vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-03-12 07:20:45 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,567 Commits 680 Branches 76 Tags
d9670093cb39f677f4c72d7b5d70818548412b67
Commit Graph

4520 Commits

Author SHA1 Message Date
Peter Steinberger
3596a46868 build: prepare 2026.3.7-beta.1 release 2026-03-08 04:44:08 +00:00
Peter Steinberger
a035a3ce48 fix: drop removed minimax lightning model 2026-03-08 04:06:26 +00:00
Ayaan Zaidi
5214859c52 chore: add changelog and format fix for #39414 2026-03-08 09:17:02 +05:30
Peter Steinberger
c743fd9c4c docs: clean up latest changelog sections 2026-03-08 03:34:53 +00:00
Peter Steinberger
75a44dee8f docs: dedupe changelog contributor attribution 2026-03-08 03:34:53 +00:00
Peter Steinberger
5659d7f985 fix: land #39337 by @goodspeed-apps for acpx MCP bootstrap 
Co-authored-by: Goodspeed App Studio <goodspeed-apps@users.noreply.github.com>
 2026-03-08 03:16:26 +00:00
gambletan
9c8e34da9d fix: document discord agentComponents schema parity (#39378) (thanks @gambletan) (#39378) 
Co-authored-by: Shadow <hi@shadowing.dev>
 2026-03-07 21:11:12 -06:00
Ayaan Zaidi
722c5e5d33 docs: add changelog for Telegram DM draft restore (#39398) 2026-03-08 08:23:25 +05:30
Peter Steinberger
7f44bc5e94 fix: reject launchd pid sentinel values 
Landed from contributor PR #39281 by @mvanhorn.

Co-authored-by: Matt Van Horn <mvanhorn@gmail.com>
 2026-03-08 02:44:02 +00:00
Peter Steinberger
442f2c36b3 fix: honor explicit OpenAI TTS speed values 
Landed from contributor PR #39318 by @ql-wade.

Co-authored-by: ql-wade <wade@openclaw.ai>
 2026-03-08 02:38:44 +00:00
Peter Steinberger
28b72e5cb0 fix: honor zero-valued voice-call STT settings 
Landed from contributor PR #39196 by @scoootscooob.

Co-authored-by: scoootscooob <zhentongfan@gmail.com>
 2026-03-08 02:36:41 +00:00
Peter Steinberger
af9d76b79a fix: honor explicit Synology Chat rate-limit env values 
Landed from contributor PR #39197 by @scoootscooob.

Co-authored-by: scoootscooob <zhentongfan@gmail.com>
 2026-03-08 02:34:19 +00:00
Peter Steinberger
100da9f45c fix: correct gemini flash model id 2026-03-08 02:32:58 +00:00
Peter Steinberger
46008178d1 fix: isolate TUI /new sessions per client 
Landed from contributor PR #39238 by @widingmarcus-cyber.

Co-authored-by: Marcus Widing <widing.marcus@gmail.com>
 2026-03-08 02:31:15 +00:00
Peter Steinberger
9d7d961db8 fix: restore Telegram webhook-mode health after restarts 
Landed from contributor PR #39313 by @fellanH.

Co-authored-by: Felix Hellström <30758862+fellanH@users.noreply.github.com>
 2026-03-08 02:27:18 +00:00
Peter Steinberger
c0a7c302f3 fix: preserve agents-page selection after config save 
Landed from contributor PR #39301 by @MumuTW.

Co-authored-by: MumuTW <clothl47364@gmail.com>
 2026-03-08 02:20:48 +00:00
Vincent Koc
bf9c362129 Gateway: stop and restart unmanaged listeners (#39355) 
* Daemon: allow unmanaged gateway lifecycle fallback

* Status: fix service summary formatting

* Changelog: note unmanaged gateway lifecycle fallback

* Tests: cover unmanaged gateway lifecycle fallback

* Daemon: split unmanaged restart health checks

* Daemon: harden unmanaged gateway signaling

* Daemon: reject unmanaged restarts when disabled
 2026-03-07 18:20:29 -08:00
Vincent Koc
4062aa5e5d Gateway: add safer password-file input for gateway run (#39067) 
* CLI: add gateway password-file option

* Docs: document safer gateway password input

* Update src/cli/gateway-cli/run.ts

Co-authored-by: greptile-apps[bot] <165735046+greptile-apps[bot]@users.noreply.github.com>

* Tests: clean up gateway password temp dirs

* CLI: restore gateway password warning flow

* Security: harden secret file reads

---------

Co-authored-by: greptile-apps[bot] <165735046+greptile-apps[bot]@users.noreply.github.com>
 2026-03-07 18:20:17 -08:00
Peter Steinberger
49261b0d82 fix: auto-create inherited agent override entries 
Landed from contributor PR #39326 by @dunamismax.

Co-authored-by: dunamismax <dunamismax@tutamail.com>
 2026-03-08 02:12:33 +00:00
Peter Steinberger
1e05f14f3a fix: land health-monitor disconnected reason label (#36436) (thanks @Sid-Qin) 2026-03-08 02:02:19 +00:00
Peter Steinberger
5b257c65d5 fix: default codex-cli sandbox to workspace-write 
Landed from contributor PR #39336 by @0xtangping.

Co-authored-by: john <john.j@min123.net>
 2026-03-08 01:58:34 +00:00
Vincent Koc
daecd2d8c3 Pi Runner: gate parallel_tool_calls to compatible APIs (#39356) 
* Pi Runner: gate parallel_tool_calls payload injection

* Pi Runner: cover parallel_tool_calls alias precedence

* Changelog: note parallel_tool_calls compatibility fix

* Update CHANGELOG.md

* Pi Runner: clarify null parallel_tool_calls override logging
 2026-03-07 17:57:53 -08:00
Vincent Koc
2c7fb54956 Config: fail closed invalid config loads (#39071) 
* Config: fail closed invalid config loads

* CLI: keep diagnostics on explicit best-effort config

* Tests: cover invalid config best-effort diagnostics

* Changelog: note invalid config fail-closed fix

* Status: pass best-effort config through status-all gateway RPCs

* CLI: pass config through gateway secret RPC

* CLI: skip plugin loading from invalid config

* Tests: align daemon token drift env precedence
 2026-03-07 17:48:13 -08:00
Vincent Koc
7e946b3c6c fix(ollama): register custom api for compaction and summarization (#39332) 
* fix(agents): add custom api registry helper

* fix(ollama): register native api for embedded runs

* fix(ollama): register custom api before compaction

* fix(tts): register custom api before summarization

* changelog: note ollama compaction registration fix

* fix(ollama): honor resolved base urls in custom api paths
 2026-03-07 17:40:34 -08:00
lidamao633
01833c5111 fix(acp): avoid inline delivery for oneshot run spawns (#39014) 
* fix(acp): scope inline delivery to session spawns

* test(acp): cover run and session delivery behavior

* Changelog: add ACP run delivery bootstrap fix

---------

Co-authored-by: 徐善 <samxu633@gmail.com>
Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
 2026-03-07 17:37:22 -08:00
Vincent Koc
5b30c9d3d7 Changelog: move #39328 credit to section end 2026-03-07 17:36:11 -08:00
Vincent Koc
2ec478cf68 Changelog: credit #39328 to @vincentkoc 2026-03-07 17:35:29 -08:00
Vincent Koc
556a74d259 Daemon: handle degraded systemd status checks (#39325) 
* Daemon: handle degraded systemd status checks

* Changelog: note systemd status handling

* Update src/commands/status.service-summary.ts

Co-authored-by: greptile-apps[bot] <165735046+greptile-apps[bot]@users.noreply.github.com>

---------

Co-authored-by: greptile-apps[bot] <165735046+greptile-apps[bot]@users.noreply.github.com>
 2026-03-07 17:30:48 -08:00
Vincent Koc
c22a4450ee fix(telegram): honor commands.allowFrom in native command auth (#39310) 
* telegram: honor commands.allowFrom in native auth

* test(telegram): cover native commands.allowFrom precedence

* changelog: note telegram native commands allowFrom fix

* Update CHANGELOG.md

* telegram: preserve group policy in native command auth

* test(telegram): keep commands.allowFrom under group gating
 2026-03-07 17:28:47 -08:00
Peter Steinberger
ad052d661b docs: note gateway auth follow-up hardening 2026-03-08 01:13:28 +00:00
Peter Steinberger
99cfd271d0 fix(sandbox): pin fs bridge readfile handles 2026-03-08 01:09:05 +00:00
Peter Steinberger
bc91ae9ca0 fix(discord): preserve native command session keys 2026-03-08 01:06:09 +00:00
Peter Steinberger
cf1c2cc208 fix(discord): normalize DM session keys 2026-03-08 01:06:09 +00:00
Peter Steinberger
6337666ac0 fix(telegram): restore named-account DM fallback routing (from #32426) 
Rebased and landed contributor work from @chengzhichao-xydt for the
Telegram multi-account DM regression in #32351.

Co-authored-by: Zhichao Cheng <cheng.zhichao@xydigit.com>
 2026-03-08 01:05:08 +00:00
Peter Steinberger
eb09d8dd71 fix(telegram): land #34238 from @hal-crackbot 
Landed from contributor PR #34238 by @hal-crackbot.

Co-authored-by: Hal Crackbot <hal@crackbot.dev>
 2026-03-08 00:56:58 +00:00
Peter Steinberger
09cfcf9dd5 fix(sandbox): anchor fs-bridge mkdirp 2026-03-08 00:55:34 +00:00
Peter Steinberger
a505be78ab fix(telegram): land #38906 from @gambletan 
Landed from contributor PR #38906 by @gambletan.

Co-authored-by: gambletan <ethanchang32@gmail.com>
 2026-03-08 00:54:49 +00:00
Peter Steinberger
4869e24915 fix(telegram): land #34983 from @HOYALIM 
Landed from contributor PR #34983 by @HOYALIM.

Co-authored-by: Ho Lim <subhoya@gmail.com>
 2026-03-08 00:53:19 +00:00
Vincent Koc
d6d04f361e fix(ollama): preserve local limits and native thinking fallback (#39292) 
* fix(ollama): support thinking field fallback in native stream

* fix(models): honor explicit lower token limits in merge mode

* fix(ollama): prefer streamed content over fallback thinking

* changelog: note Ollama local model fixes
 2026-03-07 16:53:02 -08:00
Peter Steinberger
5edcab2eee fix(queue): land #33168 from @rylena 
Landed from contributor PR #33168 by @rylena.

Co-authored-by: Rylen Anil <rylen.anil@gmail.com>
 2026-03-08 00:51:11 +00:00
Edward
02eef1d45a fix(telegram): use group allowlist for native command auth in groups (#39267) 
* fix(telegram): use group allowlist for native command auth in groups

Native slash commands (/status, /model, etc.) in Telegram supergroups
and forum topics reject authorized senders with "not authorized" even
when the sender is in groupAllowFrom.

The bug is in resolveTelegramCommandAuth — the final commandAuthorized
check only passes DM allowFrom as an authorizer, so senders who are
authorized via groupAllowFrom get rejected. Regular messages don't have
this problem because they go through evaluateTelegramGroupPolicyAccess
which correctly uses effectiveGroupAllow.

Add effectiveGroupAllow as a second authorizer when the message comes
from a group. resolveCommandAuthorizedFromAuthorizers uses .some(), so
either DM or group allowlist matching is sufficient.

Fixes #28216
Fixes #29135
Fixes #30234

* fix(test): resolve TS2769 type errors in group-auth test

Remove explicit tuple type annotations on mock.calls.filter() callbacks
that conflicted with vitest's mock call types.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* test(telegram): cover topic auth rejection routing

* changelog: note telegram native group command auth fix

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: Vincent Koc <vincentkoc@ieee.org>
 2026-03-07 16:47:57 -08:00
Vincent Koc
a56841b98c Daemon: harden WSL2 systemctl install checks (#39294) 
* Daemon: harden WSL2 systemctl install checks

* Changelog: note WSL2 daemon install hardening

* Daemon: tighten systemctl failure classification
 2026-03-07 16:43:19 -08:00
Peter Steinberger
f195af0b22 fix(sandbox): anchor fs-bridge destructive ops 2026-03-08 00:41:12 +00:00
Peter Steinberger
9d2b292998 fix(exec-approvals): honor allow-always for bash script invocations 
Landed from contributor PR #35137 by @yuweuii.

Co-authored-by: yuweuii <82372187+yuweuii@users.noreply.github.com>
 2026-03-08 00:39:54 +00:00
Vincent Koc
ca37a4e82e changelog: note telegram groupAllowFrom sender validation fix 2026-03-07 16:36:16 -08:00
Peter Steinberger
c6575891c7 fix(exec): inherit ask from exec-approvals.json when tools.exec.ask unset 
Landed from contributor PR #29187 by @Bartok9.

Co-authored-by: Bartok9 <259807879+Bartok9@users.noreply.github.com>
 2026-03-08 00:35:50 +00:00
Peter Steinberger
173132165d fix(exec): honor exec-approvals ask=off for gateway/node runs 
Landed from contributor PR #26789 by @pandego.

Co-authored-by: Miguel Miranda Dias <7780875+pandego@users.noreply.github.com>
 2026-03-08 00:29:34 +00:00
Josh Avant
25252ab5ab gateway: harden shared auth resolution across systemd, discord, and node host 2026-03-07 18:28:32 -06:00
Peter Steinberger
61000b8e4d fix(acp): block sandboxed slash spawns 2026-03-08 00:23:07 +00:00
Peter Steinberger
ab54532c8f fix(agents): land #39247 from @jasonQin6 (subagent workspace inheritance) 
Propagate parent workspace directories into spawned subagent runs, keep workspace override internal-only, and add regression tests for forwarding boundaries.

Co-authored-by: jasonQin6 <991262382@qq.com>
 2026-03-07 23:56:37 +00:00