live embeddings service. #105488
- Improved Codex model-switch validation so conversation compaction no longer causes a false failure. #105493
- Made image-generation comparison results more accurate without hiding genuinely missing or ambiguous results. #105500