Include participant identity and quoted reply context in gateway inbound log

[2vanm]

Problem

When WhatsApp group messages are logged by the gateway, the inboundLogger.info() call only writes {from, to, body, timestamp} to the log file. The from field is the group JID, so there is no way to identify which participant sent the message. Quoted reply context (the message being replied to) is also absent.

This matters for any downstream processing of group messages outside of a live session — for example, a cron job that extracts group messages from the log to monitor a family WhatsApp group for itinerary changes.

Current behaviour

The gateway's enqueueInboundMessage() already builds a rich inboundMessage object with:

• senderJid, senderE164, senderName — participant identity
• replyToId — stanza ID of the quoted message
• replyToBody — text of the quoted message
• replyToSender, replyToSenderJid, replyToSenderE164 — who was quoted

For messages that reach the agent (pass mention gating), this data is formatted beautifully into the message body — [Replying to <sender>] <quoted body> [/Replying] and [from: Sender Name (+E164)]. This works perfectly.

But the inboundLogger.info() call discards all of this:

inboundLogger.info({
    from: inbound.from,        // group JID, not participant
    to: self.e164 ?? "me",
    body: enriched.body,
    mediaPath, mediaType, mediaFileName,
    timestamp
}, "inbound message");

Requested change

Include participant identity and reply context fields in the logged object:

inboundLogger.info({
    from: inbound.from,
    to: self.e164 ?? "me",
    body: enriched.body,
    senderJid: inbound.senderJid,
    senderE164: inbound.senderE164,
    senderName: inbound.senderName,
    replyToId: enriched.replyContext?.replyToId,
    replyToBody: enriched.replyContext?.replyToBody,
    replyToSender: enriched.replyContext?.replyToSender,
    mediaPath, mediaType, mediaFileName,
    timestamp
}, "inbound message");

This is a minimal change — the data is already computed, it just needs to be included in the log line.

Use case

I have a cron job that monitors a family holiday WhatsApp group (with requireMention: true) by parsing the gateway log. Messages filtered by mention gating are still logged, which is great — but without participant identity, I can't tell who said what, and without quoted reply context, I can't follow threaded conversations like:

1. Ivan: "Can you book the osteopath?"
2. Gia (quoting Ivan): "Yes, 4:30pm available"
3. Ivan (quoting Gia): "Great, let's book it"

Currently this appears as three anonymous messages with no threading.

Environment

• OpenClaw v2026.4.8
• WhatsApp channel with groupPolicy: "open", group-level requireMention: true

[Artyomkun]

Fixed, closing.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed June 14, 2026, 6:34 AM ET / 10:34 UTC.

Summary
Keep open. Current main and latest available release still omit the requested WhatsApp participant and quoted-reply fields from the gateway inbound log; the remaining blocker is maintainer direction on the privacy/log-retention contract before another fix PR should add raw identifiers or quoted bodies.

Reproducibility: yes. Source inspection on current main shows the WhatsApp inboundLogger.info payload omits the participant and reply fields while the same function computes those values for the queued inbound message.

Next step
A repair PR should wait for maintainer direction on whether raw WhatsApp participant identifiers and quoted message content may be persisted in gateway inbound logs.

Security
Needs attention: The issue is privacy-sensitive because the requested fix would persist additional WhatsApp participant identifiers and quoted message content in gateway logs.

Review details

Best possible solution:

Define the maintainer-approved WhatsApp inbound log contract first, then add the participant/threading fields with any required redaction or opt-in behavior plus focused log-payload coverage.

Do we have a high-confidence way to reproduce the issue?

Yes. Source inspection on current main shows the WhatsApp inboundLogger.info payload omits the participant and reply fields while the same function computes those values for the queued inbound message.

Is this the best way to solve the issue?

Unclear until maintainers choose the log contract. The narrow logger addition is mechanically plausible, but the best solution may need redaction or an explicit opt-in before persisting raw WhatsApp identifiers and quoted bodies.

AGENTS.md: found and applied where relevant.

Remaining risk / open question:

• Persisting raw WhatsApp JIDs, phone numbers, display names, quoted message IDs, quoted bodies, and quoted sender labels changes the log privacy/retention boundary and needs maintainer direction before a new fix PR.

Codex review notes: model internal, reasoning high; reviewed against 37e3e895b020.

Label changes

Label changes:

• add impact:security: The requested fix would expand persistent logs with raw participant identifiers and quoted message content, requiring a privacy/log-retention decision.
• add clawsweeper:fix-shape-clear: Current issue advisory state selects this label.
• add clawsweeper:needs-maintainer-review: Current issue advisory state selects this label.
• add clawsweeper:needs-product-decision: Current issue advisory state selects this label.
• add clawsweeper:needs-security-review: Current issue advisory state selects this label.
• remove clawsweeper:linked-pr-open: Current issue advisory state no longer selects this label.

Label justifications:

• P2: The issue affects persistent WhatsApp log usefulness but is bounded to one channel/logger path.
• impact:data-loss: The gateway log currently drops sender attribution and reply-thread context that downstream log processors cannot reconstruct later.
• impact:security: The requested fix would expand persistent logs with raw participant identifiers and quoted message content, requiring a privacy/log-retention decision.

Evidence reviewed

Security concerns:

• [medium] Persistent log privacy contract is unsettled — extensions/whatsapp/src/inbound/monitor.ts:1057
  Adding the requested fields at the inbound logger would store raw WhatsApp participant identifiers and quoted message content; maintainers should choose the redaction, opt-in, or raw-log contract before implementation.
  Confidence: 0.9

Acceptance criteria:

• After maintainer direction, run node scripts/run-vitest.mjs extensions/whatsapp/src/monitor-inbox.behavior.test.ts.
• Add focused WhatsApp inbound monitor coverage asserting the final inboundLogger.info payload for a group quoted message.
• For contributor PRs, provide redacted real WhatsApp or equivalent runtime log proof showing the chosen fields after the patch.

What I checked:

• Current logger payload omits requested fields: The current WhatsApp inbound logger writes from, to, body, mediaPath, mediaType, mediaFileName, and timestamp, with no senderJid, senderE164, senderName, or replyTo* fields. (extensions/whatsapp/src/inbound/monitor.ts:1057, 37e3e895b020)
• Current code already computes the requested data: The same function builds the queued inbound message with platform.senderJid, platform.senderE164, platform.senderName, and quote id/body/sender data immediately after the logger call. (extensions/whatsapp/src/inbound/monitor.ts:1086, 37e3e895b020)
• Latest release still omits log enrichment: Release v2026.6.6 has the same logger payload shape while the queued message still carries senderJid and replyTo* fields, so the issue is not shipped fixed. (extensions/whatsapp/src/inbound/monitor.ts:1025, 8c802aa68351)
• Type contract has the fields: WhatsApp inbound types expose senderJid, senderE164, senderName, replyToId, replyToBody, replyToSender, replyToSenderJid, and replyToSenderE164 as existing message context fields. (extensions/whatsapp/src/inbound/types.ts:100, 37e3e895b020)
• Reply context extraction exists: describeReplyContext extracts quoted stanza id, body, and sender identity from WhatsApp contextInfo before enqueueing the inbound message. (extensions/whatsapp/src/inbound/extract.ts:404, 37e3e895b020)
• Adjacent log test is narrower than the request: Existing logger coverage checks body/from/message label only and does not assert participant identity or quoted reply fields in the final inboundLogger.info payload. (extensions/whatsapp/src/monitor-inbox.captures-media-path-image-messages.test-support.ts:154, 37e3e895b020)

Likely related people:

• steipete: Recent WhatsApp identity-handling work added or carried the sender and identity fields that the logger would reuse. (role: feature-history contributor; confidence: high; commits: 3b6d980c52c3; files: extensions/whatsapp/src/inbound/monitor.ts, extensions/whatsapp/src/identity.ts)
• mcaxtr: Recent merged WhatsApp inbound work changed account, replay, and monitor behavior in the same central file. (role: recent WhatsApp inbound contributor; confidence: high; commits: 458a52610a4d, da1da6110209; files: extensions/whatsapp/src/inbound/monitor.ts)
• scoootscooob: Moved the WhatsApp channel implementation into the extensions boundary that owns this logger path. (role: adjacent migration contributor; confidence: medium; commits: 16505718e827; files: extensions/whatsapp/src/inbound/monitor.ts)
• jepson-liu: Earlier closed PR work for this exact issue added WhatsApp inbound sender and reply-context logging plus test coverage, but it did not merge. (role: prior related implementation author; confidence: high; commits: e870f6183dba, 694080cba27c; files: extensions/whatsapp/src/inbound/monitor.ts, extensions/whatsapp/src/monitor-inbox.test.ts)
• XuZehan-iCenter: Later closed PR work for this exact issue made a narrow logger enrichment, then closed for maintainer privacy/log-retention direction. (role: prior related implementation author; confidence: high; commits: 1cb46bf95dd4; files: extensions/whatsapp/src/inbound/monitor.ts)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[openclaw-barnacle]

This issue has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.