openclaw
diff --git a/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/.generated/plugin-sdk-api-baseline.sha256‎
Lines changed: 2 additions & 2 deletions b/‎docs/.generated/plugin-sdk-api-baseline.sha256‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎extensions/openai/openai-codex-device-code.test.ts‎
Lines changed: 34 additions & 0 deletions b/‎extensions/openai/openai-codex-device-code.test.ts‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎extensions/openai/openai-codex-device-code.ts‎
Lines changed: 13 additions & 9 deletions b/‎extensions/openai/openai-codex-device-code.ts‎
Lines changed: 13 additions & 9 deletions
diff --git a/‎extensions/openai/realtime-transcription-provider.ts‎
Lines changed: 11 additions & 1 deletion b/‎extensions/openai/realtime-transcription-provider.ts‎
Lines changed: 11 additions & 1 deletion
diff --git a/‎extensions/openai/realtime-voice-provider.test.ts‎
Lines changed: 94 additions & 4 deletions b/‎extensions/openai/realtime-voice-provider.test.ts‎
Lines changed: 94 additions & 4 deletions
@@ -26,6 +26,7 @@ Docs: https://docs.openclaw.ai
 - Channels/Discord: treat bare numeric outbound targets that match the effective Discord DM allowlist as user DMs while preserving account-specific legacy `dm.allowFrom` precedence over inherited root `allowFrom`. (#74303) Thanks @Squirbie.
 - Control UI: make the chat sidebar split divider focusable, keyboard-resizable, ARIA-described, and pointer-event based so sidebar resizing works without a mouse. Thanks @BunsDev.
 - Agents/usage: keep PI embedded-run telemetry attributed to the resolved model provider instead of the PI harness label, so OpenRouter and other provider-backed turns report the right provider in session usage and traces. Thanks @vincentkoc.
+- Agents/attribution: send OpenClaw attribution headers on native OpenAI and Codex traffic, including SDK transports, realtime voice and TTS, device-code auth, WHAM usage, and remote embeddings, so PI-origin defaults no longer leak into provider requests. Thanks @vincentkoc.
 - Agents/auth: keep OAuth auth profiles inherited from the main agent read-through instead of copying refresh tokens into secondary agents, and refresh Codex app-server tokens against the owning store so multi-agent swarms avoid reused refresh-token failures. Fixes #74055. Thanks @ClarityInvest.
 - Channels/Telegram: honor `ALL_PROXY` / `all_proxy` and service-level `OPENCLAW_PROXY_URL` when constructing the HTTP/1-only Telegram Bot API transport, so Windows and service installs that rely on those proxy settings no longer fall back to direct egress. Fixes #74014; refs #74086. Thanks @SymbolStar.
 - Channels/Telegram: continue polling when `deleteWebhook` hits a transient network failure but `getWebhookInfo` confirms no webhook is configured, so startup does not retry cleanup forever after the webhook was already removed. Refs #74086; carries forward #47384. Thanks @clovericbot.
 
@@ -1,2 +1,2 @@
-c14ed336d7add0044299560f2fb2fa9272f23aae335799313f32c63521edc24e  plugin-sdk-api-baseline.json
-e096b25bd16bf1b0562a783609e9f7d945b6e29560ef8ad3fb433145fe084a5d  plugin-sdk-api-baseline.jsonl
+597577966dfee329740d7b0a331263afc26db518fe778f0fad95e2a01da88d83  plugin-sdk-api-baseline.json
+65fb1cad5e5ec1764e3ccfcfd3fbb2e5cfb938ad34b45e6416bba0c00a1d735a  plugin-sdk-api-baseline.jsonl
@@ -20,6 +20,7 @@ function createJsonResponse(body: unknown, init?: { status?: number }) {
 describe("loginOpenAICodexDeviceCode", () => {
   it("requests a device code, polls for authorization, and exchanges OAuth tokens", async () => {
     vi.useFakeTimers();
+    vi.stubEnv("OPENCLAW_VERSION", "2026.3.22");
     try {
       const fetchMock = vi
         .fn()
@@ -78,6 +79,38 @@ describe("loginOpenAICodexDeviceCode", () => {
         "https://auth.openai.com/api/accounts/deviceauth/usercode",
         expect.objectContaining({
           method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            originator: "openclaw",
+            version: "2026.3.22",
+            "User-Agent": "openclaw/2026.3.22",
+          },
+        }),
+      );
+      expect(fetchMock).toHaveBeenNthCalledWith(
+        2,
+        "https://auth.openai.com/api/accounts/deviceauth/token",
+        expect.objectContaining({
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            originator: "openclaw",
+            version: "2026.3.22",
+            "User-Agent": "openclaw/2026.3.22",
+          },
+        }),
+      );
+      expect(fetchMock).toHaveBeenNthCalledWith(
+        4,
+        "https://auth.openai.com/oauth/token",
+        expect.objectContaining({
+          method: "POST",
+          headers: {
+            "Content-Type": "application/x-www-form-urlencoded",
+            originator: "openclaw",
+            version: "2026.3.22",
+            "User-Agent": "openclaw/2026.3.22",
+          },
         }),
       );
       expect(onVerification).toHaveBeenCalledWith({
@@ -96,6 +129,7 @@ describe("loginOpenAICodexDeviceCode", () => {
       expect(credentials.expires).toBeGreaterThan(Date.now());
     } finally {
       vi.useRealTimers();
+      vi.unstubAllEnvs();
     }
   });
 
 
@@ -8,6 +8,16 @@ const OPENAI_CODEX_DEVICE_CODE_DEFAULT_INTERVAL_MS = 5_000;
 const OPENAI_CODEX_DEVICE_CODE_MIN_INTERVAL_MS = 1_000;
 const OPENAI_CODEX_DEVICE_CALLBACK_URL = `${OPENAI_AUTH_BASE_URL}/deviceauth/callback`;
 
+function resolveOpenAICodexDeviceCodeHeaders(contentType: string): Record<string, string> {
+  const version = process.env.OPENCLAW_VERSION?.trim();
+  return {
+    "Content-Type": contentType,
+    originator: "openclaw",
+    ...(version ? { version } : {}),
+    "User-Agent": version ? `openclaw/${version}` : "openclaw",
+  };
+}
+
 type OpenAICodexDeviceCodePrompt = {
   verificationUrl: string;
   userCode: string;
@@ -129,9 +139,7 @@ function formatDeviceCodeError(params: {
 async function requestOpenAICodexDeviceCode(fetchFn: typeof fetch): Promise<RequestedDeviceCode> {
   const response = await fetchFn(`${OPENAI_AUTH_BASE_URL}/api/accounts/deviceauth/usercode`, {
     method: "POST",
-    headers: {
-      "Content-Type": "application/json",
-    },
+    headers: resolveOpenAICodexDeviceCodeHeaders("application/json"),
     body: JSON.stringify({
       client_id: OPENAI_CODEX_CLIENT_ID,
     }),
@@ -180,9 +188,7 @@ async function pollOpenAICodexDeviceCode(params: {
   while (Date.now() < deadline) {
     const response = await params.fetchFn(`${OPENAI_AUTH_BASE_URL}/api/accounts/deviceauth/token`, {
       method: "POST",
-      headers: {
-        "Content-Type": "application/json",
-      },
+      headers: resolveOpenAICodexDeviceCodeHeaders("application/json"),
       body: JSON.stringify({
         device_auth_id: params.deviceAuthId,
         user_code: params.userCode,
@@ -229,9 +235,7 @@ async function exchangeOpenAICodexDeviceCode(params: {
 }): Promise<OpenAICodexDeviceCodeCredentials> {
   const response = await params.fetchFn(`${OPENAI_AUTH_BASE_URL}/oauth/token`, {
     method: "POST",
-    headers: {
-      "Content-Type": "application/x-www-form-urlencoded",
-    },
+    headers: resolveOpenAICodexDeviceCodeHeaders("application/x-www-form-urlencoded"),
     body: new URLSearchParams({
       grant_type: "authorization_code",
       code: params.authorizationCode,
 
@@ -1,3 +1,4 @@
+import { resolveProviderRequestHeaders } from "openclaw/plugin-sdk/provider-http";
 import {
   createRealtimeTranscriptionWebSocketSession,
   type RealtimeTranscriptionProviderConfig,
@@ -107,7 +108,16 @@ function createOpenAIRealtimeTranscriptionSession(
     providerId: "openai",
     callbacks: config,
     url: OPENAI_REALTIME_TRANSCRIPTION_URL,
-    headers: {
+    headers: resolveProviderRequestHeaders({
+      provider: "openai",
+      baseUrl: OPENAI_REALTIME_TRANSCRIPTION_URL,
+      capability: "audio",
+      transport: "websocket",
+      defaultHeaders: {
+        Authorization: `Bearer ${config.apiKey}`,
+        "OpenAI-Beta": "realtime=v1",
+      },
+    }) ?? {
       Authorization: `Bearer ${config.apiKey}`,
       "OpenAI-Beta": "realtime=v1",
     },
 
@@ -1,8 +1,8 @@
 import { REALTIME_VOICE_AUDIO_FORMAT_PCM16_24KHZ } from "openclaw/plugin-sdk/realtime-voice";
-import { beforeEach, describe, expect, it, vi } from "vitest";
+import { afterEach, beforeEach, describe, expect, it, vi } from "vitest";
 import { buildOpenAIRealtimeVoiceProvider } from "./realtime-voice-provider.js";
 
-const { FakeWebSocket } = vi.hoisted(() => {
+const { FakeWebSocket, fetchWithSsrFGuardMock } = vi.hoisted(() => {
   type Listener = (...args: unknown[]) => void;
 
   class MockWebSocket {
@@ -15,8 +15,10 @@ const { FakeWebSocket } = vi.hoisted(() => {
     sent: string[] = [];
     closed = false;
     terminated = false;
+    args: unknown[];
 
-    constructor() {
+    constructor(...args: unknown[]) {
+      this.args = args;
       MockWebSocket.instances.push(this);
     }
 
@@ -49,13 +51,17 @@ const { FakeWebSocket } = vi.hoisted(() => {
     }
   }
 
-  return { FakeWebSocket: MockWebSocket };
+  return { FakeWebSocket: MockWebSocket, fetchWithSsrFGuardMock: vi.fn() };
 });
 
 vi.mock("ws", () => ({
   default: FakeWebSocket,
 }));
 
+vi.mock("openclaw/plugin-sdk/ssrf-runtime", () => ({
+  fetchWithSsrFGuard: fetchWithSsrFGuardMock,
+}));
+
 type FakeWebSocketInstance = InstanceType<typeof FakeWebSocket>;
 type SentRealtimeEvent = {
   type: string;
@@ -70,9 +76,93 @@ function parseSent(socket: FakeWebSocketInstance): SentRealtimeEvent[] {
   return socket.sent.map((payload: string) => JSON.parse(payload) as SentRealtimeEvent);
 }
 
+function createJsonResponse(body: unknown, init?: { status?: number }): Response {
+  return new Response(JSON.stringify(body), {
+    status: init?.status ?? 200,
+    headers: {
+      "Content-Type": "application/json",
+    },
+  });
+}
+
 describe("buildOpenAIRealtimeVoiceProvider", () => {
   beforeEach(() => {
     FakeWebSocket.instances = [];
+    fetchWithSsrFGuardMock.mockReset();
+  });
+
+  afterEach(() => {
+    vi.unstubAllEnvs();
+  });
+
+  it("adds OpenClaw attribution headers to native realtime websocket requests", () => {
+    vi.stubEnv("OPENCLAW_VERSION", "2026.3.22");
+    const provider = buildOpenAIRealtimeVoiceProvider();
+    const bridge = provider.createBridge({
+      providerConfig: { apiKey: "sk-test" }, // pragma: allowlist secret
+      onAudio: vi.fn(),
+      onClearAudio: vi.fn(),
+    });
+
+    void bridge.connect();
+    bridge.close();
+
+    const socket = FakeWebSocket.instances[0];
+    const options = socket?.args[1] as { headers?: Record<string, string> } | undefined;
+    expect(options?.headers).toMatchObject({
+      originator: "openclaw",
+      version: "2026.3.22",
+      "User-Agent": "openclaw/2026.3.22",
+    });
+  });
+
+  it("returns browser-safe OpenClaw attribution headers for native WebRTC offers", async () => {
+    vi.stubEnv("OPENCLAW_VERSION", "2026.3.22");
+    fetchWithSsrFGuardMock.mockResolvedValueOnce({
+      response: createJsonResponse({
+        client_secret: { value: "client-secret-123" },
+        expires_at: 1_765_000_000,
+      }),
+      release: vi.fn(async () => undefined),
+    });
+    const provider = buildOpenAIRealtimeVoiceProvider();
+    if (!provider.createBrowserSession) {
+      throw new Error("expected OpenAI realtime provider to support browser sessions");
+    }
+
+    const session = await provider.createBrowserSession({
+      providerConfig: { apiKey: "sk-test" }, // pragma: allowlist secret
+      instructions: "Be concise.",
+    });
+
+    expect(fetchWithSsrFGuardMock).toHaveBeenCalledWith(
+      expect.objectContaining({
+        url: "https://api.openai.com/v1/realtime/client_secrets",
+        init: expect.objectContaining({
+          method: "POST",
+          headers: expect.objectContaining({
+            Authorization: "Bearer sk-test", // pragma: allowlist secret
+            "Content-Type": "application/json",
+            originator: "openclaw",
+            version: "2026.3.22",
+            "User-Agent": "openclaw/2026.3.22",
+          }),
+        }),
+      }),
+    );
+    expect(session).toMatchObject({
+      provider: "openai",
+      transport: "webrtc-sdp",
+      clientSecret: "client-secret-123",
+      offerUrl: "https://api.openai.com/v1/realtime/calls",
+      offerHeaders: {
+        originator: "openclaw",
+        version: "2026.3.22",
+      },
+    });
+    expect((session as { offerHeaders?: Record<string, string> }).offerHeaders).not.toHaveProperty(
+      "User-Agent",
+    );
   });
 
   it("normalizes provider-owned voice settings from raw provider config", () => {