v0.10.0 — OpenClaw compatibility refresh (2026.4.15 → 2026.4.23)#1
Open
FRIDAY-Drakon wants to merge 5 commits intomainfrom
Open
v0.10.0 — OpenClaw compatibility refresh (2026.4.15 → 2026.4.23)#1FRIDAY-Drakon wants to merge 5 commits intomainfrom
FRIDAY-Drakon wants to merge 5 commits intomainfrom
Conversation
10-task plan across 4 phases: deprecation warnings (legacy handlers[], before_agent_start, ~/.openclaw/plugins path, --keep-config), new auditors (hook-events, sandbox-backends, exec-approvals, tools-by-provider), updated bundled plugin allowlist (firecrawl, openrouter, copilot, codex), and polish/release tasks. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Two silent-deprecation warnings for OpenClaw upgrades: - hooks.internal.handlers[] array format (replaced by directory-based entries.<name> discovery in v2026.3.14+) - before_agent_start hook event (replaced by before_model_resolve / before_prompt_build) Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
OpenClaw v2026.3.14+ moved plugins to ~/.openclaw/extensions/. Warn users with contents still in the legacy directory. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
…codex as bundled Bundled in OpenClaw v2026.3.14+ — now flagged as pass instead of ambiguous info when listed in plugins.allow without an install entry. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
…it-brain, local.contextSize, dreaming cron OpenClaw v2026.4.23 shipped on 2026-04-24 with four config-surface changes that need detection ahead of fleet upgrades. All additive; no breaking changes to AuditResult, OpenClawConfig, or the CLI surface. New auditors - config-patch-usage: scans hooks.internal.entries/handlers and agent tool.alsoAllow lists for config.patch / config.apply references. v2026.4.23 fails closed on non-allowlisted paths (prompt, model, mention-gating) — agents relying on config.patch for anything else will silently fail. Six tests. - dreaming-cron: reads ~/.openclaw/cron/jobs.json and flags stale main-session dreaming jobs. v2026.4.23 decouples dreaming from heartbeat and runs it as an isolated lightweight agent turn; openclaw doctor --fix migrates the old shape. Five tests, HOME- env-override fixture so tests work in any CI. Auditor extensions - bootstrap-files: detects MEMORY.md + memory.md split-brain in workspace root. v2026.4.23 canonicalizes on MEMORY.md and stops treating memory.md as a runtime fallback. Uses readdirSync for case-sensitive detection; positive test skipped on case-insensitive FS (macOS) since the FS can't represent the split-brain state. - memory-search: validates the new memorySearch.local.contextSize field (default 4096). Warns below 1024 or above 32768; passes in range. Silent when unset. - security-advisories: adds v2026.4.23 row for the config.patch allowlist lockdown behaviour change (warn severity, points at the new config-patch-usage auditor for detection). Both new auditors are wired into src/auditors/index.ts. Full suite now 165 tests (146 baseline + 19 new), 1 skipped on macOS. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Rolls Agent Optimizer forward to match OpenClaw through v2026.4.23. Bundles the earlier compat-refresh work already on this branch with new detectors for the four config-surface changes that landed in v2026.4.23 on 2026-04-24.
Included (earlier commits on this branch)
hooks-deprecations.ts— warns on legacyhooks.internal.handlers[]array format andbefore_agent_startusageplugins.ts— recognises firecrawl, openrouter, github-copilot, openai-codex as bundledplugins.ts— warns when legacy~/.openclaw/plugins/is populatedNew in this commit — v2026.4.23 detectors
config-patch-usage(new auditor)Scans
hooks.internal.entries/handlersand agenttools.alsoAllowlists forconfig.patch/config.applyreferences. v2026.4.23 fails closed on non-allowlisted paths (prompt, model, mention-gating). Agents relying onconfig.patchfor anything else will silently fail. Particularly relevant for Jarvis — pastconfig.patchcrashes (invalid keys, unknown subtrees) would now be silent rejects.dreaming-cron(new auditor)Reads
~/.openclaw/cron/jobs.jsonand flags stale main-session dreaming jobs. v2026.4.23 decouples dreaming from heartbeat and runs it as an isolated lightweight agent turn;openclaw doctor --fixmigrates the old shape. Uses HOME env override in tests so they work in any CI.bootstrap-files— MEMORY.md split-brainDetects when both
MEMORY.mdandmemory.mdexist in workspace root. v2026.4.23 canonicalizes onMEMORY.mdand no longer treats lowercase as a runtime fallback. UsesreaddirSyncfor case-sensitive detection; positive test is skipped on case-insensitive FS (macOS) since the FS can't represent the split-brain state.memory-search—local.contextSizevalidationValidates the new
memorySearch.local.contextSizefield (default 4096). Warns below 1024 (typo / severely constrained host) or above 32768 (likely wrong magnitude, bloats embedding-host memory). Silent when unset.security-advisoriesAdds v2026.4.23 row for the
config.patchallowlist lockdown behaviour change (warnseverity), pointing the operator at the newconfig-patch-usageauditor.Version
0.9.2→0.10.0. Collects this PR's work plus the earlier compat commits on the branch under one release rather than a mid-cycle0.9.3.Test plan
npm run buildcleanConfig Patch Usageto fire on anyconfig.patchhook historydreaming-cronauditor against Jarvis's cron/jobs.json on clawdbot1Out of scope
security-scan,fleet,config-driftstay CLI-only (not in the standardauditcycle). Unchanged.openclaw doctor --fixhandles the split-brain + dreaming migrations; Agent Optimizer just detects.🤖 Generated with Claude Code