Back to Newsletter
v2026.4.15OpenClawSecurity
Security hardening and dreaming storage improvements.
This release focuses on security hardening — tighter trust boundaries for tool results, better secret redaction, and stricter DM pairing controls. Dreaming memory files now default to separate storage for cleaner organization.
Improvements
Improvements
- OpenClawDreaming memory files now default to separate storage (`memory/dreaming/{phase}/YYYY-MM-DD.md`), making daily memories easier to browse and manage.
- OpenClawNew `localModelLean` option reduces prompt size for weaker local models, improving performance on smaller hardware.
Fixes
Fixes
- OpenClawClient tools can no longer inherit built-in tool trust — tool-result passthrough is now anchored to the exact registered built-in tool names.
- OpenClawWebchat audio embedding is now contained within configured local roots.
- OpenClawDM pairing-store entries can no longer authorize room control commands.
- OpenClawSecrets in exec approval prompts are now redacted to prevent credential leaks.
Notes
Notes
- OpenClawIf you use the dreaming feature with `inline` storage mode, your existing config will continue to work. New instances default to `separate` mode.
Running an older version?
Upgrade your instance from the dashboard to get everything above.
Open Dashboard