Back to Newsletter
v2026.5.3-1OpenClawSecurity
Unified streaming progress, file-transfer plugin, stricter config validation, and startup performance gains.
This release introduces a unified streaming progress mode across all channels, a new file-transfer plugin with default-deny security policies, stricter gateway config validation (fails closed instead of auto-restoring), and significant startup performance improvements through lazy-loading. Security hardening includes plugin install scanner improvements and symlink traversal protection in file transfers.
New features
New features
- OpenClawFile-transfer plugin with default-deny per-node path policies, symlink traversal protection, and 16 MB size limit.
- OpenClawUnified `streaming.mode: "progress"` with automatic single-word status labels across Discord, Telegram, Matrix, Slack, and Teams.
- OpenClaw`openclaw models auth list` command to inspect saved per-agent auth profiles without exposing secrets.
- OpenClaw`openclaw steer` command for queue-independent steering of active runs.
- OpenClawGoogle Meet realtime Twilio dial-ins with Gemini voice bridge, paced audio streaming, and barge-in support.
- OpenClawWhatsApp Channel/Newsletter outbound targets with `@newsletter` session metadata.
- OpenClawSlack Block Kit progress drafts with structured rich rendering.
- OpenClawDiscord status reactions now track subsequent tool progress with `trackToolCalls: true`.
- OpenClawTelegram plugin-owned numeric forum-topic targets in agent message tools.
Improvements
Improvements
- OpenClawMajor startup lazy-loading: plugin discovery, cron, schema, shutdown, sessions, and model metadata deferred from hot paths.
- OpenClawAvoid importing `jiti` on native-loadable plugin paths — preserves real module errors on fast path.
- OpenClaw`openclaw doctor --fix` now commits safe legacy migrations even when unrelated validation issues exist.
- OpenClaw`openclaw channels status` and `openclaw status --deep` now report degraded Discord transport and event-loop starvation.
- OpenClawChat session picker with agent-first filter and responsive controls across phone/tablet/desktop.
- OpenClawCompact explain-mode tool summaries for `/verbose` and progress drafts by default.
Fixes
Fixes
- SecurityPlugin install scanner no longer blocks official bundled packages when `process.env` access appears in distant parts of the same compiled bundle.
- OpenClawWhatsApp: `@whiskeysockets/libsignal-node` added to `onlyBuiltDependencies` to prevent pnpm v9+ rejection.
- OpenClawDiscord `channels.discord.token` SecretRef now resolves correctly in externalized channel plugins under `dist/` directories.
- OpenClawSecrets `apply` command now preserves `keyRef` and `tokenRef` fields when scrubbing provider-target secrets.
- OpenClawSubagent recall skips session-store entries containing `:` to prevent validation crashes.
Breaking changes
Breaking changes
- OpenClawGateway startup now fails closed on invalid configuration instead of auto-restoring broken settings. Run `openclaw doctor --fix` to repair before restarting.
Notes
Notes
- OpenClawRuntime and provider packages refreshed including Pi 0.73.0, ACPX adapters, OpenAI, Anthropic, and Slack SDKs.
- OpenClawMemory/LanceDB plugin now declares `apache-arrow` as a bundled dependency (previously missing).
Running an older version?
Upgrade your instance from the dashboard to get everything above.
Open Dashboard