RFC: SessionEntryMergePolicy."merge-plugin-metadata" for safe third-party plugin coexistence

[100yenadmin]

Problem statement

mergeSessionEntry at src/config/sessions/types.ts:398-403 does a shallow spread:

const next = { ...existing, ...patch, sessionId, updatedAt };

When a patch contains pluginMetadata: { 'plugin-A': {...} }, this REPLACES the entire pluginMetadata field. Any other plugin's slot ('plugin-B', 'plugin-C', …) is silently dropped.

Observable in production today via the third-party Smarter-Claw plugin: when an agent reply lands and patches the entry, the agent's payload typically includes only its own pluginMetadata slice — the spread clobbers the plan-mode state Smarter-Claw wrote earlier in the same session. The plugin currently works around this with a top-level mirror surface that the same shallow spread can't clobber, but the workaround creates vocabulary split-brain (slot stores kind: \"approval\", mirror translates to kind: \"plan\") that has produced two separate live bugs already.

Why not "just lock around the read-modify-write"?

withSessionStoreLock already serializes writes per-store-path. The race isn't between concurrent writers — it's that the AGENT'S own patch (via the regular request path) doesn't carry forward the plugin's prior pluginMetadata writes, because the agent code doesn't know what plugins have stamped state. The patch is "everything I want this entry to look like" from the agent's perspective, which legitimately doesn't include opaque per-plugin state. The fix has to live at merge time.

Proposed change

Add \"merge-plugin-metadata\" to SessionEntryMergePolicy (purely additive):

// types.ts:356
export type SessionEntryMergePolicy =
  | \"touch-activity\"
  | \"preserve-activity\"
  | \"merge-plugin-metadata\"; // NEW

Implementation in mergeSessionEntryWithPolicy (additive branch):

const next = { ...existing, ...patch, sessionId, updatedAt };

// NEW: when policy === \"merge-plugin-metadata\", deep-merge pluginMetadata
// at the namespace level (one level deep). The patch's slots take
// precedence over existing slots; existing slots not in patch are preserved.
if (
  options?.policy === \"merge-plugin-metadata\" &&
  existing?.pluginMetadata &&
  isPlainObject(patch.pluginMetadata)
) {
  next.pluginMetadata = {
    ...existing.pluginMetadata,
    ...patch.pluginMetadata,
  };
}

return normalizeSessionRuntimeModelFields(next);

Call-site adoption

Existing mergeSessionEntry callers (no policy) → unchanged behavior.

Opt-in candidates that ingest plugin-stamped metadata:

• src/gateway/sessions-patch.ts (handles sessions.patch RPC)
• src/agents/command/session-store.ts (agent-reply persist)

One-line change per call site, preserves third-party plugin state across the request paths that produce most entry mutations.

Backward compatibility

• Callers using existing default: unchanged
• Callers using \"preserve-activity\": orthogonal (controls updatedAt, not pluginMetadata)
• Slot-deletion semantics: caller could pass { \"plugin-id\": null } sentinel for explicit removal (matches Postgres JSONB merge). Recommend including in the same RFC.

Tests proposed

• merge-plugin-metadata with empty existing → identical to default
• … with existing slots and patch having different slot → both preserved
• … with existing slot and patch having same slot → patch wins
• … with patch having null value for slot → slot deleted (if option-b adopted)

What this unblocks for plugin authors

For Smarter-Claw specifically, once we migrate to this policy:

1. Drop the top-level mirror surface (planMode, pendingInteraction, pendingQuestionApprovalId)
2. Delete kind-translation logic (approval ↔ plan)
3. Single source of truth for approval ID
4. Retire the planned file-state migration (or keep as opt-in for multi-process safety)

The pattern generalizes — any third-party plugin that writes pluginMetadata needs this safety to coexist with the agent-reply request path.

Cross-link

• Smarter-Claw RFC draft + tracking: docs: upstream RFC draft \u2014 mergeSessionEntryWithPolicy('merge-plugin-metadata') electricsheephq/Smarter-Claw#71
• Smarter-Claw blocker issues this would unblock structurally: [runtime] Contract-lock PR #70071 compatibility adapter electricsheephq/Smarter-Claw#44, [runtime] Fix approval ID and pending approval vocabulary electricsheephq/Smarter-Claw#45

[clawsweeper]

Closing this as duplicate or superseded after Codex automated review.

Close #71260 as superseded by the broader open RFC #71732. Current main still does not implement merge-plugin-metadata or a typed pluginMetadata session field, but #71732 now tracks the same underlying plugin coexistence problem as a generic plugin session-extension and host-routed patch-action API, with #72082 as an open implementation candidate that has not landed.

Best possible solution:

Close #71260 and keep the remaining core/API discussion on #71732, with #72082 or a successor as the implementation vehicle. The best product direction is a generic, documented plugin session-extension contract with host-owned patch validation, projection, lifecycle cleanup, disabled-plugin semantics, tests, and docs; if maintainers prefer a minimal fallback, that decision should be made in the canonical #71732 thread.

What I checked:

• Superseding RFC: [RFC] Plugin session extensions and patch actions #71732 is open and explicitly proposes a namespaced plugin session extension API so plugins can persist typed per-session state, expose public projections, and mutate state through gateway-authorized patch actions. Its comments call out the same missing host seam: plugins cannot own durable session state through native patch, projection, broadcast, lifecycle, and disabled-plugin semantics.
• Requested merge policy still absent: SessionEntryMergePolicy is still only touch-activity | preserve-activity; mergeSessionEntryWithPolicy still constructs the merged entry from a shallow object spread and has no merge-plugin-metadata branch. (src/config/sessions/types.ts:368, 9089e6b595ba)
• No typed pluginMetadata session field: Current SessionEntry has pluginDebugEntries for bounded status/debug display, but no pluginMetadata field. Repository searches found no pluginMetadata or merge-plugin-metadata implementation in the session/gateway/agent surfaces. (src/config/sessions/types.ts:273, 9089e6b595ba)
• Current sessions.patch remains core-only: SessionsPatchParamsSchema enumerates fixed core patch fields and sets additionalProperties: false; current gateway sessions.patch validates those params, calls applySessionsPatchToStore, and only emits an internal post-write hook after persistence. (src/gateway/protocol/schema/sessions.ts:131, 9089e6b595ba)
• Plugin SDK lacks the broader session-extension API on main: OpenClawPluginApi exposes hooks, gateway methods, commands, provider/tool registrations, memory helpers, and runtime helpers, but no registerSessionExtension, sessions.pluginPatch, pluginPatch, or equivalent host-owned session-extension registration surface. (src/plugins/types.ts:2061, 9089e6b595ba)

So I’m closing this here and keeping the remaining discussion on the canonical linked item.

Codex Review notes: model gpt-5.5, reasoning high; reviewed against 9089e6b595ba.