openclaw

mirror of https://github.com/openclaw/openclaw.git synced 2026-05-31 11:18:32 +00:00

Author	SHA1	Message	Date
openclaw-clownfish[bot]	2f31184d07	fix(hooks): repair shared-hook announcement policy (#73800 ) * fix(hooks): repair shared-hook announcement policy * fix(hooks): audit suppressed hook successes --------- Co-authored-by: openclaw-clownfish[bot] <280122609+openclaw-clownfish[bot]@users.noreply.github.com> Co-authored-by: Vincent Koc <vincentkoc@ieee.org>	2026-04-29 05:28:16 -07:00
Peter Steinberger	8d58ad4c15	fix(gateway): retry startup handshakes before surfacing failures	2026-04-29 10:25:53 +01:00
Peter Steinberger	bcc6a2400d	fix(gateway): make handshake timeout configurable	2026-04-28 23:50:24 +01:00
Peter Steinberger	4a24b23e3e	fix(ci): stabilize full release validation	2026-04-28 20:14:14 +01:00
Vincent Koc	75ba8398f9	fix(gateway): expose event loop health in readiness	2026-04-28 03:56:58 -07:00
Vincent Koc	6f38425e5c	security(gateway): route hook completion events to target agent session (#73228 )	2026-04-27 20:53:52 -07:00
Peter Steinberger	1f256306c9	test: align gateway tests with config io split	2026-04-27 21:02:26 +01:00
Peter Steinberger	161b722303	test(gateway): mock split config modules	2026-04-27 20:54:23 +01:00
Vincent Koc	1497425b8d	fix(gateway): trim startup config imports	2026-04-27 11:34:24 -07:00
Vincent Koc	be6263da4f	fix(gateway): preserve runtime-backed health state (#72417 ) * fix(gateway): preserve runtime-backed health state * fix(clownfish): address review for ghcrawl-207035-agentic-merge (1) * fix(gateway): harden health snapshot exposure	2026-04-27 11:04:59 -07:00
Peter Steinberger	4bd356d03a	fix(channels): clarify message target syntax	2026-04-27 13:18:04 +01:00
Peter Steinberger	b6c8e51dcb	fix(gateway): build hello snapshot after presence update	2026-04-27 13:09:30 +01:00
Peter Steinberger	3517b25482	fix: remove duplicate hello snapshot build	2026-04-27 13:09:16 +01:00
Peter Steinberger	e91f9a3f67	fix: include connected client in hello snapshot	2026-04-27 13:07:45 +01:00
Peter Steinberger	fef4b57b39	fix(gateway): include connected client in hello snapshot	2026-04-27 13:06:30 +01:00
Peter Steinberger	047c03cc88	fix(gateway): drop stale webchat handshakes	2026-04-27 12:51:17 +01:00
Peter Steinberger	7f3f108521	refactor(config): migrate plugin config access	2026-04-27 12:35:58 +01:00
Vincent Koc	a494eea6d4	fix(gateway): defer hook request handler imports	2026-04-27 01:26:38 -07:00
Vincent Koc	3200378ab4	fix(gateway): defer hook agent runner imports	2026-04-27 00:26:55 -07:00
Vincent Koc	b02cca4e00	fix(gateway): trim startup imports	2026-04-26 22:48:31 -07:00
Vincent Koc	dc8b881c11	fix(gateway): defer startup runtime imports	2026-04-26 21:50:50 -07:00
Vincent Koc	3ae6f01d61	feat(logging): propagate request trace scopes	2026-04-26 14:13:14 -07:00
Peter Steinberger	e29d3516bf	fix(gateway): skip Tailscale Control UI pairing	2026-04-26 09:42:25 +01:00
Peter Steinberger	164aaa48db	style: format gateway imports	2026-04-26 09:00:33 +01:00
Longbiao CHEN	e74c079b22	fix(gateway): remove duplicate ws client import	2026-04-26 06:19:35 +01:00
Longbiao CHEN	afe1abc297	feat(voicewake): refresh trigger routing on main	2026-04-26 06:19:35 +01:00
Peter Steinberger	6e1017d88a	fix: allow native app metadata reconnects	2026-04-25 21:00:31 +01:00
Peter Steinberger	f44759073b	feat(gateway): auto-approve trusted CIDR node pairing (#61004 ) (thanks @sahilsatralkar)	2026-04-25 06:40:25 +01:00
Gustavo Madeira Santana	28818f9140	Improve gateway diagnostics export for support reports (#70324 ) Merged via squash. Prepared head SHA: `3d6ee85993` Co-authored-by: gumadeiras <5599352+gumadeiras@users.noreply.github.com> Co-authored-by: gumadeiras <5599352+gumadeiras@users.noreply.github.com> Reviewed-by: @gumadeiras	2026-04-22 20:47:14 -04:00
Jason Perlow	53ad1a6066	fix(gateway): allow silent metadata-upgrade pairing for loopback CLI clients (#70224 ) Loopback CLI clients (cli_container_local, shared_secret_loopback_local) with valid shared-secret auth previously got disconnected with 1008 pairing required whenever the paired device record's platform or deviceFamily string differed from what the CLI claimed at connect time. PR #69431 added the shared_secret_loopback_local locality but deferred the metadata-upgrade reason from the auto-approval allowlist. That deferral created an unrecoverable handshake loop in practice: every CLI connect triggers a fresh metadata-upgrade request, the Control UI has no approval surface for this reason, and non-interactive shells cannot complete pairing. This broke every non-interactive openclaw agent use case when paired device keys are replicated across hosts or installs are migrated across platforms. Extend shouldAllowSilentLocalPairing to auto-approve metadata-upgrade for cli_container_local and shared_secret_loopback_local localities only. Browser / Control-UI / remote paths retain existing approval- required behavior. Gateway still logs every metadata refresh via the existing security audit line for operator review. Add 4 unit tests covering the decision table for metadata-upgrade across all four localities. Related: #69397, #69431	2026-04-22 09:58:53 -06:00
Peter Steinberger	dc2c3a4920	fix(gateway): harden WS pairing locality	2026-04-22 14:55:58 +01:00
Peter Steinberger	d8d0380297	fix: use transport activity for stale health	2026-04-22 08:52:55 +01:00
Peter Steinberger	2e775fb03e	refactor: move stale socket modes to channel status	2026-04-22 06:11:49 +01:00
Peter Steinberger	b0734664f8	style: format touched code	2026-04-22 04:24:45 +01:00
Ayaan Zaidi	4c1f187da0	fix(cron): keep message tool for chat delivery	2026-04-21 12:01:06 +05:30
SARAMALI15792	fb1a5a2c26	test(gateway): assert cli_container_local precedence over loopback fallback (#69397 )	2026-04-21 03:10:34 +01:00
SARAMALI15792	8ef356d5c3	fix(gateway): classify loopback shared-secret clients as local for pairing (#69397 )	2026-04-21 03:10:34 +01:00
Peter Steinberger	99b933f160	perf(gateway): skip cold startup sidecars until needed	2026-04-20 22:24:37 +01:00
Peter Steinberger	d8cf947f6b	perf(gateway): streamline startup sidecars	2026-04-20 20:52:42 +01:00
Agustin Rivera	5a12f30441	Limit paired-device pairing actions to the caller device (#69375 ) * fix(pairing): restrict paired-device pairing actions * fix(pairing): close device authz review gaps * docs(changelog): note device-pair scoping for non-admin paired devices (#69375) --------- Co-authored-by: Devin Robison <drobison@nvidia.com>	2026-04-20 12:50:39 -06:00
Ayaan Zaidi	4e01916a7e	fix(gateway): report pairing upgrade details	2026-04-20 13:08:04 +05:30
Ayaan Zaidi	4bc5eab390	fix(gateway): enrich pairing connect errors	2026-04-20 12:33:03 +05:30
Marcus Castro	aa76cf43f0	fix(whatsapp): stabilize auth state and reconcile local runtime after CLI login (#67815 ) * WhatsApp: harden auth persistence and backup recovery * WhatsApp: model unstable auth state across runtime and setup * WhatsApp: recover login and monitor startup from unstable auth * Channels: surface auth stabilizing in status and health * Gateway protocol: add channels.start surface * Gateway: reconcile local channel runtime after CLI login * Channels UI: reflect recovered login start state * Changelog: note WhatsApp auth stabilization * Gateway: fix lint in call test	2026-04-19 14:20:46 -03:00
Val Alexander	be7a415eb0	fix: preserve hello-ok scopes for reused device tokens (#68039 )	2026-04-17 03:20:48 -05:00
Val Alexander	0b6c39be18	fix: report shared auth scopes in hello-ok (#67810 ) thanks @BunsDev Co-authored-by: Val Alexander <bunsthedev@gmail.com>	2026-04-17 02:48:30 -05:00
Vincent Koc	8bf37f0b9f	test(gateway): harden hook trust async assertions	2026-04-12 11:26:10 +01:00
Vincent Koc	c42fcf5f7b	test(gateway): share node bootstrap auth setup	2026-04-12 04:58:33 +01:00
Peter Steinberger	85fa33d9d7	style: apply formatter drift	2026-04-11 14:08:55 +01:00
Tak Hoffman	cc5c691f00	feat(ui): render assistant directives and add embed tag (#64104 ) * Add embed rendering for Control UI assistant output * Add changelog entry for embed rendering * Harden canvas path resolution and stage isolation * Secure assistant media route and preserve UI avatar override * Fix chat media and history regressions * Harden embed iframe URL handling * Fix embed follow-up review regressions * Restore offloaded chat attachment persistence * Harden hook and media routing * Fix embed review follow-ups * feat(ui): add configurable embed sandbox mode * fix(gateway): harden assistant media and auth rotation * fix(gateway): restore websocket pairing handshake flows * fix(gateway): restore ws hello policy details * Restore dropped control UI shell wiring * Fix control UI reconnect cleanup regressions * fix(gateway): restore media root and auth getter compatibility * feat(ui): rename public canvas tag to embed * fix(ui): address remaining media and gateway review issues * fix(ui): address remaining embed and attachment review findings * fix(ui): restore stop control and tool card inputs * fix(ui): address history and attachment review findings * fix(ui): restore prompt contribution wiring * fix(ui): address latest history and directive reviews * fix(ui): forward password auth for assistant media * fix(ui): suppress silent transcript tokens with media * feat(ui): add granular embed sandbox modes * fix(ui): preserve relative media directives in history * docs(ui): document embed sandbox modes * fix(gateway): restrict canvas history hoisting to tool entries * fix(gateway): tighten embed follow-up review fixes * fix(ci): repair merged branch type drift * fix(prompt): restore stable runtime prompt rendering * fix(ui): harden local attachment preview checks * fix(prompt): restore channel-aware approval guidance * fix(gateway): enforce auth rotation and media cleanup * feat(ui): gate external embed urls behind config * fix(ci): repair rebased branch drift * fix(ci): resolve remaining branch check failures	2026-04-11 07:32:53 -05:00
Vincent Koc	74e7b8d47b	fix(cycles): bulk extract leaf type surfaces	2026-04-11 13:26:50 +01:00

1 2 3 4 5 ...

289 Commits