Bot It OutBot It Out
Back to Newsletter
v2026.5.7OpenClawSecurity

Owner-scoped security, cron CLI enhancements, Docker hardening, and cross-platform channel fixes.

This release spans four OpenClaw versions (2026.5.4–2026.5.7) and brings owner-permission enforcement for native commands, cron CLI improvements with computed status fields, Docker compose hardening, and a broad sweep of channel-specific fixes across Discord, Telegram, WhatsApp, and Slack. Security improvements include WebSocket scope clamping, SSRF checks, and admin-gated memory toggles.

New features

New features

  • OpenClawCron CLI now includes computed `status` field in `cron list --json` and `cron show --json` output.
  • OpenClaw`openclaw channels list` is now channel-only; use `--all` for bundled/catalog channels.
  • OpenClawDiscord voice-channel permission audits in `channels capabilities` and `channels status --probe`.
  • OpenClawConfigurable `voice.captureSilenceGraceMs` for noisy Discord voice sessions (default 2.5s).
  • OpenClawSession runtime visibility added to Sessions table with filtering capabilities.
  • OpenClawSupervisor restart handoffs now reported in `openclaw gateway status --deep` with structured JSON.
Improvements

Improvements

  • OpenClawNon-readiness sidecars deferred until after gateway ready signal for faster startup.
  • OpenClawPlugin metadata snapshots reused across control-plane operations to reduce cold scans.
  • OpenClawPer-turn context removed from ordinary chat system prompts, restoring prompt-cache reuse.
  • OpenClawHTTP media handlers no longer load for unrelated requests, improving 404 response times.
  • OpenClaw`openclaw channels` command now skips bootstrap for faster execution.
  • OpenClawOfficial npm and ClawHub plugins stay synced during host updates while preserving third-party pins.
Fixes

Fixes

  • OpenClawTelegram polling watchdog now remains tied to `getUpdates` liveness.
  • OpenClawDiscord heartbeat ACK timeout measurement corrected to prevent false reconnect loops.
  • OpenClawWhatsApp captioned `MEDIA:` directive auto-replies now emit once, not twice.
  • OpenClawSlack thread participation recorded for successful visible threaded sends.
  • OpenClawxAI/Grok: removed OpenAI-style reasoning effort controls to prevent 'Invalid reasoning effort' failures.
  • OpenClawReverted incorrect `openai-codex/*` route rewrite from 2026.5.5 that could break OAuth GPT-5.5 setups.
  • OpenClawWeb fetch timeout handling improved — timed-out fetches now return tool errors instead of leaving lanes active.
Breaking changes

Breaking changes

  • OpenClawOwner permissions now enforced for native command handlers — configure `commands.ownerAllowFrom` if you use owner-only commands.
  • SecurityAdmin scope required for global memory toggles.
Notes

Notes

  • SecurityDocker compose hardened: dropped `NET_RAW`/`NET_ADMIN` capabilities and enabled `no-new-privileges`.
  • SecurityWebSocket auth scopes clamped to prevent unbound access; pairing scope requirements enforced.
  • OpenClawLINE validation now rejects `dmPolicy: "open"` configs lacking wildcard `allowFrom`.
← Older: v2026.5.3-1

Running an older version?

Upgrade your instance from the dashboard to get everything above.

Open Dashboard