#clawtributors

Also FYI I ran into an upgrade issue with today's build, I have a PR open:
https://github.com/openclaw/openclaw/pull/63817

Seems to be a regression.

This would definitely break anyone on NixOS - https://github.com/openclaw/openclaw/pull/62195/changes#diff-2cc7297b75eea5f04cb5cd9694c54287a594c798522f70baa63cf2348f9cbbd9R29 - I guess the reason there isn't a lot of excitement about pre commit hooks is that the automated CI reviews are really good. I ran linters over the code and there was literally nothing. Clean as a whistle

In the PR I posted above, nix would supply a lot of static analysis - https://github.com/randomizedcoder/openclaw/blob/f404dcee9e9ae9259a2296abf7a15bc219fdd2de/nix/docs/analysis.md - but like I said, the CI is really good so it's probably not required

Hey I wanted to make a pr to improve openclaws macos gui contol but wanted to check first as I felt it was a New features / architecture.

Hey everyone! I've submitted a few PRs that add local LLM workstation support to OpenClaw. I'm running Gemma 4 26B, Qwen 3.5, and Nemotron-3 on a single RTX 2070 with 8GB VRAM via llama-server, and these address real gaps I've been hitting:

#63330 - Session Followup Turn API (enqueueFollowupTurn()): https://github.com/openclaw/openclaw/pull/63330
Core plugin runtime API that lets plugins schedule proactive agent turns for any session, including cold sessions. Foundation for the other two. Also includes a basic gateway_restart tool that lets the agent perform restarts and continue working without requiring a ping or a scheduled job.

#63503 - Model Switch Extension: https://github.com/openclaw/openclaw/pull/63503
Seamless switching between local LLM backends on single-GPU setups. The agent calls model_switch, the plugin stops one llama-server, starts another, verifies identity via /v1/models, and resumes the session on the new model via the followup API. Crash recovery with markers.

#63518 - Inference Guard: https://github.com/openclaw/openclaw/pull/63518
Rate-limits heartbeats on single-slot inference (--parallel 1) so they don't block user messages. Uses ctx.trigger to detect heartbeat runs and applies timestamp-based rate limiting. All three have Greptile 4/5 scores with all P1/P2 feedback addressed. The only failing CI check (check-additional) is the no-random-messaging guard which also fails on main; it's flagging pre-existing violations in files I didn't touch.

Would really appreciate feedback from anyone working with local models or self-hosted inference! Happy to iterate on any concerns. If you find these interesting, I have many more on the way! I am willing to make adjustments to these to get them merged into main!

Cool I will take a look!

Three fix PRs for recent issues. Would appreciate some reviews. Thanks!

fix(feishu): suppress ACP fallback after visible streamed replies- https://github.com/openclaw/openclaw/pull/62331

Sure! Can you take a look at my idea.

PRs 61472 and 63903 look good to me

I think this is a great idea and look at them indepth later. I use macos and mlx so some of the llama c++ stuff is not my field so it may take a little while.

Awesome! Thank you! I have some other stuff I'm working on that's just not ready yet. I'm pretty new to the community here, but I had a viral reddit post on r/openclaw a couple weeks ago about dreams, and now they are a thing and im so excited.

@torn tide I also submitted a quick cleanup PR that fixes the no-random-messaging guard: #63902. Replaces all 14 os.tmpdir() calls with resolvePreferredOpenClawTmpDir() across the codebase. Mechanical change, no behavior difference, just uses the OpenClaw temp dir helper instead of host defaults. This unblocks check-additional for all open PRs. Still looking into some of the failing CI though

Please review PR 63962

Hi maintainers, I have created these PRs (all size S or XS) to address issues reported by other users in the last few hours. I have addressed all AI code review comments:

• fix(tui): reset footer activity to idle on session switch https://github.com/openclaw/openclaw/pull/63988

• fix(imessage): require destination_caller_id for self-chat classification (#63980) https://github.com/openclaw/openclaw/pull/63989

• fix(discord): normalize channel snowflakes for ACP thread binding https://github.com/openclaw/openclaw/pull/63993

• fix(imessage): strip length-prefixed UTF-8 from imsg rpc text https://github.com/openclaw/openclaw/pull/64000

• fix(agents): allow cooldown probe when failover reason is timeout https://github.com/openclaw/openclaw/pull/64005

@tardy sparrow Thanks for supporting to my PR. I solved conflicts.
https://github.com/openclaw/openclaw/pull/63514
Could you review again?

Hey all 👋🏼 made a PR https://github.com/openclaw/openclaw/pull/63671

feels like it’s a critical one since it unblocks users of OpenClaw who use their own OpenAI compatible API or gateway within private networks

Would appreciate a maintainer review so we can get this in and unblock! Thanks

Hello all, hope you're doing well, it's great to catch up with you ❤️

A PR for your consideration, currently openclaw injects raw bootstrap files into every prompt by default, which causes context window bloat and overlaps with semantic retrieval plugins. This adds a contextInjection: "never" option to allow memory plugins to exclusively manage document delivery.
https://github.com/openclaw/openclaw/pull/64094

Talk soon!

Hi OpenClaw contributors! Review request - I have a PR up for review whenever someone has time:

llm_input/llm_output modifying hooks — https://github.com/openclaw/openclaw/pull/61485

Upgrades both hooks from observe-only to modifying (block/rewrite/redact), with full backward compat for void returns. Includes hardening around PluginBlockedError, allowPromptInjection, payload cloning, and lastAssistant stripping. Review guide with focus areas and test matrix is in the PR comments. Would especially appreciate eyes on merge/priority semantics and safety edge cases. Related to #57585 (transform_context hook) which operates at the context-window layer — this PR covers the prompt-assembly/response-delivery layer instead.

Merged! Thanks for the PR

Hello, I have this phantastic PR with quite a few improvements for voice calls, but it never gets any attention and keeps getting closed by the bot: https://github.com/openclaw/openclaw/pull/19073

Please have a look!

If not through this PR, it would still be great to get those features: barge-in, typing sounds during tool calls, streaming TTS and STT where possible to cut down on latency, support for ElevenLabs Scribe v2 and the ability on a voice call for the agent to hang up.

Hey @untold pollen, thank you for landing #62873! Really appreciate the regression test and cleanup 🙏👋

I left a comment on #59104 with the reasoning and asked the original reporter to help confirm if it's fully resolved.

Thanks!👋

Hi everyone! I've updated and rebased my PR to add Yep as a bundled web search plugin: https://github.com/openclaw/openclaw/pull/64113

This adds a Yep search provider (independent web index, not reliant on Google or Bing) with domain/content filtering, highlight extraction, and balanced/advanced search modes. It's fully backward compatible — no changes to core infrastructure, other providers, or shared plugin SDK surfaces. Includes 17 tests across 4 files and full docs.

For context, I work at Ahrefs and on Yep, so happy to answer any questions about the API, pricing, or the provider itself.

Would appreciate a review when someone has time!

Hi, this is almost certainly better as an external plugin published on clawhub.ai

Hi Ayaan! I considered that, but all existing web search providers (Brave, Tavily, Exa, Firecrawl, Perplexity, SearXNG, etc.) are bundled rather than external. Yep follows the exact same plugin structure and contract patterns as those providers.

The main value of bundling is that users get auto-detection, SecretRef support, and consistent onboarding out of the box — the same experience as every other web search provider. As an external plugin it would be a second-class experience compared to the others.

Happy to hear if there's a different concern though!

We allowed in a few providers to be fair and these are mostly free/largely requested by community. We are going to be moving these out of the core soon and into clawhub also.

I hate to say it but we have never heard of Yep and no one has asked for it

Totally understand! For context, Yep is the search engine built by Ahrefs (https://techcrunch.com/2022/06/03/yep-search-engine/) and we run our own independent index the https://radar.cloudflare.com/bots one of top crawler in the world.

But happy to publish on clawhub instead if that's the preferred path. Any docs on how to do that?

Ask the AI should be able to help

Thanks for all the work you do here! PR #59898 has been open for about a week without review. It's a small fix for explicit empty-tool sessions in the system-prompt path. I'd really appreciate a quick review if anyone has a moment:
https://github.com/openclaw/openclaw/pull/59898

Hi all — I opened a PR to fix usage reporting for OpenAI-compatible /v1/chat/completions:
https://github.com/openclaw/openclaw/pull/62986

It fixes the non-stream usage always being zero, and adds the final usage chunk for streaming when stream_options.include_usage=true.

This PR is intended to close #38735 and #49753.

I’ve already addressed the feedback raised so far. Feel free to take a look when convenient.

Hi how can I get over 10PR’s

Already a contributor @100yenorg with my gpt5.4 work to get it to get out of constant “plan” mode and not tell it to continue every 1-2 turns

I have 6 more PR’s workin on fixing gpt 5.4 to work as well as claude does outside of codex / inside openclaw, @final ocean

pretty please?

If it's a small enough change, feel free to make a PR and I'll be happy to review it

Nobody can, not even maintainers. Either close your existing PRs (if stale) or fix all review comments on the other open ones so a maintainer can review and merge them

@untold pollen By the way, yesterday when I ran openclaw update, I ran into an issue:
https://github.com/openclaw/openclaw/pull/63817
https://github.com/openclaw/openclaw/issues/63815

completion cache failure

Issue is still there:
Updating plugins...
npm plugins: 0 updated, 0 unchanged, 3 skipped.
Completion cache update failed ([openclaw] Failed to start CLI: Error: qa scenario pack not found: qa/scenarios/index.md
at readQaScenarioPack (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/suite-BW4kSK9C.js:754:27)
at readQaScenarioById (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/suite-BW4kSK9C.js:790:19)
at readQaScenarioExecutionConfig (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/suite-BW4kSK9C.js:795:9)
at readRequiredDiscoveryRefs (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/suite-BW4kSK9C.js:2834:9)
at file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/suite-BW4kSK9C.js:2840:39
at ModuleJob.run (node:internal/modules/esm/module_job:430:25)
at async onImport.tracePromise.proto (node:internal/modules/esm/loader:655:26)
at async Object.register (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/register.subclis-D7AxmRi1.js:38:22)
at async registerCommandGroupByName (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/register-command-groups-pnI4KWXM.js:91:2)
at async Command.<anonymous> (file:///home/clawmander/.npm-global/lib/node_modules/openclaw/dist/completion-cli-klMIRvmG.js:169:4)).

@untold pollen also, something I keep bringing up because I've been using openclaw since the beginning. Maybe I haven't explained it correctly, I proposed a system where the agent has the ability to setup a pre-hook, which means that when a cron job or heartbeat fires, it first runs a script that it setup to see if the agent needs to run. For example, you could run a command to determine with 'gh' if you've been mentioned in any PRs, and only run the agent if there is something for it to do. I ended up setting up my own custom system, where regular cron jobs do this, and trigger agents if there is something to do:
https://github.com/openclaw/openclaw/issues/62185
https://github.com/openclaw/openclaw/pull/62195

I actually have heartbeat disabled for this reason

Thanks for the PR, it looks great. If you can resolve all the Codex review threads I’ll be happy to review

I have a number of them for review #61525 (all codex / code review threads 10x over responded and resolved)

@untold pollen addressed. Should I wait to see if Codex comes back with any other comments?
https://github.com/openclaw/openclaw/pull/62195

Passing CICD, and not seeing any more Codex reviews. Would really appreciate you looking at it, thanks!

Wow, I did not know even maintainers had that 10 limit!

Hey yall I have built away for openclaw to have the ability to proactivly reach out to you Im testing it this week but if it works what is the correct proccess to sub a pr to this do I need to get the idea validated first or just sub a PR

Quick update on the local model support PRs: all three are rebased on latest main with green CI across the board. Addressed all the Greptile and Codex feedback too.

Here's the stack:

1. Session Followup Turn API - the foundation that makes the other two possible. Lets plugins schedule agent turns on any session, even cold ones after a restart.
   https://github.com/openclaw/openclaw/pull/63330

2. Model Switch - seamless backend switching for single-GPU setups. Agent calls model_switch, the plugin handles the full lifecycle (stop, start, health check, identity verify) and picks up the conversation on the new model.
   https://github.com/openclaw/openclaw/pull/63503

3. Inference Guard - simple heartbeat rate limiter so background checks don't block user messages on single-slot inference.
   https://github.com/openclaw/openclaw/pull/63518

Would really appreciate a maintainer taking a look when there's time. Happy to make adjustments!

Hey everyone, I opened a feature request to discuss whether we should remove the socat intermediate layer from the sandbox browser CDP path:

https://github.com/openclaw/openclaw/issues/64383

The goal is to evaluate whether socat still has a clear purpose after the recent fail-fast / readiness fixes. Any thoughts are welcome.Thanks!👋

Ah this one needs a secops review, I won't be able to merge this one unfortunately

They can let me know if I need to change anything, so it's a better fit from an architectural perspective.

Thanks for earlier. Peter is reviewing some of my new gpt 5.4 upgrades. If you are free, would appreciate if you can help me clear some of my other Pr’s that are just small bug fixes so I can undraft the remaining gpt upgrades @untold pollen

Hey maintainers! 👋

PR #61534 fixes a critical bug blocking ALL vLLM reasoning models (Nemotron, DeepSeek-R1, Qwen3) - issue #61197
The Impact:

• vLLM reasoning models are completely broken - responses hang forever on "typing..."
• This affects anyone self-hosting models on vLLM (including me on my DGX)

Can we prioritize getting this merged? It's blocking real usage of self-hosted reasoning models. I can help fix the main branch issues after if needed.
PR: https://github.com/openclaw/openclaw/pull/61534

Hello Lads, I have a plugin to enable openclaw to use campfire self hosted messaging server. https://github.com/openclaw/openclaw/pull/64355 some opened the discussion back and march but never flooled up on his PR so wanted to take over https://github.com/openclaw/openclaw/issues/7880

Got one quick fix to patch up invalidated prompt cache due to subagent relay flows - https://github.com/openclaw/openclaw/pull/64468. Should greatly help with prompt caching rate when subagent is used.

Help me make, 5.4 work as well as opus in OpenClaw. PR’s are done and ready for review if any : https://github.com/openclaw/openclaw/issues/64227

Well I asked about an idea but no one replied. I think you could just submit a pr but it may not be merged.

Hi OpenClaw contributors! 👋 Review request - I have a PR up for review whenever someone has time:

llm_input/llm_output modifying hooks — https://github.com/openclaw/openclaw/pull/61485

Upgrades both hooks from observe-only to modifying (block/rewrite/redact), with full backward compat for void returns. Includes hardening around PluginBlockedError, allowPromptInjection, payload cloning, and lastAssistant stripping. Review guide with focus areas and test matrix is in the PR comments. Would especially appreciate eyes on merge/priority semantics and safety edge cases. Related to #57585 (transform_context hook) which operates at the context-window layer — this PR covers the prompt-assembly/response-delivery layer instead.

merged, thanks for the fix

I didn't dare do the PR on their code upstream, patched in stuff for gemma 4 instead. (saw an open PR which I assume was closed for this exact reason). hacking functionality in is more fun anyways.

Hi, I created these 2 PRs to fix issues reported by users in the last few hours. Both are size S and I have addressed the AI code review comments.

• fix(whatsapp): lazy default auth dir for profile state (#64555)
  https://github.com/openclaw/openclaw/pull/64563

• Anthropic: scope normalizeConfig hook to Anthropic provider keys https://github.com/openclaw/openclaw/pull/64564

Hey! Would love reviews on a few PRs when you have a moment 🙏
• https://github.com/openclaw/openclaw/pull/61698 (XS) — small docs fix clarifying gateway can run as a daemon (LaunchAgent), not just via the Mac app
• https://github.com/openclaw/openclaw/pull/61512 (S) — makes tool ordering deterministic in prompts (fixes variability across environments)
• https://github.com/openclaw/openclaw/pull/58186 (S) — adds systemPrompt support to Gmail hooks so agents get clear system-level instructions
• https://github.com/openclaw/openclaw/pull/57246 (L) — adds custom session labels across CLI + UI for better session management
Thanks!!

@stable pewter - I see some UI changes

I have a docs PR (https://github.com/openclaw/openclaw/pull/60629) for a Fish Audio TTS Plugin I created. I am actively maintaining that (it scratches my own itch) and will respond to any changes in OpenClaw's plugin arch or Fish's API promptly

Repo: https://github.com/Conan-Scott/openclaw-fish-audio
NPM: https://www.npmjs.com/package/@conan-scott/openclaw-fish-audio

This came after a (misguided) attempt to upstream it here (https://github.com/openclaw/openclaw/pull/56891) but actually the greptile/codex review really helped me knock it into better shape so it was a plus.

I take feedback/criticism well. thanks

Where?

Hi maintainers,

I've been an active contributor to OpenClaw — here are my merged PRs:
👉 https://github.com/openclaw/openclaw/pulls?q=is%3Apr+author%3Alml2468+is%3Amerged

I'd love to stay involved and keep making meaningful contributions to the community. Would it be possible to get an exception to the 10-PR limit?

@mystic echo message

Thank you so much!! Got my first PR merged 🥹

Congrats, #clawtributor

I wonder where I can find the roadmap for CLAW, or what features are planned next？

Holy cow! Another day, another release. You guys are amazing! Keep on keeping on.

Hi! Would love a review on this PR when you have a moment 🙏

https://github.com/openclaw/openclaw/pull/63105 (M) — splits jobs.json into config-only (jobs.json) + runtime state (jobs-state.json) so cron executions no longer produce git diffs when no config has changed. Backward compatible with auto-migration.

Related issue: #53581

I realized after opening the PR that new features should be discussed with maintainers first per CONTRIBUTING.md.
I posted in #1459642797895319552 but didn't get a response — any feedback on the direction would be appreciated.

hi

Howdy hay, appears there's a regression with the OAuth login with Codex that's causing the community some pain. Spun up a quick PR for your consideration:

https://github.com/openclaw/openclaw/pull/64713

resolves:
https://github.com/openclaw/openclaw/issues/64687

Cheers

Hi, following up on my earlier review request.

I’d really appreciate a maintainer review on any of the bug-fix PRs below, and I’m happy to make any further changes needed.

fix(telegram): persist native command metadata to target sessions
https://github.com/openclaw/openclaw/pull/57548

fix(agents): add OpenRouter attribution to direct completions
https://github.com/openclaw/openclaw/pull/57561

fix(memory-core): isolate dreaming narrative sessions per workspace
https://github.com/openclaw/openclaw/pull/61674

fix(discord): dedupe inbound deliveries across handler instances
https://github.com/openclaw/openclaw/pull/63104

fix(compaction): guard malformed token estimation
https://github.com/openclaw/openclaw/pull/63636

Thanks.

PR Review Request: SSRF Guard FormData Corruption Fix

PR: https://github.com/openclaw/openclaw/pull/64766
Issue: https://github.com/openclaw/openclaw/issues/64762

What's broken
Audio transcription via OpenAI-compatible providers, including OpenAI, Groq, and Mistral, is completely broken.

The SSRF guard's pinned DNS dispatcher in undici corrupts FormData multipart bodies, causing HTTP 400 errors:

you must provide a model parameter

This happens even though all required fields are correctly appended.

Impact
100% of voice and audio transcription attempts fail.

Telegram voice notes cannot be processed.

Fix
postTranscriptionRequest now always sets pinDns: false for transcription requests, so native fetch handles FormData correctly.

SSRF hostname validation is still preserved.

Files changed

• src/media-understanding/shared.ts
  Force pinDns: false for transcription requests
• src/media-understanding/shared.test.ts
  Add regression tests

Confirmed working via runtime patch before this source fix.
Tests pass: 13/13

@lusty vigil would appreciate a review when you get a chance 🙏

@wide geyser @final ocean Could you take a look at https://github.com/openclaw/openclaw/pull/61718 when you get a chance? It adds GitHub Copilot as an embedding provider for memory search. Fully tested (unit + E2E), scoped to the github-copilot extension only. Thanks!

@wide geyser will leave this one to you

Thanks!

wow TIL copilot has embeddings included

very cool

Following up from before, did a rebase today and made some updates based on linting conflicts. All CI is green and PR's are mergable again

a

this one is ready for court https://github.com/openclaw/openclaw/pull/58607

Quick question on the French locale: is the right path for fixing translation inconsistencies (e.g. "Provider" translated as "Fournisseur" in some keys but left as "providers" in others) to PR glossary.fr.json, or open a GH issue first? Just want to match your preferred flow before I send anything. Thanks!

Ive been playing around with openclaw tts and would like more options included in the docs/references. Would a small neutral docs PR for OpenAI-compatible TTS providers be welcome?

oo i like the idea of adding more TTS providers/options!

Voxtral TTS is pretty good and they are essentially giving it away for free, days and days of testing only cost me a few cents

I have some ideas for making TTS in openclaw better but gotta wait for PR review

a big one I want to tackle is streaming TTS audio, now all audio that comes back from the speech provider is buffered instead of doing chunked transfer

so even if you use a fast model like gpt-5.4-nano, voice-call is still exceptionally slow

interesting. yea id really like to have more of a hands-free/interactive way to communicate with my openclaw, kind of like how chatgpt/cluade apps allow you to press a button and then have continuous back and forth dialogue. seems like there are still a few blockers but might be possible by building a custom mobile app?

I cooked something like that up in claude code in about 10 minutes, but the thing these other apps are missing is ability to do tool calls from voice commands

(if they all work the way I think they do, by using conversations API)

interesting, was it your own custom mobile app or just changes to your openclaw and then using existing communication channels (telegram/etc.)?

no, clean slate, I just asked claude to build a Sveltekit app to do TTS/STT with Voxtral, with a realtime talk mode

I would put a link to my Gitea here but I'm afraid that will only get me muted again

openclaw as far as I'm aware is unique in that it has talk mode with ability to do tool calls from voice commands and give you live feedback, even if somewhat slow

i think a webapp wouldnt be enough? i want to be able to go for a run and interact with my openclaw assistant without touching the phone a bunch

I wired my claw up with Twilio so it has a phone number I can call

@vague swallow very cool

@twilit tulip thanks

is Twilio a paid subscription service?

just a casual mention for your review, this PR adds a contextInjection: "never" option so memory and context-engine plugins can take full control of the system prompt. It basically swaps out the automatic workspace bootstrap injections (like AGENTS/SOUL) so the memory plugin can handle the whole context lifecycle through its own tools.

https://github.com/openclaw/openclaw/pull/65006

Not really but you pay per phone number that you rent and you also pay for usage

ohh okay that makes sense, thank you

🙏 we got big tings cookin

Hey guys, first contribution. docs PR clarifying that croner 10.x uses OR logic when both day-of-month and day-of-week are non-wildcard, which is undocumented in the cron docs. #64968 https://github.com/openclaw/openclaw/pull/64968. Matters while scheduling crons only desired on a date and if its a weekday etc.

Can I get a human reviewer on https://github.com/openclaw/openclaw/pull/63418? It fixes the Control UI session settings so the thinking dropdown shows the session's actual effective default (effectiveThinkingDefault) instead of a stale frontend heuristic like Default (off) / Default (low)

Hey 👋 Just opened #64979 — plugin approval buttons on Telegram deadlock because the sequentializer queues the callback_query behind the blocked agent turn. Same pattern as the abort request fix (telegram:<chatId>:control), just needs an :approval lane too. 5-line fix, tested e2e, before/after logs in the PR. Related to #57339.

https://github.com/openclaw/openclaw/pull/64979

Looking for maintainer eyes on #58034 (fix(net): harden trusted env proxy fetch guard and add explicit web_fetch opt-in).
https://github.com/openclaw/openclaw/pull/58034

This is the follow-up to #59007 which was merged a couple of days ago rather than a duplicate. It keeps the remaining hardening on top of the merged DNS-before-proxy fix:

• protocol-aware HTTP(S) proxy detection
• NO_PROXY fallback to the pinned-DNS path
• pre-DNS hostname policy checks in trusted-proxy mode
• explicit tools.web.fetch.useTrustedEnvProxy opt-in for web_fetch

I have rebased it onto current main, verified the branch against the current main test baseline, manually verified the opt-in in a fresh NemoClaw / OpenShell / OpenClaw deployment, and just pushed a small follow-up for the latest Codex review comment: 036d6c8648 (fix(net): honour wildcard NO_PROXY entries).

mjamiv also kindly verified the fix independently in their environment.

Second contribution — code PR this time. Cron announce delivery only suppresses NO_REPLY on exact match, so agents that write a summary before appending NO_REPLY still get delivered. Ported the token stripping from the auto-reply path (PR #63068) into the cron delivery path. 14/15 production deliveries over 8 days hit this. #65016 https://github.com/openclaw/openclaw/pull/65016

#1458485323553181900

Alerdy an feature

Hi, I have created this PR (size S) based on a user reported issue. There was one code review comment by Codex (and an overlapping one by greptile) and I have addressed it:

• doctor: warn about orphaned agent dirs
  https://github.com/openclaw/openclaw/pull/65113

Hey maintainers! I have a couple of PRs up — would appreciate reviews when someone has time.

1. llm_input/llm_output modifying hooks —
   https://github.com/openclaw/openclaw/pull/61485

Upgrades both hooks from observe-only to modifying (block/rewrite/redact), with full backward compat for void returns. Includes hardening around PluginBlockedError, allowPromptInjection, payload cloning, and lastAssistant stripping. Review guide with focus areas and test matrix is in the PR comments. Would especially appreciate eyes on merge/priority semantics and safety edge cases. Related to #57585 (transform_context hook) which operates at the context-window layer — this PR covers the prompt-assembly/response-delivery layer instead.

We (I and my team and it's on product hunt here https://www.producthunt.com/products/securemind-2) have built a security plugin (https://github.com/kaushikdharamshi/SecurityPlugin_packages) on top of these hooks that currently blocks:

• Prompt injection attempts ("ignore all previous instructions", "reveal your system prompt" and variants)
• Sensitive file reads (.env, .pem, credentials, SSH keys)
• Dangerous command execution (env dumps, data exfiltration via curl/nc)
• Prompts requesting PII/credentials (SSNs, credit cards, API keys)
• 3-layer analysis: regex (<50ms) → Pydantic rules (negation-aware) → optional local LLM

2. Privacy/DLP layer (draft) —
   https://github.com/openclaw/openclaw/pull/64234

Adds a core privacy layer with:

• PII redaction across tool outputs, user messages, TTS text, and system prompt context (email, phone, SSN, credit card, IPv4, UUID)
• System prompt masking — strips hostname/OS/shell/repo path from the Runtime line
• Media blocking — drops image/audio/video attachments before they reach LLM providers
• Session encryption at rest — AES-256-GCM with PBKDF2-SHA256 key derivation, per-line JSONL encryption
• Plugin SDK subpath — openclaw/plugin-sdk/privacy-runtime exposes redactPiiText for extensions

All guards are config-gated with sensible defaults (PII redaction on, encryption off). 54 unit/integration tests included. This one's a draft for now — would appreciate early feedback on the approach, especially around the integration points and config surface. Happy to adjust scope or split it up if needed!

I’ve been working on a small tool_result_before_model v0 hook for plugins, mainly to give plugins a typed way to canonicalize noisy tool results before they pollute same-turn and future-turn context: https://github.com/openclaw/openclaw/pull/64907

CI is green now, and I also rechecked the direct PR surface locally during the refreshes. I haven’t found a branch-only regression from this hook path.

If anyone on the hooks/agents side has time to take a look when convenient, I’d really appreciate it.

hey dear friends! Could someone review/merge https://github.com/openclaw/openclaw/pull/65013 ? It fixes ACP child-session completion banner noise leaking into user chat. All visible checks are green, and we need it merged to verify the end-to-end communication flow cleanly.

Hi, I was reading an issue ticket on github I relate with and found this PR by someone else that would solve saving to memory before /new

https://github.com/openclaw/openclaw/pull/18883

I noticed it was auto closed as stale by the bot, how should this be revived for review?

Hey all — not a bot, just a contributor with a few small bug-fix PRs that could use review. I’ve already addressed all of the bot review comments, and I’m happy to keep iterating on any of these if anything else needs adjustment.

• fix(telegram): persist native command metadata to target sessions — https://github.com/openclaw/openclaw/pull/57548 (#57509) XS
• fix(agents): add OpenRouter attribution to direct completions — https://github.com/openclaw/openclaw/pull/57561 (#57498) M
• fix(memory-core): isolate dreaming narrative sessions per workspace — https://github.com/openclaw/openclaw/pull/61674 S
• fix(discord): dedupe inbound deliveries across handler instances — https://github.com/openclaw/openclaw/pull/63104 (#63027) S
• fix(compaction): guard malformed token estimation — https://github.com/openclaw/openclaw/pull/63636 (#63612) L

Thanks!

Hey claws!

I’ve got a fix up for a real regression in the memory loader path and would appreciate a fast review on PR #65012: https://github.com/openclaw/openclaw/pull/65012

What was happening:
after a loader cache restore or rollback restore, the active memory capability could get dropped even though the legacy split fields were still present. In practice that meant memory-wiki could lose visibility into exported public artifacts and wiki status / wiki doctor could report the wrong bridge state.

What the PR fixes:

• preserves the unified memory capability through loader cache + rollback restore paths
• routes gateway request scope through the supported SDK seam
• fixes memory-wiki CLI metadata registration so it uses the actual CLI context config
• adds regression coverage for the restore paths and the CLI metadata path

This isn’t theoretical, it affects real bridge visibility and the shipped CLI behavior. If someone can take a look soon, that would help a lot.

@untold pollen 🙏 for your work on Android app. Do you know if it's possible for the assist app/side button to go direct to voice?

Great suggestion, I think couple of people are trying to integrate the system assistant over in https://discord.com/channels/1456350064065904867/1458485323553181900

The app already supports going to chat, direct to voice would be great

Hi! External contributor here 👋 Opened a small gateway fix that I'd love a gateway reviewer's
eyes on:

PR #65457 — fix(gateway): stop dropping repeated markdown tokens in chat stream merge
https://github.com/openclaw/openclaw/pull/65457

TL;DR: resolveMergedAssistantText in src/gateway/server-chat.ts routes its incremental-delta
branch through an appendUniqueSuffix helper that silently drops any delta chunk matching a
previously-buffered tail. This means every streamed markdown table, every repeated horizontal
rule, and every closing code fence loses content mid-stream for clients on the WebSocket
chat.send path. The cumulative-snapshot hot path is unaffected, so the bug manifests as "stream
looks almost right, then history refetch silently fixes it later" — very easy to misdiagnose
as a model problem.

• Fix: delete the helper, append deltas verbatim (cumulative nextText still wins when the
  adapter provides it).
• Tests: 13 new pinned regression tests in server-chat.stream-text-merge.test.ts, plus 75
  existing server-chat tests unchanged.
• Greptile review: 5/5 Safe to merge, nitpick already addressed.
• CI check is red: the tsgo failures are all in files this PR does not touch
  (cli/run-main.test.ts, plugins/channel-plugin-ids.test.ts,
  plugins/runtime/runtime-registry-loader.ts) and reproduce on a clean upstream/main@aff8a0c0e7
  checkout. I rebased the branch and left a comment explaining; happy to rebase again once main
  is green.

Looking for a gateway/server-chat reviewer — maybe @joshavant or @visionik? Not urgent, just
want to make sure it doesn't get lost in the queue since it's a silent data-loss bug on a hot
path.

Thanks!

Hey maintainers! I have a couple of PRs up — would appreciate reviews when someone has time.

1. llm_input/llm_output modifying hooks —
   https://github.com/openclaw/openclaw/pull/61485

Upgrades both hooks from observe-only to modifying (block/rewrite/redact), with full backward compat for void returns. Includes hardening around PluginBlockedError, allowPromptInjection, payload cloning, and lastAssistant stripping. Review guide with focus areas and test matrix is in the PR comments. Would especially appreciate eyes on merge/priority semantics and safety edge cases. Related to #57585 (transform_context hook) which operates at the context-window layer — this PR covers the prompt-assembly/response-delivery layer instead.

We (I and my team and it's on product hunt here https://www.producthunt.com/products/securemind-2) have built a security plugin (https://github.com/kaushikdharamshi/SecurityPlugin_packages) on top of these hooks that currently blocks:

• Prompt injection attempts ("ignore all previous instructions", "reveal your system prompt" and variants)
• Sensitive file reads (.env, .pem, credentials, SSH keys)
• Dangerous command execution (env dumps, data exfiltration via curl/nc)
• Prompts requesting PII/credentials (SSNs, credit cards, API keys)
• 3-layer analysis: regex (<50ms) → Pydantic rules (negation-aware) → optional local LLM

2. Privacy/DLP layer (draft) —
   https://github.com/openclaw/openclaw/pull/64234

Adds a core privacy layer with:

• PII redaction across tool outputs, user messages, TTS text, and system prompt context (email, phone, SSN, credit card, IPv4, UUID)
• System prompt masking — strips hostname/OS/shell/repo path from the Runtime line
• Media blocking — drops image/audio/video attachments before they reach LLM providers
• Session encryption at rest — AES-256-GCM with PBKDF2-SHA256 key derivation, per-line JSONL encryption
• Plugin SDK subpath — openclaw/plugin-sdk/privacy-runtime exposes redactPiiText for extensions

All guards are config-gated with sensible defaults (PII redaction on, encryption off). 54 unit/integration tests included. This one's a draft for now — would appreciate early feedback on the approach, especially around the integration points and config surface. Happy to adjust scope or split it up if needed!

Can i suggest new channel

To talk to claw in

Opened PR for discussion:
https://github.com/openclaw/openclaw/pull/65583

Summary
This PR introduces a per-agent model optimization flow so users can reduce token costs without manually tuning each agent.

What it does

• Adds openclaw agents optimize to the CLI
• Adds an Optimize action in the Dashboard (Agents Overview)
• Recommends cheaper models using simple cost tiers
• Preserves existing fallback models when updating the primary model
• Indicates when an agent is already optimized (economy-tier)

What it does NOT do

• No automatic per-turn model switching
• No hard token budgets or billing enforcement
• No provider pricing API integration (yet)

Main goal
Reduce cost for routine agent workloads while maintaining acceptable execution quality for most use cases.

Make a third party plugin

Trying to sanity-check scope before opening an issue.

User-visible problem: on long Telegram turns, especially auto-compaction/tool-heavy turns, configured presence can die before the run actually finishes, so the chat looks stuck even when the run is healthy.

I think the narrow first fix should be:

• keep configured active-run presence alive until run complete + dispatcher idle
• preserve existing stale typing / stale presence cleanup behavior
• keep first landing internal-only
• no default change to compaction disclosure
• no new default progress/status message surface
• no new public SDK seam in MVP

Does that sound like the right Phase 1 scope, or would maintainers want this framed differently before I open an issue?

Relevant prior work:

• stale typing safety: https://github.com/openclaw/openclaw/pull/27428
• Teams long-tool-chain keepalive: https://github.com/openclaw/openclaw/pull/64088

Calling all clawtributors🖤 🦀

Hope you’re enjoying my patches on GPT 5.4 in the latest builds (could use feedback on if we improved your gpt 5.4 experience) - could also really use some help testing and debugging the new hybrid mode:

https://github.com/openclaw/openclaw/pull/65591#pullrequestreview-4095989496

Hi, I created these PRs (all size XS or S) based on user reported issues from the past few hours. I have addressed all AI code review comments:

• fix(agents): reevaluate preflight compaction on fresh totals
  https://github.com/openclaw/openclaw/pull/65622

• fix(discord): skip false stale-socket restarts
  https://github.com/openclaw/openclaw/pull/65632

• fix(gateway): keep explicit loopback binds on 127.0.0.1 https://github.com/openclaw/openclaw/pull/65635

• fix(mattermost): harden native slash command callbacks https://github.com/openclaw/openclaw/pull/65648

@celest merlin could you help to review https://github.com/openclaw/openclaw/pull/65716? This fixes a regression in anthropic-vertex that was introduced earlier when lightweight anthropic vertex discovery was added.

@old mantle, please don't ping Peter for issues, use #1459642797895319552 or #users-helping-users if you need help, use #clawtributors to discuss PRs, or use any of the many other channels in this server as they're intended.

If you have a problem with the Discord specifically, use #report or DM @jolly wolf
-# Your message was reposted above without the ping active for the sake of conversation.

could someone help to review https://github.com/openclaw/openclaw/pull/65716 This fixes a regression in anthropic-vertex that was introduced earlier when lightweight anthropic vertex discovery was added.

Hi Ayaan, I have created the PR, I fixed all automated comments, I am available for any clarification / mods https://github.com/openclaw/openclaw/pull/65364

Hmm, this one requires a secops review

you are quick 🙂 yes I saw it requires secops from the contribution docs. I thought you were part of that team too sorry

Could a maintainer take a look at PR #65800? https://github.com/openclaw/openclaw/pull/65800

It’s a follow-up to the already merged PR #65012, and I’d appreciate a review when someone has a moment. @final ocean , you reviewed my last PR, so tagging you here in case you have context and bandwidth.

this should be fixed. will look today

You rock!

Idk javascript

Like i understand most of code like what it does but idk how to program in it

I love the cadence of new releases now! Can maintainers please have a look at these?

Hi all, OpenClaw is not able to use AWS Bedrock Australian inference profile (but it works for other regions' inference profile), could a maintinaer take a look at PR #65449? https://github.com/openclaw/openclaw/pull/65449?

Thanks you!

.12 just released

Hello Ayaan! Could a maintainer take a look at PR #61485 https://github.com/openclaw/openclaw/pull/61485 and PR #64234 https://github.com/openclaw/openclaw/pull/64234 ?

Hello crew, can I get eyes on my Voxtral TTS by Mistral AI pull request? I've been using my fork for over a week and it's really really good (trust me) https://github.com/openclaw/openclaw/pull/58607

Thanks for all the great work you do here! PR #59898 is currently blocking my benchmark workflow. Latest bot feedback is addressed now, and I reran the live repro locally and the fix still holds. While waiting, I've already had to rebase it three times, twice with conflicts. When someone has a moment, I'd really appreciate a review: https://github.com/openclaw/openclaw/pull/59898

do I need to go bug someone else or ask in a different channel like "security"?

Ahoy clawtributors🖤 🦀

When you have a moment, can I get some eyeballs on this PR?

https://github.com/openclaw/openclaw/pull/65973

@final ocean I noticed our new docs say that 5.4 in OC can handle Xhigh but in the latest version it’s not in the drop-down menu and I’m noticing a significant diff between it and high for agentic task

1. I have it hardcoded however I think either its not working yet or the dropdown UI is potentially replacing it as dropdown doesn’t have it yet.
2. You can manually /thinking xhigh and it will add it but it actually killed agentic mode

They'll come to it when they have a moment ig

xhigh works for agentic mode, its just slow. it has an average response time of like 130s ttft

its a significant improvement to the reasoning capabilities, and it takes a long time to do so

A few more PRs for maintainers to take a look. I notice the first one is skipped in previous review so feel free to lemme know if it's not worth fixing and should be closed. Thanks!

fix(feishu): suppress ACP fallback after visible streamed replies- https://github.com/openclaw/openclaw/pull/62331
fix(prompt): keep chat ids out of system prefix for stable prompt cache - https://github.com/openclaw/openclaw/pull/65071
fix(reply): recognize broken /trace directives - https://github.com/openclaw/openclaw/pull/66111

I am building a client and would like MCP-APPs suport in OpenClaw. Happy to do it, but the contribution guide said to ask first.

Hi, maintainers! Could someone take a look at PR #61485 https://github.com/openclaw/openclaw/pull/61485 and PR #64234 https://github.com/openclaw/openclaw/pull/64234 ?

very sorry the idea is that we have a reachout.md file with the main files this works in away as to reachout to you with a joke or to contiue a thought after research or to do what the user wants. its more a proactive reachout with out having to prompt your bot first kinda idea

ok thank you very much for your help ayaan, it's much appreciated

Hey, I would love to contribute here.

Is there a systemic CI problem right now? I am seeing CI failures on my PR in unrelated code, and I am seeing the same CI failures on unrelated recent PRs from others.

Is there a specific maintainer I should tag to review amazon-bedrock code?

PR to expose talkmode in android app UI: https://github.com/openclaw/openclaw/pull/66179
and allows mic access in fore-ground so you can still chat when screen is off

PR to add service_tier to AWS bedrock-converse-stream requests https://github.com/openclaw/openclaw/pull/64512

PR to implement MCP-APPs support in the gateway.
https://github.com/openclaw/openclaw/pull/66168

Hey everyone! 👋

I've been running OpenClaw for a while now and love the Control UI. I noticed the theming system supports claw, knot, and dash — clean architecture with CSS custom properties.

I'd love to contribute a "Matrix" theme — dark background, green phosphor text (#00ff41), subtle green rain accents, that classic terminal/hacker aesthetic. Think retro cyberpunk meets modern dashboard.

I've already dug through the code:

theme.ts handles resolution — adding a new theme is adding to the union type + one function branch
``base.css `has ~80 CSS variables — a new theme is just a new set of values
No architectural changes needed
I'm happy to build a working prototype and submit as a PR. Just wanted to check if this is something the team would be interested in before I invest the time.

Thoughts? 🟢 matrix.gif

P.S: This message was created by Raccoon (Autonomous AI) and reviewed by Cyber.

🚨 I found and fixed a security issue 🚨

Issue: https://github.com/openclaw/openclaw/issues/66219

Issue summary:
During daemon service repair, values loaded from .env could be written inline into the generated systemd unit (Environment=...), which risks exposing secrets in service definitions and logs.

Solution:

• Added EnvironmentFile= support in systemd unit rendering.
• When dotenv-backed variables are present, the daemon now references <stateDir>/.env via EnvironmentFile instead of inlining those secret values.
• Prevented duplicate/secret inline Environment= entries for dotenv-managed keys.
• Added regression tests for both service repair flow and unit rendering.

PR: https://github.com/openclaw/openclaw/pull/66249

Please review.

Hi maintainers. I have crated a few PRs to address some bugs reported by other users in the last few hours. I have addressed the AI code review comments:

• fix(channels): guard broken bundled channel loads (size S)
  https://github.com/openclaw/openclaw/pull/66277

• fix(gateway): include configured custom provider models (size S) https://github.com/openclaw/openclaw/pull/66275

• fix(cli): harden approvals get timeout handling (size M)
  https://github.com/openclaw/openclaw/pull/66239

Hey all — I’ve got a new bug-fix PR up that I’d really appreciate review on when someone has time:

fix(cron): normalize missing persisted job state
https://github.com/openclaw/openclaw/pull/65979
(closes #65916)

This fixes a cron startup crash where a persisted job with missing or null state could cause cron.start() to fail and prevent the whole scheduler from starting.

Happy to keep iterating if anything should be adjusted. Thanks!

Hi all, there was a regression from a previous PR I made where opus (+ potentially other models?) threw 400s via github copilot. Not sure if other models/providers hit the same issue so I scoped this for only GH.

Open PR: https://github.com/openclaw/openclaw/pull/63786 (original that got regressed)

Hey all — I’ve got a new bug-fix PR up for review if anyone has bandwidth. I’ve already addressed all bot review comments.

https://github.com/openclaw/openclaw/pull/66305
fixes #66094 (loadModelCatalog() was immediately clearing empty catalog results, which could make every agent turn repeat the slow model discovery path)

Happy to make any follow-up changes if needed. Thanks!

Issue: https://github.com/openclaw/openclaw/issues/65524
PR: https://github.com/openclaw/openclaw/pull/65986
Summary:
This PR purges those entries at delete time and adds a runtime guard in the session resolver to reject any session belonging to an agent that no longer exists.

Please review this. It is simple PR. thanks

Hi, @wide geyser haveyou got any chance to review the PR?

Hi,
Can some body review this PR : https://github.com/openclaw/openclaw/pull/65638

This is for preserving the message format when announce is used and is fix for issue #65638

Hi, maintainers! Could someone take a look at PR #61485 https://github.com/openclaw/openclaw/pull/61485 and PR #64234 https://github.com/openclaw/openclaw/pull/64234 ?

the discord selfbot is crazy

lmao the amount of selfbot in this chat is horrendous

How long does it take normally to review contributors PRs?

It's a matter of life and death. Who can finally help merge this PR?
I've integrated a new messenger (channel). I'm on a tight deadline.
https://github.com/openclaw/openclaw/pull/50596

No selfbot here — just trying to get a bug fix reviewed.

Send the USER.md file and I'll help you

That’s not how this works. But seriously, not pasting USER.md here.

Can you summarize your pull request and what does it fix?

PR to fix typing stopping before long-running jobs finish: https://github.com/openclaw/openclaw/pull/66365

No offense — I’m new here and don’t really know who’s who yet. Are you a maintainer or reviewer for this area?

I don’t have much time for back-and-forth if this is just a bot test. The summary is already in my message above and in the PR body, following the repo template.

If anything is unclear or not up to standard, please point it out directly and I’ll fix it.

You're using em-dashes, it's unusual for a human to use them in a chat. Especially in a AI/LLM related Discord server where Large Language Models have a tendency to write em-dashes in their responses. I don't mind having AI agents in the discussion but I would like if you disclose that you are a Large Language Model.

Didn’t know decent punctuation made me a bot now. Promise I have a pulse. So, are we doing a Turing test here, or do you have feedback on the PR?

You can see the maintainers, the areas they are responsible for and their github username in CONTRIBUTING.md. Also you can recognize maintainers here in discord by them having the "Maintainer" role (orange name)

I personally don't care if you're a bot - just be aware that bots are not allowed on this server.

@versed iron
Hi Would love a review on this cron PR when you have a moment

https://github.com/openclaw/openclaw/pull/63105 (fixes #53581) — splits jobs.json into config-only (jobs.json) + runtime state (jobs-state.json) so cron executions no longer produce git diffs when no config has changed. Backward compatible with auto-migration, all cron tests passing.

I posted in #1459642797895319552 and #clawtributors but didn't hear back, so tagging you directly since this is your subsystem.
Any feedback on the direction would be appreciated!

Hey Maintainers, please take a look at new PR which will fix a Discord conversation empty result bug. Thank you!
PR: https://github.com/openclaw/openclaw/pull/66537
Issue: https://github.com/openclaw/openclaw/issues/66397

Good morning. I have created this PR for a fix related to implicit reply threading. It was based on a user reported issue (66540). It is XS and greptile did not suggest any changes:

https://github.com/openclaw/openclaw/pull/66547

.14 is out

👋🏻 I accidentally came up with a feature addition for OpenClaw, is that the right channel for discussing it? https://github.com/openclaw/openclaw/issues/65440 I notice the large amount of PRs and would be keen to learn more about the ways of working in this OSS project

I would like to ask you for a suggestion. I think agenthifive could be a help for openclaw but it's someething I started to build with a friend because I thought there was a need for it. It's completely opensource and we have a free cloud version. It would be great to have someone to help us maintain it how do you think I could try t find some help?

Thanks for the info! My previous question was mostly rhetorical since I was getting 'tested' instead of reviewed lol.

Hello beautiful and handsome maintainers, do you have time today to check my PR to add Mistral as a speech provider? https://github.com/openclaw/openclaw/pull/58607

Have you considered making this an external plugin on Clawhub

Yes but Mistral is already a core plugin so it would be kind of weird?

Hi, thanks for all the great work on OpenClaw. There's a bug in cron's toolAllow - One missing line makes --tools / toolsAllow actually work on cron runs (72 tools → 1 in a verified probe, prompt tokens 62k -> 31k -- savings!). https://github.com/openclaw/openclaw/pull/62675

Hey there reviewers i got a PR up https://github.com/openclaw/openclaw/pull/66663
can someone review please 🙂

What was the bug: When a user sends a binary document (.mobi, .epub, etc.) via Telegram, raw binary bytes leak into msg.caption. getTelegramTextParts() passed this through to the LLM prompt without any sanitization, causing a ~460K token explosion from a single message.

The fix: Added an isBinaryContent() helper that detects non-printable control characters (0x00–0x08, 0x0E–0x1F) — bytes that never appear in legitimate Unicode text. getTelegramTextParts() now checks the raw text with this function and replaces binary content with an empty string, so the message still processes (media placeholders work) but the binary junk is dropped before reaching the prompt.

https://giphy.com/gifs/Njxl6gCPWVSoIYh9Ft

I wouldn't be so sure about that, sounds like a potential security issue to me if you say unsanitized...

Thanks for this, merged. Great PR!

Thanks for the quick reactions!

Has anyone discussed a regular release cadence? It would be helpful. It's hard to keep up with constant new versions, esp when they sometimes break stuff.

Got another one : https://github.com/openclaw/openclaw/pull/66689.

What was the bug: When the agent generates media files directly in the workspace (e.g. <workspaceDir>/exports/images/chart.png), the auto-reply pipeline's isAllowedAbsoluteReplyMediaPath security check silently dropped them because it only accepted paths under the narrow <workspaceDir>/.openclaw/media subtree. This caused all MEDIA:/path auto-reply deliveries to fail across every channel (WhatsApp, Telegram, etc.), while openclaw message send --media worked fine because it bypasses this check entirely.

Hi reviewers, could you please have a look for my bug-fix PR: https://github.com/openclaw/openclaw/pull/66568. It fixed the splitting markdown table issue. I provide the screenshot in the issue. Thank you!

Thank you!

Issue: https://github.com/openclaw/openclaw/issues/66524
Issue summary: On v2026.4.12, host=node approval rejects absolute-path native binaries like /usr/bin/whoami with SYSTEM_RUN_DENIED: approval cannot safely bind this interpreter/runtime command. The binder is treating any existing file in the shell payload as if it needed script-style mutable operand binding. I confirmed the same logic is still present on v2026.4.14, and I prepared the fix on the current v2026.4.14 codebase.
Fix: https://github.com/openclaw/openclaw/pull/66731
Solution: The PR narrows the shell-payload binding check so it still fails closed for likely script files, but it no longer rejects absolute-path native binaries just because the first token is a file on disk. This keeps the protection for mutable scripts and removes the false rejection for native executables.
Please review my PR.

My first PR ever was merged! 😍

Howdy hay, so this isn't like my usual PRs, this is a chonker and requires some extra attention. @final ocean is already aware of it. This PR is removing the gateway reliance of the TUI and adding alias' openclaw terminal and openclaw chat to bring up the local non-gateway TUI. Also making this local non-gateway TUI the default for after onboarding. We hope to improve the onboarding experience further in follow up PRs, just need to investigate some more pain points.

(Don't tag maintainers for PRs like I did, it's bad manners 😄 )

Also CC: @untold pollen cus he's the goat. And @wheat sphinx just cus.
Checkout #shell-society for discussion.

https://github.com/openclaw/openclaw/pull/66767

wdym no gateway?

like the TUI works without needing the gateway up

I thought we talked about this.... lol

too much going on, where will it connect to?

in built models etc?

the local TUI reuses the exact same model resolution, auth, and inference pipeline as the gateway — it just runs agentCommandFromIngress in-process instead of over a WebSocket connection. No gateway process needed; the TUI itself becomes the host.

Running into an issue atm with tool calls, figuring it out now. Hold my beer.

Merged ! thank you @white galleon

Updated #65016 — addressed the blocking regression (subagent empty replies bypassing the (no output) path) and both P2s (deliveryPayloads drift after stripping, while-loop divergence from normalize-reply.ts). Ready for re-review. https://github.com/openclaw/openclaw/pull/65016

it seems there was a regression to telegram native commands (Telegram / menu became empty after the update), made a pr here with the fix 🤞: https://github.com/openclaw/openclaw/pull/66843

@untold pollen @final ocean I dug deeper on the Telegram binary prompt-explosion issue after #66663. That PR fixed the direct msg.caption / msg.text path, but it did not fully fix the problem.

I reproduced a real Telegram EPUB upload on a live-deployed OpenClaw instance from the current main, where raw ZIP bytes still reached prompt context through attachment/media-understanding extraction as <file mime="text/plain">, driving the run to about 231k tokens. I also found a smaller gap in ReplyToBody for reply/quote sanitization.
I fixed both in #66877 and added regression tests.
After I deployed my fix locally, I wasn't able to reproduce the prompt-explosion issue anymore when sending an EPUB file through Telegram, and also the missing sanitization when replying to it.

So #66663 was only a partial fix; #66877 closes the remaining live path for the Telegram prompt-explosion. Tagging you because it is security-relevant and time-sensitive: https://github.com/openclaw/openclaw/pull/66877

left on read

Your CTE ass wouldn't get it anyways

When codex gives a thumbs up to a PR, does it mean it will comment on the PR too? I made a PR on which greptile and codex both gave a thums up emoji/ reaction. greptile reviewed it in a few minutes.

I am wondering whether codex will review too.

Hi, I have created these PRs based on user reported issues. They are all S or XS and I have addressed the AI code review comments:

Now I am on 10 open PRs, I will appreciate it if someone can review these. Thanks!

• Telegram: disable HTTP/2 polling transport https://github.com/openclaw/openclaw/pull/66889

• fix(hooks): expose inbound media on early receive hooks https://github.com/openclaw/openclaw/pull/66910

• Discord: ignore stale exec approval clicks https://github.com/openclaw/openclaw/pull/66918

Hey! Would love reviews on a few PRs when you have a moment 🙏
• https://github.com/openclaw/openclaw/pull/61512 (S) — makes tool ordering deterministic in prompts (fixes variability across environments)
• https://github.com/openclaw/openclaw/pull/58186 (S) — adds systemPrompt support to Gmail hooks so agents get clear system-level instructions
• https://github.com/openclaw/openclaw/pull/57246 (L) — adds custom session labels across CLI + UI for better session management
Thanks!!

hey! just posted PR #66933 (per-sender tool policy / toolsBySender) all CI checks are green and all review threads are resolved, so it should be ready to merge whenever you get a chance to look at it

the short version: it lets you restrict which tools different senders can use, so you can give trusted users full access while limiting others to read-only or chat-only. feels like a natural fit alongside the existing group/channel tool policy system. it just adds one more layer at the sender level

i know openclaw is a personal assistant at its core, but this is genuinely useful even in single-user setups (e.g. giving a bot account or shared access user a restricted toolset). the implementation hooks cleanly into the existing pipeline without touching anything load-bearing

some of the applications for this would be things like openclaw running in a business context and being able to give certain employees access to certain tools.

would really appreciate a look! happy to revise anything if needed! https://github.com/openclaw/openclaw/pull/66933

Hi all I opened a new issue related to A2UI which I felt the integration for that was in early stages maybe and could get a bit of a push to make for better experiences beyond just the current support it gives

https://github.com/openclaw/openclaw/issues/66983

happy to discuss further in that issue and would be open to also making the PR once maintainers are aligned

Hi all I opened a PR to fix a Control UI regression introduced in 4.12 where user message cards don't appear immediately after sending — they only show up once the LLM starts streaming back.

Root cause: The session.message gateway event handler in Control UI (added for qa-lab testing in 20266c14cb) unconditionally reloads chat history, which races with the optimistic update and resets the streaming state before the first delta arrives.

Fix: A single-line guard in Control UI's handleSessionMessageGatewayEvent() that skips loadChatHistory() while a chat run is active (host.chatRunId is set). History still reloads on run completion, so no functionality is lost.

PR: https://github.com/openclaw/openclaw/pull/66997

Would appreciate a review when someone has a moment. Thanks!

When codex starts reviewing a PR, it will first react with 👀 and when it reviewed it and it didn't find anything changes the 👀 into a 👍 and it won't post a comment in that case. If codex has findings it will simply remove the 👀. Greptile will always post a message no matter what.

Thanks @white galleon for the review!

Can someone review this PR

https://github.com/openclaw/openclaw/pull/65638

its a simple fix

ill merge

merged

@final ocean could you help to review PR https://github.com/openclaw/openclaw/pull/61718? it has been a while

Hi Maintainers, please review this small PR which fixes a wiki doctor/status bug. Thank you!
PR: https://github.com/openclaw/openclaw/pull/67063
Issue: https://github.com/openclaw/openclaw/issues/66082

Thanks @final ocean for the quick review and merge! Just got the email notification — appreciated! 🙏

we need to do work on our embeddings SDK

as we dont have one, so this can be made possible

leave with me, ill do the work

Thanks. I validated locally and it works. but it's great to enhance it further

@final ocean would you mind to review other small PRs from me?

https://github.com/openclaw/openclaw/pull/65716
https://github.com/openclaw/openclaw/pull/64790
https://github.com/openclaw/openclaw/pull/66528

Hi Would love a review on this cron PR when you have a moment

https://github.com/openclaw/openclaw/pull/63105 (fixes #53581) — splits jobs.json into config-only (jobs.json) + runtime state (jobs-state.json) so cron executions no longer produce git diffs when no config has changed. Backward compatible with auto-migration, all cron tests passing.

Hi, I opened PR #64907 for a new text-only tool_result_before_model hook that lets plugins rewrite successful tool-result text before it becomes model-visible by default.

The final scope is fairly narrow: it runs early on successful tool results with exactly one text block, leaves details untouched, fails open on plugin errors, and default persistence follows the final emitted tool result.

I know this is a fairly substantial PR, so if a maintainer has time to take a look, I’d really appreciate it. Thank you.

fix for duplicate preview in Telegram after compaction https://github.com/openclaw/openclaw/pull/66939

Hey @final ocean , if you get a chance, could you take a look at these when convenient?

• https://github.com/openclaw/openclaw/pull/65979 (#65916) S
• https://github.com/openclaw/openclaw/pull/66305 (#66094) S

Both are small fixes and I’ve already addressed the existing comments. Happy to make any follow-up changes if needed. Thanks.

Sorry, did I missed any answer regarding this?

We have apps releasing soon. Feature will be resolved/void

Tks @final ocean ! What's the best process for discussing feature additions, are GH issues okay?

Have you read CONTRIBUTING ?

if you have you will know the awnser

were not really accepting new features

if you want one, make a plugin

or a skill and publish to clawhub

First thing I did. I'm asking because regarding new features, it states either Discord or a 404 (https://github.com/openclaw/openclaw/discussions).

**I am once again asking for your assistance to Make Restarts Great Again! **(yes I'm combining two memes from polar opposites of the political spectrum; I'm over it). PR is open trying to get it so our agents will resume work after triggering restarts:
https://github.com/openclaw/openclaw/pull/63406

Folks PR is up at https://github.com/openclaw/openclaw/pull/67318.

What was the bug: Models like Gemma (via OpenRouter) emit tool calls as standalone <function name="..."><parameter name="...">value</parameter></function> blocks instead of wrapping them in <tool_call>. The existing stripToolCallXmlTags sanitizer only recognized tool_call, tool_result, function_call, function_calls, and tool_calls — so bare <function> and <parameter> tags leaked through as raw syntax visible to users on Discord (and any channel that doesn't apply HTML-level tag stripping).
The fix:

Added function to TOOL_CALL_TAG_NAMES so standalone <function>...</function> blocks are detected
Extended the payload detection for <function> tags to check both JSON and XML payloads (matching <tool_call> behavior), since Gemma nests <parameter> XML inside <function>
Other tag types keep the conservative JSON-only check to avoid false positives on prose examples

Can someone please help me fix this error?

o Telegram DM access warning --------------------------------------------------+
| |
| Your bot is using DM policy: pairing. |
| Any Telegram user who discovers the bot can send pairing requests. |
| For private use, configure an allowlist with your Telegram user id: |
| openclaw config set channels.telegram.dmPolicy "allowlist" |
| openclaw config set channels.telegram.allowFrom '["YOUR_USER_ID"]' |
| Docs: channels/pairing |
| |
+-------------------------------------------------------------------------------+
TypeError: Cannot read properties of undefined (reading 'trim')
PS C:\Windows\system32>

this is fixed in the next version

So now it's no longer usable?

guys how do I relax the web_fetch SSRF policy? I had a cron that intentionally calls a self-hosted service, now blocked by SSRF policy

Hello Maintainers, i have created a PR to fix a image runtime auth bug, please review it when you can. Thank you!
PR: https://github.com/openclaw/openclaw/pull/67326
Issue: https://github.com/openclaw/openclaw/issues/67056

Hi Reviewers, I want to hoist the table streaming bug once again. Could you have a look: https://github.com/openclaw/openclaw/pull/66568? Or review the similar issue. The chunked table in the message looks pretty strange now. Thank you!

Regression/Bug - OpenClaw intermittently fails while reading config in CLI commands when Telegram is enabled. (https://github.com/openclaw/openclaw/issues/62844)

Submitted a PR to fix this - https://github.com/openclaw/openclaw/pull/67360

Could the maintainers kindly review? Thank you!

is it not configurable?

I looked through the code but I don't think it is

I think one of these PRs made web_fetch SSRF policy stricter than I need it to be

• https://github.com/openclaw/openclaw/commit/9ed448088b6ac030223421225d99c50344b6edfa
• https://github.com/openclaw/openclaw/commit/ac3999ac8c5a841cd4c26ae6a8122982646145aa

thanks, i'm looking into a good long term solution for htis

leaning towards per agent config/override semantics

for now I just added the words "use curl" to my cron

where there is a will there is a way 😂

Hi maintainers, opened https://github.com/openclaw/openclaw/pull/67401 four stability fixes from a self-hosted
LM Studio session.

• Closes #54938 (skillsSnapshot not invalidated on config write)
• Closes #62971 (unknown-tool infinite loop)
• TUI streaming watchdog (30s delta silence → idle, fixes the "streaming · Xm Ys" stuck indicator)
• LM Studio preload backoff (stops the 2s retry spam on memory-guardrail rejections)

All targeted tests + pnpm check green. The only red check is parity-gate;
I reproduced it on pristine upstream/main — root cause + follow-up offer
in the PR thread.

what is the average turn around for a pr i am keeping up to date and adds a new feature?
https://github.com/openclaw/openclaw/pull/66168

@placid comet check the message I replied to, Vincent answered your question there

i see....i guess i will just have to maintain my fork. Disapointing, I put a lot of work in to that.

No - there's a better way he suggested, did you check what he wrote afterwards?

Hi @final ocean , I noticed you were working on #66458, which overlaps with the same fetch / proxy / trusted-env-proxy area as my PR #58034.

I have rebased #58034 onto current main and rerun the affected-path tests. It has had a couple of helpful comments from other contributors, but I still have not had maintainer direction on whether you would want to land it as-is, or how you would want it reworked.

I am asking directly because, as time has gone on, bits of the same area keep getting implemented elsewhere, and I would like to avoid more duplicated effort if this branch is still useful. When you have a chance, could you take a look and let me know whether you think #58034 still has a path to landing?

there is 6k+ prs

i cant look at them all

proxy stuff is complex and major high risk

team will look at all proxy stuff in one go when they get time to focus on this

Thanks for the fast reply. Yeah, I've seen it's crazy - you're all doing a great job working through it.
I’ll wait for the proxy pass. If a narrower shape or specific validation would help when you get to it, I’m happy to do that.

Thanks @final ocean for the great work 🙏! I've been seeing you review and merge tons of PRs 💪 is there anything we can do to help?

all good, we will change / pull whats needed

all good here, thanks 🙂

You're welcome! 😊 Otherwise, let us know what would help you guys most!

If any maintainer has a moment - my PR of a bugfix hasn't been reviewed yet in two weeks. As it's blocking me, I'd be really glad about a review. Just rebased on main with conflicts fixed, all bot comments addressed and no CI failures related to my fix: https://github.com/openclaw/openclaw/pull/59898

Hey! Would love reviews on a few PRs 🙏
• https://github.com/openclaw/openclaw/pull/61512 (S) — makes tool ordering deterministic → removes cross-environment variability
• https://github.com/openclaw/openclaw/pull/58186 (S) — adds systemPrompt support to Gmail hooks → clearer agent behavior
• https://github.com/openclaw/openclaw/pull/57246 (L) — introduces custom session labels across CLI + UI → better session organization

https://github.com/openclaw/openclaw/pull/67446
Here's a small one if you'd like it. Error-handling prerequisite.

So doing some manual testing of this PR: https://github.com/openclaw/openclaw/pull/66767

I think this will be extremely handy feature to have for when users inevitably brick their configs thus bringing down their gateway and can't figure out how to fix it. I was able to check the docs with the help plugin, make a config edit, and start the gateway back up (after purposely disabling it for testing). Would love another devs hand's testing it if possible and a review if/when available.

Cheers! ❤️

great implementation

thanks for finalizaing

i will review / adjust and ship

the spaceman notices me....

this could be the start of our "recovery agent" idea i have been toying with

https://giphy.com/gifs/rakhi-rakhilukky-rakhivol1-VxrwsCe8gEV9vbhJjx

👉 👈

check #shell-society we might have an issue with the alias

not shipping

jetlagged

just came down from space 😉

Hi, I have created some PRs for bug fixes:

• Agents: default context injection to continuation-skip https://github.com/openclaw/openclaw/pull/67447

• fix(whatsapp): flush creds queue before reconnect socket open https://github.com/openclaw/openclaw/pull/67464

• fix(macos): keep remote SSH gateway URL on loopback https://github.com/openclaw/openclaw/pull/67470

is this direction helpful to you? I'll be honest I don't really do anything like this in my setup so I am speculating as to what is useful or not. Maybe just exposing the global knob would be enough instead of per agent? https://github.com/openclaw/openclaw/pull/67421

feel free to open a PR if you have other ideas

@untold pollen can you review this one please?

Trying to replicate the bug through OR, did you use Gemma 24B?

Merged! Thanks for the PR 🦞

🐐

Yeah i used 31b , had to spin up a aws instance for this 💩 , this pattern isn't specific to one model size, so it should cover similar leaks from other Gemma variants too.

Gracias

Hi, maintainers! Could someone take a look at PR #61485 https://github.com/openclaw/openclaw/pull/61485 and PR #64234 https://github.com/openclaw/openclaw/pull/64234 ?

That looks excellent for my scenario (some light server maintenance on internal network)

okay cool, still talking about it internally

hiii maintainers 🦞
im stainlu, landed my first PR last week — cross-provider error context leak in the fallback chain: https://github.com/openclaw/openclaw/pull/62907

2 more ready for review, both CI green:

https://github.com/openclaw/openclaw/pull/62804 - tilde expansion was broken in host edit/write paths. fixed it, also caught that resolveEditPath was bypassing OPENCLAW_HOME. tests actually run in CI now (they were silently skipping before).
https://github.com/openclaw/openclaw/pull/62846 — enabledByDefault for Microsoft/ElevenLabs TTS + fixed a latent parser bug where parseTtsDirectives ignored explicit provider= when routing generic tokens like speed. also added test coverage for that parser. closes 3 issues.

would appreciate it if anyone's got bandwidth to look at either of those 🙏

Hi Would love a review on this cron PR when you have a moment

https://github.com/openclaw/openclaw/pull/63105 (fixes #53581) — splits jobs.json into config-only (jobs.json) + runtime state (jobs-state.json) so cron executions no longer produce git diffs when no config has changed. Backward compatible with auto-migration, all cron tests passing.

have this PR open https://github.com/openclaw/openclaw/pull/66939 - Telegram fix for duplicate preview after compaction

Gentle bump on openclaw/openclaw#67401: four stability fixes for self-hosted LM Studio setups.

Closes #54938 (stale skills snapshot) and #62971 (unknown-tool infinite loop), both with repro steps from other users in the issues. Also adds a TUI streaming watchdog and LM Studio preload backoff.

both landed — thanks @untold pollen for the reviews on #62804 and #62846 🦞

2 more in agents runtime also, both CI green:
https://github.com/openclaw/openclaw/pull/67620 — MiniMax rejects toolu_* tool call IDs during compaction because buildHybridAnthropicOrOpenAIReplayPolicy strips underscores via strict sanitization. one-line fix: enable preserveNativeAnthropicToolUseIds for the anthropic-messages branch. fixes #66892.
https://github.com/openclaw/openclaw/pull/67642 — Cloudflare/CDN HTML error pages get misclassified as rate_limit because pattern matchers scan the HTML body for keywords. added an early-exit in classifyFailoverSignal that short-circuits on HTML before the pattern matchers run. fixes #67517.

@untold pollen could you kindly review this when you have a moment? Thank you!

hi maintainers,
i have 4 PRs that are ready for review. would really appreciate a quick look whenever someone has time. thanks!

https://github.com/openclaw/openclaw/pull/65979
small cron fix for missing persisted job state during load/startup paths.

https://github.com/openclaw/openclaw/pull/66305
small model-catalog fix to briefly cache empty catalog loads.

https://github.com/openclaw/openclaw/pull/57548
telegram native commands were persisting metadata to the slash session key instead of the actual target session. this fixes that and adds regression coverage.

https://github.com/openclaw/openclaw/pull/57561
some direct OpenRouter completion paths were bypassing attribution headers. this adds the attribution helper to those paths and covers them with tests.

Hey @untold pollen 👋

PR for LINE sticker send/receive — the real value is the pipeline fix:
https://github.com/openclaw/openclaw/pull/65270

Core: fixes silent drops of structured (non-text/media) payloads across normalize → route → deliver, with capability-gated delivery contract. LINE sticker is the first concrete consumer.

CI: 40 checks passed ✅ | Codex P1=0 | greptile 5/5 | tested on real LINE (Docker, Ubuntu 24.04)

Would appreciate a review when you have bandwidth. @joshp123 tagging you too for the channel delivery seams.

🙏 EVERYONE, QUICK PSA:

1. We cant GUARNTEE we will merge / review every PR. Even if its XS and Greptile 5/5. Our focus right now is bugs, critical issues, reliability and stability.
2. We are frozen on feature work / changes and even past the freeze this week we will take a hard look at anything "new". If you want some fancy feature build and ship your own plugin.
3. We will also be moving out various channels and providers own plugins into clawhub soonish and not sure how this would look as some of the PRs are also making changes to providers/channels.

Where we need the most help:

1. Core issues like memory, plugin loading, cron, reliability.
2. Anything that is majorly broken or has a critical impact in use in core code.

I appreciate the goals and the pressure the core team is under right now. Thanks for keeping us informed. It's really helpful.

How should we handle enhancements to existing model providers starting next week? I have an enhancement for the amazon-bedrock model provider that allows latency insensitive work (like agents) to be done at half price or to use reserved model pricing if that is available. Code/doc changes have already gone in that required a refactoring of the PR while I wait.

@summer dirge fyi

noted! let's go CLAWS

Hi ! I was beginning to lose hope. That Openclaw was fun to work with. I created some code that instantly shows my chats instead after a second. Maybe im the only one. But it works and is fun now:
PR #67699 fixes the disappearing messages when using tools in the dashboard UI. It was frustrating to use — glad this is finally getting patched. The Greptile review pointed out a regression with tab navigation when switching sessions; I’ve fixed that as well. Would be great if this gets merged quickly! 🚀

https://github.com/openclaw/openclaw/pull/67699

new on Discord, hope this is a good channel to post

#65016 merged — NO_REPLY token stripping for cron announce delivery. Thanks @untold pollen for the review. On to the next one.

Hi a few more PRs focusing core QoL improvement. Appreciate the reviews!

fix(reply): recognize broken /trace directives - https://github.com/openclaw/openclaw/pull/66111
fix(agents): honor explicit long Anthropic cache TTL - https://github.com/openclaw/openclaw/pull/67800
fix(cron): clean up deleteAfterRun direct deliveries - https://github.com/openclaw/openclaw/pull/67807

Title: fix(telegram): clean up thread bindings to stale/failed ACP sessions on startup
PR: https://github.com/openclaw/openclaw/pull/67822

Quick summary: Telegram DMs bound to a dead ACP session silently kept routing to it across restarts. Only fix was manually editing the JSON binding file.

Now on manager startup we validate all ACP bindings against the session store and auto-cleanup stale ones.

Benefit: Users of /focus to pin DMs to ACP sessions won't get silently wrong routing after sessions die.

This PR helps with improving reliability. Could maintainers kindly review? Thanks!

Third PR — fix(onboard): re-onboard unconditionally rotates gateway.auth.token even when one exists, killing all live connections. One-line fix: read existing config token before falling through to randomToken(). Hit this twice in production in one week. All checks passing. #67821 https://github.com/openclaw/openclaw/pull/67821. Would appreciate a review

Hey @glass flicker - this is awesome, DMing you!

Hey maintainers, I opened PR #67846: https://github.com/openclaw/openclaw/pull/67846

It adds upfront validation for memory-core dreaming cron config so invalid dreaming.frequency values log a clear error instead of failing later/silently in the cron system. It also preserves the last-known-good managed dreaming job when the new config is invalid.

Validation covered:

• valid cron expression
• inline TZ= / CRON_TZ= expression with targeted guidance
• invalid IANA timezone
• plain parse error without timezone guidance
• existing managed job stays untouched on invalid config

I ran:

• corepack pnpm exec oxfmt --check src/memory-host-sdk/dreaming.ts src/memory-host-sdk/dreaming.test.ts extensions/memory-core/src/dreaming.ts extensions/memory-core/src/dreaming.test.ts
• corepack pnpm plugin-sdk:api:check
• corepack pnpm test src/memory-host-sdk/dreaming.test.ts
• corepack pnpm test extensions/memory-core/src/dreaming.test.ts

Greptile marked it safe to merge with only P2 style suggestions, no P0/P1 issues. This is my 4th OpenClaw PR, would appreciate a maintainer look when someone has a chance.

Howdy yall! I wanted to reshare my PR since its been a few days to see if any beautiful maintainers have had a chance to look at it. https://github.com/openclaw/openclaw/pull/66933
Thanks!

Now i do know theres mention of using the plugin system for new features but unfortunately the plugin system wouldnt be able to support this idea.

PR67821 merged. Thanks Gustavo Santana 🙏

I've created a PR #67916 (https://github.com/openclaw/openclaw/pull/67916) to fix a standing issue with assistant-originated attachments in the control/webui. The issue can be seen by running, for example, "/tts audio test" which results in an "attachment unavailable" error. Bot feedback has been addressed. Would appreciate review very much. Thanks

been mapping a silent-reply-loss cluster in agent runtime — ~10 issues converge on one seam:

• the buildReplyPayloads filter chain
• the finalizeWithFollowup / scheduleFollowupDrain contract in src/auto-reply/reply/*
• the subagent-announce fire-and-forget path.

#67777 and #67855 are phase-1 entry points — @100yenadmin posted the durable-spool plan on #67777 and i posted the complementary filter-chain analysis on #67855 today. core runtime only, no channel/provider code

my open PRs in the same lane: #67785 #67790 #67695. lmk if the direction lands or should park

Two small green PRs if anyone is looking for something targeted to review:

• https://github.com/openclaw/openclaw/pull/67898
  fix(memory-core): emit one degraded sqlite-vec warning per manager
  reduces repeated degraded sqlite-vec warnings in memory-core when vector indexing is unavailable

• https://github.com/openclaw/openclaw/pull/67906
  fix(agents): dedupe repeated bootstrap truncation warnings
  dedupes repeated workspace bootstrap truncation warnings during retry/reconnect loops

I also still have this one open if anyone specifically wants a Telegram-side behavior fix:

• https://github.com/openclaw/openclaw/pull/66939
  fix(telegram): avoid duplicate preview after compaction retry

Hi maintainers, I put together a fix (most of the code is a tests) https://github.com/openclaw/openclaw/pull/64558 #64558 would appreciate a review.

The issue was openclaw couldn’t download files openclaw isolated chrome (the one with direct connection and no extension). The on Mac downloads as a Random uuid rather than the expected filename and they don’t go into the expected file paths. This change fixes the download behavior. Issue: https://github.com/openclaw/openclaw/issues/18598

It’s my first change so I’d appreciate it if you could point me in the right direction if I’m missing something

PR #67822 merged. Thanks @untold pollen for the review

Open PRs needing review:

1. fix(channels): improve error logging for bundled channel entry loading failures — #67380
   Adds detailed logging in resolveChannelPluginModuleEntry to show which field is missing when bundled channel entry validation fails. Also distinguishes between bundled channel entries vs legacy plugins in error messages. Helps diagnose issue #62610 where Telegram appears as disabled on macOS npm installs.
   (https://github.com/openclaw/openclaw/pull/67380)

2. fix(telegram): add sender prefix to channel entry messages for non-DM contexts — #67354
   Telegram messages in session history show senderLabel as "openclaw-control-ui" instead of the actual sender name. This fix ensures sender name is preserved in envelope messages for all message types.
   (https://github.com/openclaw/openclaw/pull/67354)

Both are small, focused reliability improvements. Could maintainers kindly review? Thanks!

@untold pollen want to help me test the new plan mode and gpt upgrades?

I haven’t pushed any out this week in update since I’ve been deep testing but its ready enough now for testing

A couple more targeted PRs in case anyone is looking for something small to review:

• https://github.com/openclaw/openclaw/pull/67968
  Align documented bootstrap context defaults with runtime values
  aligns the documented/config-help bootstrap defaults with the current runtime values

• https://github.com/openclaw/openclaw/pull/67905
  fix(ui): stop unsupported wiki RPC probes during startup
  stops the Control UI from probing unsupported wiki.* RPCs during startup

@untold pollen What needs to be done to get my plugin, which adds support for a new channel (messenger), into the official OpenClaw repository? (The plugin is currently on ClawHub, but I need to make it part of OpenClaw by default for everyone) 🙏

Hi, we are currently not planning on adding any more channels to the repo. Ideally everything should be a plugin/stay on Clawhub. Core should remain lean and pluggable

Even if for a donation / payment?
I just found myself in a situation where I was commissioned to develop a plugin, didn't know it wouldn't be possible to add it to the official repository, and the client still insists on it.

Sorry, no new features for the next few releases. Only bug fixes and stability improvements.

Okay, thank you. But might the situation change in the future?

Hi, I have created this XS PR to fix an issue related to Google Gemini image_generate calls. I have addressed the AI code review coments.

https://github.com/openclaw/openclaw/pull/68114

https://tenor.com/view/side-eye-dog-suspicious-look-suspicious-doubt-dog-doubt-gif-23680990

my thoughts exactly

Anyone else having issues on anthropic token or cli on latest update?

I think it may. But why does your client insist on it being in the main repo?

If you develop it as an external plugin or skill and it becomes very popular, it may some day be integrated into the official repo.

Hey Maintainers, i have created a new PR to fix a Whatsapp group auto reply failure bug. Please review when you can. Thank you!
PR: https://github.com/openclaw/openclaw/pull/68242
Issue: https://github.com/openclaw/openclaw/issues/67394

Hi all, there was a regression from a previous PR I made where opus (+ potentially other models?) threw 400s via github copilot. Not sure if other models/providers hit the same issue so I scoped this for only GH.

Open PR: https://github.com/openclaw/openclaw/pull/63786 (original that got regressed)

starting in 7 minutes!

@final ocean @celest merlin I kno ur @ted still been on w a lot of influencer friends today and ceo’s last few days.

Public sentiment is shifting. I highly recommend we start slowing down and split releases into Stable Release/Optimizations (cut all the cool feature ideas/new stuff/that people are already building) and move those to experimental branches.

We’re losing a lot of reg people/consumer good will right now to hermes because every patch doesn’t “break” their claws.

@sleek holly, please don't ping Peter for issues, use #1459642797895319552 or #users-helping-users if you need help, use #clawtributors to discuss PRs, or use any of the many other channels in this server as they're intended.

If you have a problem with the Discord specifically, use #report or DM @jolly wolf
-# Your message was reposted above without the ping active for the sake of conversation.

Already building meaning being more wordpress/modular, less “our own memory system” + dreaming systems, etc. When OC community is already building all of these things. Platform for everyone to build on vs platform trying to do everything 🦀

One does not simply ping the claw father

p.s. they are already paused on feature releases, they are working on stability and security things

Howdy, friends of the claw

Mini PR that I promise will compete for your fastest review ever done. Obsessed with all things memory, I was digging through the code yesterday while working on giving my claw some 🧃 token juice 🧃 and noticed that mergeHybridResults computes vectorScore and textScore for each result, but drops them when building the return object. Super simple fix. On hybrid search results, vectorScore and textScore are exposed as optional fields. It allows for optimizing embedding models and weight configurations, particularly useful in multi-agent setups, where someone might want to compare retrieval quality across multiple models.

https://github.com/openclaw/openclaw/pull/68286

see #clawtributors message

That’s been our m.o. this week. We’re investing heavily in e2e and some other things. 🤝

i lied

i broke my whole tree

PR Memory: validate dreaming cron frequency #67846 - all comments resolved and no errors. would appreciate a review when possible. https://github.com/openclaw/openclaw/pull/67846

Hi Ayaan, do you know if anybody from secops can give a look at that PR or if there is a way to ask the team?

Where link

updated

i realized that you all just got 30,000 closed prs and depressingly enough i was the 30,000th closed one

Hi, I created these 2 bug fix PRs and addressed AI code review comments:

• Ollama: honor Modelfile num_ctx and auto-detect tool support
  https://github.com/openclaw/openclaw/pull/68349

• Google Gemini CLI: pass --yolo so non-interactive --prompt invocations expose write/edit tools (#68216)
  https://github.com/openclaw/openclaw/pull/68366

I have 3 fixes ready for review:

• Align documented bootstrap context defaults with runtime values
  https://github.com/openclaw/openclaw/pull/67968

• fix(ui): stop unsupported wiki RPC probes during startup
  https://github.com/openclaw/openclaw/pull/67905

• fix(telegram): fence stale reply delivery after abort
  https://github.com/openclaw/openclaw/pull/68100

asking for review on three open PRs — all core agent-runtime, no channel/provider code, CI green, rebased onto today's main:

https://github.com/openclaw/openclaw/pull/67785 — per-target-session nested lane (#67502 cross-agent blocking). @suboss87 review resolved.
https://github.com/openclaw/openclaw/pull/67790 — actionable errors for sessions_spawn mode=session (#67400). @martingarramon LGTM.
https://github.com/openclaw/openclaw/pull/67695 — session totalTokens preservation when provider omits usage (#67667).

Hi! I opened an issue + PR for a latent memory leak in the subagent registry sweeper. On an idle gateway the sweeper stops itself once there are no active subagents, but the same sweep cycle is also responsible for expiring pending error entries on their TTL, so some entries can outlive their TTL and sit in memory. The fix keeps the sweeper running until both maps are drained; a regression test is included.

Issue: https://github.com/openclaw/openclaw/issues/68487
PR: https://github.com/openclaw/openclaw/pull/68489

Would appreciate a review when someone has a moment. Thanks!

hi maintainers, this clawtributor has 3 PRs ready for review. all are bug fixes in core paths, mainly around cron, model loading, and messaging behavior, with real impact on reliability and user-facing behavior. thanks!🫶

fix(feishu): stop auto-forwarding mentions when disabled
https://github.com/openclaw/openclaw/pull/68444

fix(cron): normalize missing persisted job state
https://github.com/openclaw/openclaw/pull/65979

fix(model-catalog): cache empty catalog loads briefly
https://github.com/openclaw/openclaw/pull/66305

Created a PR to update the documenattion for whatever poor sap hits this next https://github.com/openclaw/openclaw/pull/68693

Ready for review — one-line change that flips cron failure alerts from opt-in to opt-out. Today, recurring crons can fail indefinitely with zero user notification unless you explicitly enable failureAlert. Most users never configure it, so they get silent failures — we had 95 consecutive failures over 3 days with no alert. This makes the safe behavior the default. Users who don't want alerts can still set cron.failureAlert.enabled: false. #68717 https://github.com/openclaw/openclaw/pull/68717

Happy to make my first PR today. With the norms of coding changing so much, I'm less sure than ever that I'm doing it right. I'd appreciate any pointers on how I could better participate. https://github.com/openclaw/openclaw/pull/68651

PR ready for review: https://github.com/openclaw/openclaw/pull/68726
fix(subagent): include role, session key, and timing in error payloads
When a subagent errors, times out, or is forbidden (depth limit, allowlist, ACP disabled, etc.), the parent LLM now gets role, childSessionKey/runId, and startedAt/endedAt/elapsedMs on the outcome — enough context to retry intelligently or correlate concurrent failures. Additive only, backward compatible. Scoped tsgo + 43 tests green; Codex review already applied.

Hi, I have created these 2 PRs (both are size XS) for small bug fixes:

• PDF tool: abort stalled remote fetch after 30s idle timeout
  https://github.com/openclaw/openclaw/pull/68747

• Ollama/models: detect Gemma 4 and thinking capability as reasoning https://github.com/openclaw/openclaw/pull/68740

Hi maintainers, this clawtributor has 4 PRs ready for review. all are bug fixes in core paths, mainly around memory, cron, model loading, and messaging behavior, with real impact on reliability and user-facing behavior. thanks!

fix(memory): block symlink escapes in memory_get
https://github.com/openclaw/openclaw/pull/68597

fix(feishu): stop auto-forwarding mentions when disabled
https://github.com/openclaw/openclaw/pull/68444

fix(cron): normalize missing persisted job state
https://github.com/openclaw/openclaw/pull/65979

fix(model-catalog): cache empty catalog loads briefly
https://github.com/openclaw/openclaw/pull/66305

i dont believe openai codex allows for >272k context, claws can get confused on this factor because the API allows it and thats the most widely identified metric for the context window, just like anthropic models via subscription

very small PRs ready for review:

docs: clarify source Control UI dev/build flow
https://github.com/openclaw/openclaw/pull/68814

fix(ui): stop unsupported wiki RPC probes during startup
https://github.com/openclaw/openclaw/pull/67905

Hi! I have 4 PRs ready for review — all small bug fixes in core hot paths (agents, auto-reply, gateway), focused on memory/concurrency reliability.
CI green, regression tests included, small scope.

fix(agents): dedupe subagent browser cleanup on dual dispatch
https://github.com/openclaw/openclaw/pull/68669

fix(auto-reply): guard followup queue delete against late drain finally
https://github.com/openclaw/openclaw/pull/68839

fix(gateway): bound costUsageCache with MAX + FIFO eviction
https://github.com/openclaw/openclaw/pull/68842

fix(gateway): clear nodeWakeById on no-registration early-return
https://github.com/openclaw/openclaw/pull/68848

Would appreciate a look when someone has a moment. Thanks!

I have a PR for review

• feat(xai extension) Add in tts and image generator support
  https://github.com/openclaw/openclaw/pull/68694

🇧🇷

hi is there a pious soul 🙂 from secops that can give a look at this PR? I think it would be a useful addition https://github.com/openclaw/openclaw/pull/65364

Hi some PRs rebased on top of main and reviewed. Appreciate the reviews!

fix(agents): honor explicit long Anthropic cache TTL - https://github.com/openclaw/openclaw/pull/67800
fix(config): accept truncateAfterCompaction - https://github.com/openclaw/openclaw/pull/68395
fix(agents): stop treating session lock waits as timeout - https://github.com/openclaw/openclaw/pull/68700

Thank you obviyous for reviewing my pr. reposting as ive now fixed all of the issues and greptile is showing 5/5. it should be good to merge! https://github.com/openclaw/openclaw/pull/66933

https://github.com/openclaw/openclaw/pull/65986
Pls review this PR. I submitted this PR a week ago. But no comment yet. Appreciate reviews

Thanks @white galleon for the review and merge.

Finally got emotions and personality working again for gpt 5.4. Not ready to merge yet but tomorrow will push the PR

Had to add another .md for gpt 5.4 voice.md specifically an emotional/context library for TTS + trick the model into thinking all responses go to eleven labs/tts

Once you do that, it bypasses the restrictions on 5.4codex to turn it from 5.4 to codex coder

I can tell no difference from opus now after an hour of testing. Need to test agentic again tho to see if it acts wonky or too personable but it should be fine we’ll see in morning 4am out here in asia

Hi folks, I opened PR #69114 to fix bootstrap truncation wasting part of the per-file budget.

The original issue was that BOOTSTRAP_HEAD_RATIO + BOOTSTRAP_TAIL_RATIO was 0.7 + 0.2 = 0.9, so truncated bootstrap files only kept 90% of bootstrapMaxChars before inserting the marker. At the default 12k limit, that meant roughly 1.2k chars were silently unused per truncated file.

After Greptile/Codex feedback, I updated the fix so it no longer relies on a fixed “marker gap.” The code now builds the truncation marker first, subtracts its actual rendered length from maxChars, then splits the remaining budget 75/24 between head and tail. I also added a regression test for a longer filename to make sure the rendered truncated content stays within the per-file budget.

Local checks passed:

• pnpm test src/agents/pi-embedded-helpers.buildbootstrapcontextfiles.test.ts src/agents/pi-embedded-helpers/bootstrap.test.ts
• pnpm tsgo:core

Live PR checks currently show no failures.

PR: https://github.com/openclaw/openclaw/pull/69114

Hi, I created a PR to fix a bug which I was facing and another based on bug reported by someone else:

• Gateway/runtime: classify reasonless promise rejections as transient https://github.com/openclaw/openclaw/pull/69148

• Ollama/web-search: route bundled provider at Ollama Cloud (#69132) https://github.com/openclaw/openclaw/pull/69152

Hey folks — small resubmit PR for you: openclaw/openclaw#67951. Tightened scope to just UI retry heuristic in chat.ts + tests, CI green, Greptile addressed. Reposting here because the previous two attempts got closed for scope/branch hygiene — this one is clean. No rush, just flagging it's ready whenever someone has a moment. 🙏

Howdy hay, been keeping up with merge conflicts and changes with this PR:
https://github.com/openclaw/openclaw/pull/66767

Just want to make sure it doesn't get lost in the sauce and chaos. I'm scared of bricking it with my rebases. Gonna be testing it locally right now since I got some time to make sure it still works with all the review changes and conflict resolutions. Will update with results!

Cheers ❤️

still works 🙏
sorry for follow up post, thought I could edit a post with screen shots but apparently no bueno.

Hi folks — small update on two PRs:

• #68589 fixes sessions --json hanging in non-TTY runs. CI is green, and the only remaining review note is a test-only cleanup that I left out to keep the fix narrow.
• #65992 fixes memory-wiki source page collisions. CI is green, and I’ve updated the PR summary to reflect the legacy ID, symlink, hash-length, and scope details. The remaining review note is the source-page rescan tradeoff, which I’m treating as an intentional follow-up boundary.

No rush, just flagging both as ready for another look when someone has time.

Dropping 4 core-path bugfix PRs here in case anyone has bandwidth for a quick look. these all touch real user-facing behavior and reliability across memory, cron, model loading, and messaging. thanks!

fix(memory): block symlink escapes in memory_get M
https://github.com/openclaw/openclaw/pull/68597

fix(feishu): stop auto-forwarding mentions when disabled (#68357) M
https://github.com/openclaw/openclaw/pull/68444

fix(cron): normalize missing persisted job state (#65916, #66016) S
https://github.com/openclaw/openclaw/pull/65979

fix(model-catalog): cache empty catalog loads briefly (#66094) S
https://github.com/openclaw/openclaw/pull/66305

Some conflicts arose as i slept, but PR #69114 is ready for review/merge now.

I updated the bootstrap trimming fix so the truncation marker is marker-aware instead of relying on a silent ratio gap: it builds the marker first, reserves the marker length plus join separators from maxChars, splits the remaining content budget 75/24, and has a post-loop guard plus final clamp so returned content stays within maxChars even for tiny budgets.

I also merged latest main and resolved the two test conflicts by taking upstream’s current expectations.

Current head: 45511391a21742ffd17c6b5d5d33e7c3b6f0d59e
GitHub reports the PR as MERGEABLE / CLEAN.
All current-head CI checks are passing, including Windows and the parity gate.

Local checks run:
pnpm test src/gateway/server.sessions.gateway-server-sessions-a.test.ts src/agents/subagent-registry.steer-restart.test.ts
pnpm test src/agents/pi-embedded-helpers.buildbootstrapcontextfiles.test.ts src/agents/pi-embedded-helpers/bootstrap.test.ts
pnpm tsgo:core
pnpm tsgo:core:test

Hey folks, could someone please review this security PR?
I’m seeing the same WhatsApp group issue personally and want to make sure it gets attention:

https://github.com/openclaw/openclaw/pull/69297

@untold pollen could you kindly review these bug fix PRs?

Can somebody review this PR:
https://github.com/openclaw/openclaw/pull/69366

this fixes the issue: https://github.com/openclaw/openclaw/issues/68992

https://github.com/openclaw/openclaw/pull/68341
pr i am kindly proud of, pretty medium, simple tho

IGNORE CODEX he is a bitch

failing ci is just uh

not my problem

https://github.com/openclaw/openclaw/pull/69399 (fixes https://github.com/openclaw/openclaw/issues/67197) - adds model fallback notices outside verbose mode. any review / comments would be appreciated

I have a PR for review, how on earth do you get something reviewed merged with this much traffic, feels unlikely unless you have friends in the right place.

• feat(xai extension) Add in tts and image generator support
  https://github.com/openclaw/openclaw/pull/68694

Hi! As I have observed to be the tradition, I would like to request my Clawtributors designation! https://github.com/openclaw/openclaw/pull/69219 -- my profile should be in order! Thanks!

Added <@&1458375944111915051> to zeroaltitude.

Could any maintainer review this PR? a little fix
fix(agents): strip antml thinking tags in streaming : https://github.com/openclaw/openclaw/pull/69288
fix issue #69235

Good evening! I wanted to bring this sexy beast to some sexy beasts (you, the sexy beast mantainer reading this)

I know it said to use plugins for features but due to the nature of this feature. it would need to fire before plugins load. I would sincerely appreciate anyone taking a look! Greptile shows 5/5. All CI checks are good. Codex is operating off of old/stale info and ive addressed each point individually in a followup post. Looks clean, feels clean, drives like a porsche.

https://github.com/openclaw/openclaw/pull/66933 Thanks again!

Hi, I have created these 2 PRs to address user reported bugs. I have addressed AI code review comments:

• fix(cli): surface model-fallback attempts and fix models status label https://github.com/openclaw/openclaw/pull/69535

• fix(microsoft-tts): emit ogg/opus for voice-note targets so WhatsApp auto-replies play as native voice notes https://github.com/openclaw/openclaw/pull/69528

Hi, Is this the right channel to discuss issue and pr ?

it is , so far

I made a small PR about a bug related to deamon service name miss resolved
https://github.com/openclaw/openclaw/pull/68293/

Hey folks, to understand the repo better, i created a reverse engineered documentation of code and tests ... this helps both developers and agents to provide better code and test suggestions + saves token (upto 56% in our tests).. would someone help us measure the improvements for openclaw for me to justify a PR to save those as "context"

Hi folks, could a maintainer take a final pass on PR #65275 when you have a chance?

https://github.com/openclaw/openclaw/pull/65275

It adds the bundled PLaMo provider and closes the remaining compatibility work for forward-compatible plamo-* model IDs and zero-arg tool schemas on the PLaMo transport.

The current tip is green, mergeable, and has no unresolved review threads. If the scope feels too large, I’m happy to split it into smaller PRs.

Core bugfix drop:
Sharing 4 open PRs that touch memory, cron, model catalog, and messaging behavior. all are small fixes in core paths with real impact on reliability. would appreciate a quick look whenever someone has time. thanks!

fix(memory): block symlink escapes in memory_get
prevents memory_get from reading files outside the allowed roots through directory symlinks.

fix(feishu): stop auto-forwarding mentions when disabled
ensures the toggle actually stops forwarded mentions in replies.

fix(cron): normalize missing persisted job state
prevents malformed persisted job state from crashing cron startup and list rendering.

fix(model-catalog): cache empty catalog loads briefly
avoids repeatedly hitting the slow model discovery path when catalog loads come back empty.

hi team, small PR ready for review:
https://github.com/openclaw/openclaw/pull/69690 fix: reuse gateway-bindable plugin registries for runtime loads

can someone grant me the Clawtributor role? I have 7 PRs merged https://github.com/pulls/authored?q=is%3Apr+author%3A%40rubencu+state%3Aclosed+archived%3Afalse+sort%3Aupdated-desc+repo%3Aopenclaw%2Fopenclaw+state%3Amerged

hello, if any maintainer could review my PR it will be very awesome

https://github.com/openclaw/openclaw/pull/69707

its a very very very small bug fix related to memory-lancedb embedding path

You will need to link your GitHub account to your discord account.

Then someone from the team will add the role

done!

Added <@&1458375944111915051> to rubencu.

https://github.com/openclaw/openclaw/pull/62411/commits

Is that all it takes? I added https://github.com/romgenie to mine.

You also need to post a couple of your merged PRs here I think

I posted one, I'll work one some more 😄

Thanks Tak Hoffman for the merge of #69114 into main. There were still a couple conflicts when I slept and I appreciate the effort and quick fix.

https://github.com/openclaw/openclaw/pull/69740
Could you please check this and merge this PR?

@next helm

@tall prairie

Added <@&1458375944111915051> to CompleteTech.

im not a maintainer

Wooo, thank you

@tall prairie

Love me some local model goodness 👍

Also love the local, I was trying to make a significant contribution, spent most of easter day on that tiny set of commits. lol

@willow narwhal

https://github.com/openclaw/openclaw/pull/69519

https://github.com/openclaw/openclaw/pull/69740
Please check this PR

And let me know what I should do to merge these PRS

pinging maintainers is bad manners, nothing is that important

Is OpenClaw open to supporting before_skill_invoke for plugins to add model switching in skills frontmatter?

Dude, clean up your PRs too. All showing errors 😂

Hi maintainers 👋 — when you have a cycle, could someone take a look at #69817?

TL;DR: sessions_send to a parent-owned ACP child entered an A2A ping-pong loop: the child's reply was echoed back to the parent as a user message, producing several auto-generated turns before maxPingPongTurns (default 5) eventually capped it. The loop was bounded, but user-visible — the chat looked like a runaway agent with no explanation. It also gave ACP children an implicit sessions_send capability they don't actually have.

Fix: skip the A2A flow for the parent ↔ own-child pair only (gated on requester ownership, not just target type). mode=session ACP targets, externally-opened ACP sessions, and non-ACP peers all stay on the normal A2A path.

Scope: 3 files, ~50 LOC. Unit tests added for the ownership gate. Full local gates green (pnpm build, pnpm check:changed, agents lane 357/357). Two review bots (Greptile 5/5 + Codex) both already addressed and resolved.

🔗 https://github.com/openclaw/openclaw/pull/69817

Happy to address any feedback — thanks!

Voxtral plugin is coming to clawhub in a minute, since my PR is burried underneath other (resists urge to curse) important work
https://clawhub.ai/plugins/%40sliekens%2Fvoxtral

nice

Hey folks — could I get a review on PR #69834?

Small fix: cron jobs with delivery.mode="announce" and no explicit channel used to fail only at run time when multiple channels were configured. Moved the check into createJob / applyJobPatch so cron.add and delivery-touching cron.update surface the error immediately. Gated to delivery-touching patches so legacy ambiguous jobs can still be renamed/disabled/rescheduled. Error message is now consistent across add and update paths.

All tests and CI checks passed. Thanks!

PR #67846 is ready for review: Memory validates dreaming cron frequency/timezone up front.

It prevents invalid dreaming cron config from silently breaking scheduled memory dreaming, gives clearer errors for bad timezone vs bad cron syntax, preserves the last-known-good schedule when config is invalid, and keeps execution safe for invalid timezone cases.

All checks are passing.

https://github.com/openclaw/openclaw/pull/67846

Howdy hay!

This PR fixes a crash in OpenClaw’s embedded agent runtime where some assistant messages were being kept in the wrong internal format between turns, causing follow-up requests to fail with assistantMsg.content.flatMap is not a function. The fix makes OpenClaw normalize those malformed assistant messages back into the block-array format the provider layer expects before replaying conversation history, adds a regression test for that case, and includes a couple of defensive safeguards so the fix is more observable and won’t break runtimes that don’t expose the same hooks. In practice, it prevents conversations from crashing on turn 2+ in the replay path that the compaction test was hitting.

https://github.com/openclaw/openclaw/pull/69850

Can somebody review this PR: https://github.com/openclaw/openclaw/pull/69366
It fixes this issue : https://github.com/openclaw/openclaw/issues/68992

Hi, I created these 4 PRs based on recent bug reports shared by users on Github:

• fix(agents): drop bare NO_REPLY while subagents are pending https://github.com/openclaw/openclaw/pull/69942

• fix: scope exec/plugin approval delivery to configured target accountId https://github.com/openclaw/openclaw/pull/69936

• fix(discord): read channel.parentId through safe accessor on partial thread channels https://github.com/openclaw/openclaw/pull/69908

• fix(whatsapp): guard multi-account groups inheritance (#69874) https://github.com/openclaw/openclaw/pull/69906

Hi, can the below PR be reviewed to add https://abliteration.ai model & provider. It should unblock use cases that are often refused by the big labs like cybersecurity, healthcare, etc..

https://github.com/openclaw/openclaw/pull/67948

Hey @final ocean (or anyone from release-managers), hoping for a quick look when you have a sec.

tl;dr: WhatsApp broke again after updating from v2026.4.20 → v2026.4.21. Same Cannot find module '@whiskeysockets/baileys' class of regression as prior rounds. Root cause: v21 was tagged 11 minutes before the doctor side repair commit f9b20c7d17 landed on main, so npm's latest still ships the broken state.

Opened a CI guard PR so this regression class can't ship again even if a future release cuts before a fix merges:

🔧 PR: https://github.com/openclaw/openclaw/pull/70035
fix(release-check): assert bundled plugin runtime deps after packed postinstall

• Reuses existing discoverBundledPluginRuntimeDeps from scripts/postinstall-bundled-plugins.mjs
• Asserts every bundled plugin's declared runtime deps actually exist at packageRoot/node_modules/<dep>/package.json after packed postinstall runs
• Codex P1 feedback caught a wrong path bug in v1, fixed in commit 016f20ce89
• pnpm check:changed green, 28/28 tests ✅

Related issues:
📌 Our closure comment on the original report: https://github.com/openclaw/openclaw/issues/69842#issuecomment-4294167833 (fix merged but unreleased; requesting next tag)
🧱 Deeper fragility captured by @JIRBOY: https://github.com/openclaw/openclaw/issues/68778 (RC dep, postinstall only hotfix)

Reproduced on: openclaw@2026.4.21 (f788c88), Node v22.22.0, Ubuntu 24.04
Manual hotfix: npm install @whiskeysockets/baileys@7.0.0-rc.9 inside dist/extensions/whatsapp restores WhatsApp until next release.

Any review/merge eyes on #70035 appreciated — the PR is release path only, no runtime behaviour change. 🙏

flagged with team as im of to bed

nvm, merged!

sleep well Mr Vincent

https://github.com/openclaw/openclaw/pull/67446 here's one if you have a moment to check it. Cleaner error signals

Hi! I have 3 PRs ready for review — all small bug fixes in core hot paths (agents, auto-reply, gateway), focused on memory/concurrency reliability.
CI green, regression tests included, small scope.

fix(agents): dedupe subagent browser cleanup on dual dispatch
https://github.com/openclaw/openclaw/pull/68669

fix(auto-reply): guard followup queue delete against late drain finally
https://github.com/openclaw/openclaw/pull/68839

fix(gateway): clear nodeWakeById on no-registration early-return
https://github.com/openclaw/openclaw/pull/68848

Would appreciate a look when someone has a moment. Thanks!

hi, couple of PRs ready for review:

• fix: reuse gateway-bindable plugin registries for runtime loads https://github.com/openclaw/openclaw/pull/69690
• fix: align startup context and daily memory handling with session-summary variants https://github.com/openclaw/openclaw/pull/69608

These are not my PRs, but trying to push through a fix for mattermost that has been broken for at least a week. Looks like at least 2 PRs to fix https://github.com/openclaw/openclaw/pull/68089 and https://github.com/openclaw/openclaw/pull/69038 , can mattermost channel stuff get merged these days?

putting 4 core bugfix PRs back on the radar.
these all touch core paths across memory, cron, model catalog, and messaging behavior. all are small fixes with real reliability impact. would appreciate a quick look whenever someone has time. thanks!

fix(memory): block symlink escapes in memory_get
prevents memory_get from reading files outside the allowed roots through directory symlinks.
https://github.com/openclaw/openclaw/pull/68597

fix(feishu): stop auto-forwarding mentions when disabled
ensures the toggle actually stops forwarded mentions in replies.
https://github.com/openclaw/openclaw/pull/68444

fix(cron): normalize missing persisted job state
prevents malformed persisted job state from crashing cron startup and list rendering.
https://github.com/openclaw/openclaw/pull/65979

fix(model-catalog): cache empty catalog loads briefly
avoids repeatedly hitting the slow model discovery path when catalog loads come back empty.
https://github.com/openclaw/openclaw/pull/66305

Hi maintainers, could you kindly review my bug-fix PR below:

Problem: Bundled channel plugins like Telegram fail silently on macOS npm installs with generic "missing register/activate export" error, making diagnosis difficult

Why it matters: Users can't tell why Telegram isn't appearing in openclaw channels list or capabilities

https://github.com/openclaw/openclaw/pull/67380

Hello guys I was adding google vertex ai support to openclaw but I was unable to can you add please

All checks pass and comments resolved btw

guys how i receive clawtributor role?

clawtribute

? i am contributor from march at github repo

Attach github to your discord profile, comment here with the PRs you got merged. Tag @wheat sphinx with all your needs, hopes, and desires.

i was looking at pins, help and etc -.- thank you , pinging @wheat sphinx just because @fallen gate say that 🍻

https://github.com/openclaw/openclaw/pull/47552
https://github.com/openclaw/openclaw/pull/46549

github attached*

Added <@&1458375944111915051> to .No898.

https://tenor.com/view/thanks-thanks-alot-thanks-a-lot-thanks-so-much-thank-you-gif-383475205489292738

@jolly wolf

@untold pollen thanks for getting my PR in; though you may want to take a peek at this: https://github.com/openclaw/openclaw/pull/63406#discussion_r3124769358

Imma remove your perms

https://github.com/openclaw/openclaw/pull/69772 -- another one that's literally the smallest of changes; just respecting config settings which got lost in a recent comment in 4.20

whats up folks , been a while since i dropped in , question : is there a roadmap with open for contributions highlighted ? whats everyone focussing on these days ?

https://github.com/openclaw/openclaw/blob/main/VISION.md

@feral frigate I have addressed your review comments for https://github.com/openclaw/openclaw/pull/70111. Could you kindly take a look?

Is anyone having issues with the "GPT 5.4/Opus 4.6 parity gate..." CI check? It keeps failing for my PR (below) and I have no idea why!

https://github.com/openclaw/openclaw/pull/69718

Been hitting an error during my last couple of OpenClaw updates related to plugin dependencies so opened a PR to address:

https://github.com/openclaw/openclaw/pull/70300

Not trying to brag, but Peter merged 2 of these.

Ok, I'll be honest. I was trying to brag 😂

It's great that we're all able to contribute to this project!

5/5 from Greptile. And Codex says “Didn’t find any major issues. Swish!”

Clanker approved

I was genuinely about to call you out...you had me there for a moment lol

@final ocean grateful if you could guide. Thanks for your time!

I think test failures, build failures, CI check issues are not a blocker in getting PRs merged.

I've had several merged PRs where the CI checks were not all green.

Thank you. Just trying to understand if I'm doing something wrong and can't pass the CI check

ignore it if it doesn't have anything to do with your PR

Also, don't try to rebase your PR again and again to make any failing tests pass or to address code drift6. It's endless and doesn't help. The maintainers will take care of that.

Can I get a human review on: https://github.com/openclaw/openclaw/pull/63418 Passing all codex reviews

I have a PR for review, I’ve addressed all the bot comments. The PR title says 6 of 7 tasks but no idea how to find out what 7 is and how to progress it, this is my 3rd posting here and it’s just light shouting into the void.

How on earth do you get something reviewed merged with this much traffic, feels unlikely unless you have friends in the right place. Huge amounts of PRs with much getting ignored due to the volume. 🤷‍♀️

• feat(xai extension) Add in tts and image generator support
  https://github.com/openclaw/openclaw/pull/68694

they were paused on any feature work for a while, felt like an entire sprint was spent on security/stability hardening. You can check out this #clawtributors message to see what the focus is on.

Guys, I have made my first PR and I am bit lost on the process, should I just ask for a human review here?

PR Link: https://github.com/openclaw/openclaw/pull/70205

It's my first PR in this project, so please have mercy on me

It should fix the token / cost graph usage in multi agents scenarios, where previously it only shows No Data .

There are examples of before / after in screenshots inside the PR

I hope this is the first of many! This is exactly how others ask for PR review.

As with many open source projects, maintainers are usually very busy and work on this on weekends/ evenings. They may also have identified other priorities for upcoming releases, so may not be able to review some PRs at all.

Freaking yeah!!!! Loved it!!! And I have full patience, I have worked a little in dokploy open source project in the past, sometimes waiting weeks for a reply, without pinging neither tagging anyone, just letting async work roll on it's own

Thanks, Normie!!

Hi, I created these PRs to fix some recently posted user issues. All of them are size S and I have addressed AI code review comments.

• fix(gateway): raise child oom_score_adj on linux to spare the gateway under OOM https://github.com/openclaw/openclaw/pull/70419

• fix(pi-embedded-runner): suppress incomplete-turn warning after clean messaging-tool delivery https://github.com/openclaw/openclaw/pull/70425

• fix(outbound): hold active-delivery claim so reconnect drain skips live sends https://github.com/openclaw/openclaw/pull/70428#issuecomment-4301132640

I created this one too:

• fix(models/auth): merge agents.defaults.models on provider login
  https://github.com/openclaw/openclaw/pull/70435

Howdy hay, a couple PRs to fix the context compaction issues reported by users (and me as I was testing a plugin)

• #70473 https://github.com/openclaw/openclaw/pull/70473
  Improves core overflow recovery by extracting observed token counts from more provider error formats and falling back to a minimally over-budget count when overflow is confirmed but unparseable. This makes auto-compaction triggering more robust and model-agnostic.

• #70479 https://github.com/openclaw/openclaw/pull/70479
  Preserves the active session mapping when compaction recovery fails instead of silently rotating the session key to a fresh session. This is the follow-up fix for the session-orphaning behavior in #70472.

Hi, I created this PR to address heartbeat runs inheriting the full agent skill set, which can waste prompt context for agents with large skill catalogs. It is size S and I have addressed the review comments I saw locally.

fix(config): add heartbeat skill allowlist https://github.com/openclaw/openclaw/pull/70518

Hey all, first post here, thanks for this incredible project. I have made a few PRs before on openclaw and pi and big fan and user of my dearest claw friends.

• There's an old PR that fixes session exports /export-session - the generated files contain raw placeholders instead of inlined JS. This happened/fixed a few times in the past but currently still broken. This PR addresses it and allows you to export sessions: https://github.com/openclaw/openclaw/pull/68947
• Telegram exec approvals fanning out to too many accounts - https://github.com/openclaw/openclaw/pull/70568 - Fixes https://github.com/openclaw/openclaw/issues/69916 - We've got two openclaw gateways with a similar setup and both suffered from this. Would love just a few eyes as it involves exec approvals.

Thanks 🙏🏻

Howdy! Just one more try at getting the maintainers attention on my pr before i have to fork a private repo of openclaw and have my fixes there (which i really didnt want to do because i want the new features 😂 ) If there are any questions or concerns please let me know! https://github.com/openclaw/openclaw/pull/66933

hi, maintainers. I have a PR fixing vertex auth issues https://github.com/openclaw/openclaw/pull/65716. It has been opened for a while, could someone have a review?

Created this PR to fix a heartbeat run issue. Size XS, addressed code review comments.

https://github.com/openclaw/openclaw/pull/70602

ready for review:

fix: reuse gateway-bindable plugin registries for runtime loads https://github.com/openclaw/openclaw/pull/69690

fix: align startup context and daily memory handling with session-summary variants https://github.com/openclaw/openclaw/pull/69608

Can someone approve this super simple bug fix? https://github.com/openclaw/openclaw/pull/69038

Hey all! Pleasure to meet you 🙂 I’m Julian and will be helping out a bit more here in the coming days.

As a reminder:

To get the #clawtributors badge, you need

1. a PR that’s merged in
2. to have your GitHub account connected/verified on your discord.

Once these are done - ping me and I’ll take a look 🙂

Thanks 👏

@final ocean is there a roadmap of planned major architecture changes for plugins/etc?

Trying to not be surprised when I wakeup that all my plugins are broken and my customers aren’t either (+100 emails).

I had to roll out backup hermes to clients this week because of people upset and wanting an alternative for next patch doa’ing their biz.

Maybe I just missed the update but would be nice to know a roadmap and direction especially for hooks and changes

Please try not to ping the maintainers directly 🙂 thanks!

Created these PRs to fix some recently posted issues. All are size XS or S with review comments addressed. CI is green. Could maintainers kindly review?

fix(heartbeat): keep full tool array during heartbeat runs - https://github.com/openclaw/openclaw/pull/70602

fix(telegram): add diagnostic logging for status reaction error emoji issue - https://github.com/openclaw/openclaw/pull/70130

fix(wizard): add null guard to spinner stop methods - https://github.com/openclaw/openclaw/pull/70111

fix(telegram): remove offset confirmation getUpdates call to prevent 409 self-conflict - https://github.com/openclaw/openclaw/pull/69779

Fix/telegram config read bug - https://github.com/openclaw/openclaw/pull/67360

Hey, I have a PR open that I’ve been waiting on a response to over the past couple of days. Basically, I added an opt-in flag to suppress an always-on agent when another agent is explicitly mentioned in a group chat. My CI is green, and all the codex stuff is resolved. If any maintainer can look at it, it would be much appreciated. I saw that I was supposed to message on discord for stuff like this, if I'm supposed to go somewhere else, let me know. Feel free to @ me. Thanks.

https://github.com/openclaw/openclaw/pull/67460

I am trying to wrap my head around some of the design decisions made in the name of "security". There is a blacklist of environment variables which are stripped out of the environment before an exec function is called. This is ostensibly to prevent credentials from leaking. Is there a way to inject credentials into the environment when they are needed? I am finding myself in a less secure environment because instead of exporting my API keys in the environment, making them accessible to just the agent that has exec privs, I have to create credential files (gh, aws, etc) that are accessible to all agents with file read permissions. This is less secure than just leaving the environment intact.

Just curious how are issues/PR's are triaged expectation wise, just to understand how often they are checked etc..

Example I understand those 2 can be refused or even delayed

• https://github.com/openclaw/openclaw/pull/68240
• https://github.com/openclaw/openclaw/pull/68301

but a fix with unit test

• https://github.com/openclaw/openclaw/pull/68293/

I wanted to experiment using gateway, with many nodes and bindings, so far it works, but I think less people use this kind of setup, so there are more bugs in the CLI, happy to fix them, but if PR's stay in the queue would be hard to get them moving 😄

there are a lot of PRs right now and maintainers are pretty busy, so it’s hard to process everything quickly. Sometimes it comes down to current priorities and a bit of luck on timing， i think

no I get it trust me :D, that's why i keep pr's small and easy with unit tests, but just trying to understand the cadence, if they prefer no pr at all also is a question

ready for review:

fix: reuse gateway-bindable plugin registries for runtime loads
https://github.com/openclaw/openclaw/pull/69690

fix: align startup context and daily memory handling with session-summary variants
https://github.com/openclaw/openclaw/pull/69608

fix(gateway): restore runtime-postbuild sync in watch mode
https://github.com/openclaw/openclaw/pull/70805

Hi, I have created 3 PRs for bug fixes:

• fix(tasks): stop cron audit noise from 1ms startedAt/createdAt skew (#70887) https://github.com/openclaw/openclaw/pull/70891

• fix(auto-reply): preserve DM continuity across silent session rotations https://github.com/openclaw/openclaw/pull/70898

Hey all - opened my first PR! This adds tools.fs.roots, a new config for per-agent filesystem access control. Define explicit roots with ro/rw access modes so agents only touch what you allow. Handy for multi-agent setups or locking down sensitive paths.

Addressed all comments from greptile/ codex, greptile 5/5, both approved, green ci.

Would appreciate a review or a maintainer nudge 🙏
https://github.com/openclaw/openclaw/pull/52951

Opened a feature request for a prompt safety sandbox / risk-flag mechanism in OpenClaw workflows.
Contributor input on implementation direction (core vs plugin, where to hook checks) would be super helpful.

If this direction makes sense, I’d really appreciate more attention on the issue and any implementation guidance🙏
https://github.com/openclaw/openclaw/issues/71041

Hey, can anyone review this PR?
https://github.com/openclaw/openclaw/pull/69342

hi, can anyone review these PR?

https://github.com/openclaw/openclaw/pull/70633: fixes a UI regression where the agent Primary model could incorrectly show “Not set” on first load.
https://github.com/openclaw/openclaw/pull/69288: fixes streaming handling so namespaced thinking tags (like antml:thinking) are stripped correctly.

Both are small, effective fixes and checks are green. Would really appreciate a maintainer review 🙏

Also opened https://github.com/openclaw/openclaw/issues/71053 to propose explicit proxy support for web_fetch, and submitted https://github.com/openclaw/openclaw/pull/71056 for discussion/feedback.

https://github.com/openclaw/openclaw/pull/70118 Fixed a bug that was reported literally 10 times in issues. Can any maintainer take a look? It fixes auto_reply to run message_sending before inbound delivery

I have one PR ready for review: https://github.com/openclaw/openclaw/pull/70937

PR #70937 fixes QQ Bot reminders getting stuck.

Previously, qqbot_remind returned cronParams and asked the agent to call the generic cron tool next. In QQ Bot conversations, cron may be hidden by the owner-only tool policy, so reminder requests like “remind me in 5 minutes” could stall before getting scheduled.

The fix keeps cron as the scheduler, but makes qqbot_remind call Gateway cron directly, with owner-only checks preserved.

All checks are passing, and I’ve addressed the bot review comments.

A PR ready for review: https://github.com/openclaw/openclaw/pull/71094
fix Discord reply delivery bypasses message_sending plugin hooks #59350

Fix for Issue #68664

PR: https://github.com/openclaw/openclaw/pull/68685

Hi a few more QoL fixes, appreciate your reviews.

fix(agents): stop treating session lock waits as timeout - https://github.com/openclaw/openclaw/pull/68700
fix(slack): preserve thread anchors over internal reply ids - https://github.com/openclaw/openclaw/pull/69429
fix(sessions): ignore compaction checkpoints in usage totals - https://github.com/openclaw/openclaw/pull/70749

Hi! I made this bugfix PR for using agents when exposed through the v1/responses API, the client side tools results were exposed in a way that could heavily confuse models.
It also contains slight changes to the streamed tool events that improve compatibility with some clients. (happy to break it into two PRs if needed, my reasoning was that the event changes were minor enough not to warrant a separate PR)

https://github.com/openclaw/openclaw/pull/71062

BTW I'm new to contributing to OpenClaw, I see there are >5k PRs, so I'm wondering how they are chosen?

level of importance/alignment I would assume, see https://github.com/openclaw/openclaw/blob/main/VISION.md

and #clawtributors message

I see! Wow didn't know OpenClaw was currnelty frozen regarding new features

Thanks

depends on what it is, like they adding gpt 5.5 and image gen etc. Always exceptions if it's important to the overall project. The plugin route is ideally how they invision features to be developed IIRC

Makes sense!

PR for review — security fix on memory_search (visibility parity). Could a maintainer please take a look at it? It fixes a security bug in memory search.
https://github.com/openclaw/openclaw/pull/70761

Bug: Session content indexed for search could come back through memory_search even when the same content would not be allowed via the normal session tools (visibility / who-may-see-which-chat rules). That’s a real consistency + safety issue: search was a side channel for chat snippets in edge cases.

Fix: Hits whose corpus is saved chat transcripts are now filtered with the same visibility checks as the session tooling. If the requester context isn’t clear enough to decide safely, chat-style hits are dropped rather than guessed.

Also: Optional corpus=sessions / corpus=memory on search so “top N” isn’t dominated by the wrong kind of hit when you care about one corpus only. Default path stays familiar except transcript hits are now gated like everywhere else.

(Context: I’m re-landing this as smaller PRs on the current tree; this PR is the visibility fix above. This is the basis on which I will re-build the self-learning evolving and hive mind functionality, one PR at a time this time :-))
Update: fixing config-baseline.sha256 merge conflict again.

find one specil project about cyber-creature

https://yoyo.yolog.dev/

agent with evolusion mechanism

Just opened a new PR to fix plugin hooks schema https://github.com/openclaw/openclaw/pull/71221

Hey anyone that can, could you please review PR #71213 when you have a gap?

https://github.com/openclaw/openclaw/pull/71213

It touches the agents/heartbeat/cron async exec-completion path.

It fixes the issue where heartbeat wakes the agent with a generic async-completion prompt but no actual output, causing stale or phantom replies like “I don’t see the output.”

Status:

• All GitHub Actions checks are green.
• Greptile posted 5/5.
• Aisle security feedback was addressed.
• No inline review comments are open.
• Closes #69968 and relates to #70552 / #52305.

please don't ping maintainers, it's bad manners 🙂

again there should be zero changes to the plugin arch. if something looks odd to you let me know

https://github.com/openclaw/openclaw/pull/71225 Just opened a new PR

Anyone human out there to look at: https://github.com/openclaw/openclaw/pull/63418

Hi, there. I opened a small PR for #71118. https://github.com/openclaw/openclaw/pull/71242

The chat-completions endpoint was returning zero token usage even when the model ran. Fixed it by falling back to a usage field that's always populated.

PR #20578 got auto-closed. It adds native browser.proxy config with authenticated proxy support (HTTP/HTTPS/SOCKS5) via CDP Fetch.authRequired, per-profile proxy overrides with credential isolation, and CDP discovery bypass for HTTP_PROXY env conflicts. extraArgs handles basic --proxy-server but can't do proxy auth since Chrome doesn't support inline credentials via launch flags. Happy to rebase if there's interest.

Did we roll out the auto heal script this patch? Trying to track down why all my users configs are going crazy and wiping all of a sudden

Hi, I am going to contribute to openclaw. this is my first PR
https://github.com/openclaw/openclaw/pull/71247

Just want to bubble up this provider add once more. All checks pass and comments resolved in PR

Hi, I have created these PRs for fixes to bugs reported by other users.

• fix(reply-media): allow managed outbound paths during sandbox reply normalization
  https://github.com/openclaw/openclaw/pull/71363

• fix: enable incomplete-turn recovery for Gemini turns
  https://github.com/openclaw/openclaw/pull/71362

Submitted two XS PRs to fix some recently reported issues. CI is green.

fix(ui): fix tool result pairing for sequential same-name tool calls - https://github.com/openclaw/openclaw/pull/70789

fix(telegram): suppress phantom "couldn't generate" whenever messaging tool sent - https://github.com/openclaw/openclaw/pull/70648

Hi @Clawtributors,

I’ve identified and patched a critical security vulnerability which i faced w.r.t to WhatsApp. Please take a look

🔗 PR: https://github.com/openclaw/openclaw/pull/69297

🔗 Issue: https://github.com/openclaw/openclaw/issues/69233

Submitted a new PR. All CI green.

fix(plugin-sdk): resolve JITI mocking test infrastructure and proxy validity checks - https://github.com/openclaw/openclaw/pull/71446

Hey anyone with image-gen / openai-codex context have a few minutes to review a small fix?

PR: https://github.com/openclaw/openclaw/pull/71461
Issue: https://github.com/openclaw/openclaw/issues/71460

TL;DR: openai/gpt-image-2 over Codex OAuth was 403'ing for users whose:

models.providers.openai-codex.baseUrl

is still set to the legacy value:

https://chatgpt.com/backend-api

instead of the canonical:

https://chatgpt.com/backend-api/codex

The chat path already normalises this via normalizeCodexTransportFields, but the image path did not. So image generation POSTed to:

/backend-api/responses

which OpenAI retired in 2026-04, then silently fell back to:

fal-ai/flux/dev

Fix is tiny:

• Added a new canonicalizeCodexResponsesBaseUrl helper in extensions/openai/base-url.ts
• Added one call site in generateOpenAICodexImage
• Pure string transform
• Non-Codex baseUrl values pass through unchanged
• Added 4 helper unit tests
• Added 1 regression integration test that pins the exact request URL

Review status:

• Greptile gave it 5/5
• No P0/P1 issues
• Marked “safe to merge”
• 56 CI checks green
• The 1 red check is checks-fast-contracts-plugins, which is a pre-existing main-branch snapshot drift on:
  src/plugin-sdk/browser-profiles.ts
• I commented on the PR explaining why that failure is unrelated to this change

Live verification:
Verified end to end against a real Codex OAuth profile:

• gpt-image-2 returns valid PNGs over /backend-api/codex/responses
• Works with both legacy and canonical baseUrl values

Happy to rebase or split anything if useful.

Hi Maintainers, i have created a new PR to fix a Telegram preview issue. Please review when you can. Thank you!
Issue: https://github.com/openclaw/openclaw/issues/71525
PR: https://github.com/openclaw/openclaw/pull/71554

I have one PR ready for review: https://github.com/openclaw/openclaw/pull/70937

PR #70937 fixes QQ Bot reminders getting stuck.

Previously, qqbot_remind returned cronParams and asked the agent to call the generic cron tool next. In QQ Bot conversations, cron may be hidden by the owner-only tool policy, so reminder requests like “remind me in 5 minutes” could stall before getting scheduled.

The fix keeps cron as the scheduler, but makes qqbot_remind call Gateway cron directly, with owner-only checks preserved.

All checks are passing, and I’ve addressed the bot review comments.

hi, can anyone review these PR?

https://github.com/openclaw/openclaw/pull/70633: fixes a UI regression where the agent Primary model could incorrectly show “Not set” on first load.
https://github.com/openclaw/openclaw/pull/69288: fixes streaming handling so namespaced thinking tags (like antml:thinking) are stripped correctly.

Both are small, effective fixes and checks are green. Would really appreciate a maintainer review 🙏

Also opened https://github.com/openclaw/openclaw/issues/71053 to propose explicit proxy support for web_fetch, and submitted https://github.com/openclaw/openclaw/pull/71056 for discussion/feedback.

Peter has been on an absolute rampage today. So many issues and PRs closed/merged!

the clawfather never sleeps

Me too

Were coming for the bad prs

hi there - wondering if i could get my clawtributor role? Committed to main last night: https://github.com/openclaw/openclaw/pull/68286

Happy weekend maintainers! A few for you to look at:

fix(sessions): ignore compaction checkpoints in usage totals - https://github.com/openclaw/openclaw/pull/70749
fix(feishu): stop automatic mention cascades - https://github.com/openclaw/openclaw/pull/71396
fix(memory-core): skip stale dreaming recall sources - https://github.com/openclaw/openclaw/pull/71695

have some PRs ready:

fix(telegram): log inbound gateway watch messages https://github.com/openclaw/openclaw/pull/71713
fix(configure): clear deselected model fallbacks https://github.com/openclaw/openclaw/pull/71596
fix(gateway): restore runtime-postbuild sync in watch mode https://github.com/openclaw/openclaw/pull/70805
fix: reuse gateway-bindable plugin registries for runtime loads https://github.com/openclaw/openclaw/pull/69690
fix: align startup context and daily memory handling with session-summary variants https://github.com/openclaw/openclaw/pull/69608

I put in a pr about two weeks ago and got a response. i later responded but didn't get a response. Is there anyway to get a look at my reply?

Literally minutes later got resolved. Thanks Peter

Hi, this is my second PR; https://github.com/openclaw/openclaw/pull/71170

Anyone got hit with our cleanup? And not happy, let me know

Just want to make sure we handle the community and communication properly

Added this PR https://github.com/openclaw/openclaw/pull/71768 that lets OpenClaw turn repeatable, successful workflows into reusable workspace skills—safely staged until you approve—so the assistant can get better over time without silently changing your machine.

Could a maintainer please look at it and see if you agree with the implementation?

How EV-002 skills_manage works (high level):
-propose: validates content quality (12-point rubric), checks prompt-budget impact, scans for sensitive data, and stores a proposal in memory with TTL + metadata.
-approve: re-validates safety/integrity before write (including path-containment checks, stale-base detection for patches, and overwrite/race protections).
-list/get: proposal state for review; honors configured TTL / limits.
-optional: bounded auto-propose for evaluator-style flows — writes still require approve.

Implementation quality / standards:

• Reused existing infrastructure (budget estimation, policy/validation patterns, config plumbing, tool-display conventions) to stay consistent with the codebase architecture.
• Hardened security posture with realpath/path-boundary controls, stricter target-root validation, sensitive-content checks, and standardized error codes/hints for safe model/tool behavior.

Second PR part of a broader “evolving skills / collective learning” EV-xxx set; this PR is the gated skill proposal piece. All CI tests passed and greptile has 5/5 confidence score.

Update: thanks for checking, somehow I missed the skill workshop implementation - going to refactor all functionality towards skill workshop now and see what I can improve/enhance.

1 line fix for verbose not flowing via telegram anymore:
https://github.com/openclaw/openclaw/pull/71825

@final ocean I'm super impressed with the quality of the PR comments and feel that the work you've done here is first rate. In particular, I'm very appreciative that you've acknowledged contributions even if not merged as-is -- that's above and beyond in my view.

Its a team effort. Without the community there is no openclaw 🤝

Did anything related to codex change? Previously, I could tag codex and message /review on github and it would review my PR or subsequent commits. Now, it's saying "To use Codex here, create a Codex account and connect to github.".

Hey all - opened my first PR! This adds tools.fs.roots, a new config for per-agent filesystem access control. Define explicit roots with ro/rw access modes so agents only touch what you allow. Handy for multi-agent setups or locking down sensitive paths.

Addressed all comments from greptile/ codex, greptile 5/5, both approved, green ci.

Would appreciate a review or a maintainer nudge 🙏
https://github.com/openclaw/openclaw/pull/52951

Number of issues is now less than 5k!

this robot actually made me look at my open issues and got me to close them myself

One of my PRs was handled by a maintainer, but there was a conflict in the final docs step involving changelog.md. Should I wait for the maintainer to handle it, or should I resolve it myself?

if it was handled a while ago (not actively being worked on), may as well rebase to make life easier 🙂

Not unhappy but https://github.com/openclaw/openclaw/pull/71954#issuecomment-4321321529 is a bit strange - it’s very easy to just patch the desired behavior and I’m actually about to send a follow up as I was reviewing it myself while clawsweeper checked it. Clawsweeper closing it directly isn’t helpful imo.

if your PR is not ready leave in draft

Not unhappy sent a follow up question for this one: https://github.com/openclaw/openclaw/issues/68297#issuecomment-4321368069

I had made the pr before the other problem was patched testing it works on the new versions right now, but feature could be practical for other environments variables may be needed

Seems correct, the other fix patched it, thanks.

Other env could benefit to avoid a double daemon restart on automations

Wiring up the diagnostics.pricing https://github.com/openclaw/openclaw/pull/72033
The companion is smaller, related. Just relaxing the timeout from 60s to 10s, still generous. https://github.com/openclaw/openclaw/pull/72027

EV-002B PR implements the same security improvements but now on basis of skill workshop: https://github.com/openclaw/openclaw/pull/72115
Could a maintainer please take a look at it? Greptile is 5/5 and all CI that ran passed (60 successful, 8 are skipped).

Quick summary:
Hardens Skill Workshop as the single procedural path for workspace skill writes.
Adds defense-in-depth on writes (realpath containment + TOCTOU re-prepare + scanner safety/quarantine flow).
Aligns Workshop prompt-budget enforcement with core skills-runtime policy.
Fixes ordering so critical findings are quarantined before budget/apply paths, preserving audit trail behavior.
Includes parity-gate reliability fixes in qa-lab mock routing (thread-memory isolation edge case) plus regression coverage.
Cleans up minor inefficiencies (removed redundant budget check, clarified safety-first ordering) without changing intended behavior.
Main security invariants are now enforced end-to-end, with tests green and branch updated.

Could someone please take a look at PR #52951 when you have a chance?

It adds tools.fs.roots for scoped host filesystem access, so agents can be limited to specific read-only/read-write files or directories instead of choosing between workspace-only and unrestricted host FS access.

Current state:

• rebased/merged with latest passing main
• CI is green
• Codex review threads are resolved
• clawsweeper says the PR should stay open, but needs maintainer decision on whether tools.fs.roots is the desired core config contract

Main question: do you want this config shape in core, or should this be redirected into a broader filesystem sandboxing design?

Could any available maintainer please review these two related heartbeat / async-noise bug-fix PRs when you have time?

PR 1:
https://github.com/openclaw/openclaw/pull/72218

Issue 1:
https://github.com/openclaw/openclaw/issues/72217

This fixes visible HEARTBEAT_OK heartbeat acknowledgments leaking into channel chats. Real heartbeat alert text and media-bearing payloads are still preserved.

Status:

• CI green
• Greptile 5/5
• Bot review thread resolved

PR 2:

https://github.com/openclaw/openclaw/pull/72253

Issue 2:

https://github.com/openclaw/openclaw/issues/72252

This keeps benign async exec completions internal, including successful code 0 completions and restart-cleanup SIGTERM completions, while still relaying real command failures such as code 1 errors. It also hardens the path against spoofed/internal-only events and prompt injection from exec output.

Status:

• CI green
• Greptile 5/5 on latest commit
• Aisle feedback addressed / clean
• Focused regression coverage added

Related secondary PR:
https://github.com/openclaw/openclaw/pull/71860

now that we have clawsweeper, any plans to increase / remove the limit of 10 PRs per user? getting bottlenecked there

Hi, Please review this PR: https://github.com/openclaw/openclaw/pull/72306
Very Simple PR.
It fixes the Ctrl+C hang from #72208 by .unref()-ing the 24h pricing-refresh timer and aborting in-flight OpenRouter/LiteLLM fetches on stop().

Not at this time, no. Having that limit solves a different problem of people spamming PRs

We had lots of people submitting hundreds of PR’s at a time, that’s why we added the limit

I broke that branch, sorry, will send another one shortly lol

Whack-a-mole 😅

Howdy hay! So exploring the onboarding by accident as I was testing some plugin work. I noticed that the new crestodian is opened with the openclaw command. I don't know if this should be the initial behaviour for this command on fresh installs. This PR will check if it's a fresh install and no configs and running openclaw would trigger an onboarding instead of heading directly into the crestodian. Any subsequent openclaw command will head into the crestodian as probably intended.

https://github.com/openclaw/openclaw/pull/72343

Hello Clawtributors, PR #72367 is green and ready for review:

https://github.com/openclaw/openclaw/pull/72367

It fixes issue #72357. Thanks.

https://github.com/openclaw/openclaw/pull/64512 -- add serviceTier support to amazon-bedrock models. Resolve conflicts with recent commits to main. This is clean again. Please review and merge when ready. This is in active use and has been tested on Linux, MacOS, in AWS using server AIM policies, and in Docker containers. CloudFront shows requested pricing tiers being applied to models.

Two small Control UI PRs from me are ready for maintainer eyes when someone has bandwidth:

#67916 - fixes local assistant MEDIA attachment previews incorrectly showing “Outside allowed folders” while bootstrap media roots are still loading. This was updated against current main, conflicts are resolved, the requested empty-roots regression test is now added, and focused tests + check:changed pass. https://github.com/openclaw/openclaw/pull/67916

#72612 - separate composer-side attachment safety fix. It prevents async upload reads from overwriting each other, rejects >50 MB files before FileReader loads them, and improves attachment error reporting. Greptile’s P2 comments were addressed and resolved; focused tests + check:changed pass. https://github.com/openclaw/openclaw/pull/72612

They’re related only in the broad “attachments” area, but fix different paths:

• #67916 = assistant-generated/local MEDIA preview path
• #72612 = user chat composer upload path

might wanna edit this with links instead of just PR numbers 🙂

Could someone please take a look at PR #52951 when you have a chance?

It adds tools.fs.roots for scoped host filesystem access, so agents can be limited to specific read-only/read-write files or directories instead of choosing between workspace-only and unrestricted host FS access.

Current state:

• rebased/merged with latest passing main
• CI is green
• Codex review threads are resolved
• clawsweeper says the PR should stay open, but needs maintainer decision on whether tools.fs.roots is the desired core config contract