OpenClaw v2026.3.22
Biggest Release Yet
48-Hour Agent Timeout
Sessions no longer die mid-task — no config change needed
BEFORE
600s
10-minute hard limit
Long tasks silently killed
Lost progress, broken state
Workarounds required
timeout: 600
→
AFTER
48h
172,800 second window
Survives complex pipelines
Full multi-hour agent runs
Zero config change
timeout: 172800
Upgrade automatically — existing sessions pick up the new default on next restart
ClawHub & Plugin Ecosystem
Native skill discovery, install, and update — npm as fallback
ClawHub
Default source
→
Search
Browse skills
→
Install
One command
→
Auto-update
Stay current
🔗 Registry
Curated skill index
Version pinning
Integrity checks
🛠 CLI
openclaw skill search
openclaw skill install
openclaw skill update
📦 Fallback
npm registry fallback
Private packages
Scoped installs
Bundled Search Tools
Exa · Tavily · Firecrawl — first-party, zero setup
Exa
Neural web search
Semantic retrieval
exa_search
Tavily
AI-optimised results
Answer extraction
tavily_search
Firecrawl
Full-page scraping
Structured extraction
firecrawl_search
firecrawl_scrape
Research Superpower
Agents can now search, scrape, and synthesise the web natively —
no API keys, no manual wiring. Install from ClawHub and go.
New Models & Platforms
MiniMax M2.7 default · Claude on Google Vertex AI
🤖
MiniMax M2.7
New default model
Replaces M2.5
Improved reasoning
Better tool use
Lower latency
Zero config change
+
☁️
Claude via Vertex AI
Google Cloud platform
GCP IAM / ADC
Enterprise auth via ADC
GCP IAM permissions
Regional endpoints
No API key needed
minimax/minimax-m2.7
vertex/claude-3-5-sonnet
vertex/claude-3-7-sonnet
openrouter/...
Set GOOGLE_APPLICATION_CREDENTIALS or use gcloud auth application-default login
π SSH Sandbox Backend
New pluggable sandbox system β bring your own execution environment
π
Pluggable Sandbox System
Swap execution backends without changing agent logic. Clean interface, infinite extension points.
πͺ
Mirror Mode
Remote workspace mirrors local files in real time. Edit locally, execute remotely.
π
Remote Workspace Mode
Agent runs fully inside remote machine β no local file sync required.
π
Secret-Backed Credentials
SSH keys & certificates injected from secret store β never touch the filesystem.
ARCHITECTURE
π€ OpenClaw Agent
β
⬑ Sandbox Interface
β
π OpenShell Backend
πͺ Mirror
local β remote
π Remote WS
fully remote
β
π SSH Transport
ποΈ Secret Store
keys / certs
β
π₯οΈ Remote Host
π± Android Upgrades
Mobile-first agent capabilities β expanding what your phone can do
π
SMS Search
Query message history by contact, keyword, or date range. Agent can read and reference your conversations.
π
Call Log Search
Search incoming, outgoing, and missed calls. Filter by contact or time window.
π¨
System-Aware Dark Theme
UI auto-switches with Android system theme. No manual toggle β just works.
π
Expanding Capabilities
Android is becoming a first-class agent surface. More device integrations coming in future releases.
π² Your Android isn't just a chat interface anymore β it's a full agent endpoint.
π€ Mid-Run Questions + DAG Summarization
Smarter agent runtime β ask without breaking flow, summarize without bloating
β‘ MID-RUN QUESTIONS
Problem: Asking a question mid-task used to inject context into the ongoing session, polluting future tool calls.
Solution: Questions are now isolated β ask anything during an agent run without altering the session's future context window.
π€ Agent
Running
β
β User
Question
β
β
Answer
(isolated)
Session context: unchanged β
πΈοΈ DAG SUMMARIZATION
Problem: Long-running agents generate session files that grow unboundedly, causing context overflows and slow loads.
Solution: DAG-based hooks summarize completed branches automatically β keeping session files lean without losing history.
β complete β
πΈοΈ DAG Hook β Summarize
β
π Compact Summary Node
Session file stays bounded β
β‘ Performance: 35x Faster
Session loading is no longer the bottleneck
35Γ
faster session loading
π
JSON5 β Native JSON
Switched session file parsing to native JSON.parse(). Single biggest win.
π«
No More Event-Loop Blocking
Eliminated synchronous I/O on hot paths. Agent stays responsive during heavy loads.
π¦
Proactive Context Compaction
Long tool loops trigger compaction before context overflows β not after.
BEFORE / AFTER
β Before
- JSON5 parser (slow)
- Blocking I/O on load
- No compaction hooks
- WhatsApp boot: tens of seconds
β
β
After
- Native JSON.parse()
- Async, non-blocking
- Proactive compaction
- WhatsApp boot: seconds
π§ Critical Fixes
Stability, security, and reliability β the unsexy work that matters most
β
WhatsApp QR Pairing Fix
Resolved Baileys 515 stream error that caused QR scan failures. Pairing now succeeds 100% of the time.
β
OpenRouter Vision Fix
Dynamic runtime checks now correctly detect vision capability per model. No more silent image-drop failures.
π
Windows SMB Credential Leak β Patched
UNC path injection in exec could expose NTLM credentials to a remote host. Now sanitised at input.
β
Unicode Padding in Exec Prompts β Fixed
Invisible Unicode characters caused misaligned approval prompts. Stripped at render time.
π
Startup Time Improvements
Lazy-loaded non-critical modules. Cold start measurably faster across all platforms.
v2026.3.22
Security Overhaul
The largest security patch in OpenClaw project history.
π
Device Pairing Gaps
Authentication gaps in the device pairing flow patched β rogue devices can no longer complete pairing without proper validation.
πͺ
Webhook Authentication
Incoming webhook endpoints now enforce signature verification. Unauthenticated webhook delivery rejected at the gateway layer.
πͺ
Windows SMB Credential Leak
Resolved UNC path injection vector on Windows that could trigger SMB authentication and expose NTLM credentials to a remote host.
π€
Unicode Padding Exploit
Unicode zero-width / padding characters could bypass input length limits and filter checks. Now stripped and normalised before validation.
π¬
Researcher-Reported Vulnerabilities
Additional CVEs reported via responsible disclosure program β all patched in this release. A serious step forward in security posture.
β οΈ
Breaking Changes
3 changes require action before upgrading
01
Plugin installs now default to ClawHub
openclaw plugin install <name> now resolves from
ClawHub by default instead of npm. Existing plugins continue to work. Use
--registry npm flag to force npm resolution.
02
Legacy Chrome extension relay path removed
The deprecated /relay/legacy Chrome extension endpoint has been removed. Run the migration tool to update your config automatically:
$ openclaw doctor --fix
03
CLAWDBOT_* & MOLTBOT_* env vars removed
Final MoltBot β OpenClaw rebrand. Legacy prefixes are no longer read at startup. Switch all environment variables to the OPENCLAW_* prefix.
CLAWDBOT_* β
MOLTBOT_* β
β
OPENCLAW_* β
π¨
Incident Report
Known Issue & Hotfix
SEV-2 Β· v2026.3.22 Initial Release
Resolved β
Missing dist/control-ui directory in npm package
The initial v2026.3.22 npm package was published without the
dist/control-ui directory,
causing the dashboard UI to fail to load. Users on the initial release would see a blank screen or 404 when opening the OpenClaw control panel.
π οΈ
Resolution β Hotfix Steps
1
Update to the hotfix release
npm i -g openclaw@latest
2
Verify dist/control-ui is
Available Now
Upgrade to v2026.3.22
Security
Largest security patch in project history
ClawHub
New default plugin registry
Rebrand Complete
MoltBot era ends β OPENCLAW_* everywhere
terminal
$ npm i -g openclaw@latest