Stable v2026.3.13-1 still reports false `missing scope: operator.read` for local loopback probes

[wufunc]

Summary

The latest stable tag v2026.3.13-1 still reproduces a false-negative gateway diagnostic on local authenticated loopback probes:

• openclaw gateway probe
• openclaw status --json

Both can degrade to missing scope: operator.read even when the local loopback gateway is healthy and direct gateway RPC calls succeed.

main already appears to contain the fix in commit 4ab016a9bd (fix: preserve loopback gateway scopes for local auth), but that fix is not present in v2026.3.13-1.

Why this is confusing

From the operator side, the system looks broken because the user-visible diagnostic says the gateway is degraded / unreachable-ish, while the actual gateway and agent turns are fine.

In my local repro:

• openclaw gateway call status --json succeeded
• openclaw agent --agent main --message 'Reply with exactly OK.' --thinking xhigh --json succeeded
• but openclaw gateway probe and openclaw status --json reported missing scope: operator.read

Source / release relationship

What I verified locally from the repo:

• main contains commit 4ab016a9bd fix: preserve loopback gateway scopes for local auth
• v2026.3.13-1 does not contain that commit
• v2026.3.13-1:src/gateway/probe.ts still has the older unconditional loopback device-identity disable path
• closed PR fix(gateway): include device identity in probe clients #48617 describes the same fix path and was later marked superseded by the upstream commit above

Repro on stable v2026.3.13-1

Environment:

• macOS 14.8.3 (arm64)
• OpenClaw 2026.3.13 installed from package manager
• gateway.mode=local
• gateway.bind=loopback
• token auth enabled
• paired operator device present

Steps:

1. Start / keep a healthy local loopback gateway.
2. Ensure local token auth is enabled and the device is paired.
3. Run openclaw gateway probe.
4. Run openclaw status --json.
5. Compare that with openclaw gateway call status --json or a real openclaw agent ... turn.

Actual:

• probe/status path can report missing scope: operator.read

Expected:

• local authenticated loopback probes should stay device-bound and report the gateway as reachable / RPC: ok

Request

Please confirm that the next stable release includes 4ab016a9bd, or otherwise track a backport/re-release path for users still on v2026.3.13-1.

[Ryce]

This is the exact class of state drift that's been hitting across dozens of issues: two independent systems disagree on what's true, and the diagnostic tool can't see what the gateway actually resolved.

The loopback probe reads scopes from a different auth path than actual RPC calls. Gateway says healthy, probe says missing. Nobody owns the reconciliation layer.

If you're dealing with this kind of silent state disagreement across your setup — scopes, models, configs that drift between what's configured and what's running — you might want to snapshot that state before it bites you. We built something for exactly this: keepmyclaw.com

The pattern: config says X, runtime does Y, diagnostic says Z. All three disagree. You find out when something breaks.

[Hollychou924]

Analysis: v2026.3.13-1 missing fix for loopback operator.read false-negative — backport needed

This is a release packaging issue, not a new bug. The fix exists in main but wasn't included in the stable tag.

What you found:

• main has commit 4ab016a9bd (fix: preserve loopback gateway scopes for local auth)
• v2026.3.13-1 does not have this commit
• Result: openclaw gateway probe and openclaw status --json falsely report missing scope: operator.read even when the gateway is fully functional

The misleading UX this creates:

openclaw gateway call status --json   → ✅ succeeds
openclaw agent --message 'OK'          → ✅ succeeds  
openclaw gateway probe                → ❌ "missing scope: operator.read"
openclaw status --json                → ❌ degraded/unreachable

The user's gateway is healthy. The diagnostic tools say otherwise. This is a trust-killer for operators who rely on probe to check system health before debugging.

The commit in question (4ab016a9bd): adjusts the loopback probe path to preserve operator scopes instead of the unconditional device-identity disable path in src/gateway/probe.ts in v2026.3.13-1.

Request: This fix qualifies for a patch release backport — it's a pure diagnostic correctness fix with no behavior change for non-loopback setups. Would be ideal in v2026.3.13-2 or v2026.3.14.

Workaround: Use main branch build, or ignore probe/status --json output and use openclaw gateway call status --json directly to verify gateway health.