google-vertex provider broken on Node 25+ and ADC credential handling

[cskeleton]

Summary

google-vertex provider broken on Node 25+ — @google/genai crashes with Cannot convert undefined or null to object on startup, and ADC credential marker leaks to downstream causing auth failures.

---

Bug type

Behavior bug (incorrect output/state without crash)

---

Beta release blocker

No

---

Steps to reproduce

Bug 1 — node-fetch crash (Node 25+):

1. Run OpenClaw on Node v25.x (macOS).
2. Attempt any google-vertex request (e.g. gv-flash model).
3. Observe crash: Cannot convert undefined or null to object thrown from inside @google/genai/node_modules/gaxios.

Bug 2 — ADC marker leak:

1. Configure google-vertex provider with Application Default Credentials (ADC) in ~/.openclaw/.env.
2. Start gateway via LaunchAgent.
3. Attempt any google-vertex request.
4. Observe auth failure — x-goog-api-key header being constructed from the raw ADC marker string instead of being omitted.

---

Expected behavior

Bug 1: google-vertex requests work on Node 25+ without crashing — gaxios should use globalThis.fetch when available.

Bug 2: With valid ADC credentials, google-vertex requests succeed and the pi-ai provider passes vertexai: true to GoogleGenAI so requests go to the Vertex AI endpoint.

---

Actual behavior

Bug 1: @google/genai's nested gaxios dynamically imports node-fetch on Node 25+, which throws before any request is made.

Bug 2: model-auth-env returns the raw GCP_VERTEX_CREDENTIALS_MARKER constant instead of a resolved sentinel; gemini-auth helpers attempt to build x-goog-api-key from it; pi-ai does not set vertexai: true so even valid ADC requests go to the wrong endpoint.

---

OpenClaw version

latest (installed via npm global, /opt/homebrew/lib/node_modules/openclaw)

---

Operating system

macOS 25.x (arm64)

---

Install method

npm global

---

Model

google-vertex (effective model e.g. gemini-3.1-flash-lite-preview via Vertex AI)

---

Provider / routing chain

openclaw -> google-vertex (direct, ADC auth)

---

Additional provider/model setup details

Two separate patches were developed to work around both bugs locally.

Patch 1 — patch-vertex-node25-fetch.sh patches gaxios to prefer globalThis.fetch over node-fetch:

// Changed from:
static async #getFetch() {
    const hasWindow = typeof window !== "undefined" && !!window;
    this.#fetch ||= hasWindow
        ? window.fetch
        : (await import("node-fetch")).default;
    return this.#fetch;
}

// To:
static async #getFetch() {
    const hasWindow = typeof window !== "undefined" && !!window;
    const hasGlobalFetch = typeof globalThis.fetch === "function";
    this.#fetch ||= hasWindow
        ? window.fetch
        : hasGlobalFetch
            ? globalThis.fetch.bind(globalThis)
            : (await import("node-fetch")).default;
    return this.#fetch;
}

Patch 2 — patch-vertex-adc.updated.sh patches:

• model-auth-env-*.js: returns "<authenticated>" instead of raw marker constant
• gemini-auth-*.js: guards against placeholder strings in parseGeminiAuth
• pi-ai/dist/providers/google.js: sets vertexai: true + project/location when provider is google-vertex
• ~/.openclaw/.env and LaunchAgent plist: writes GOOGLE_CLOUD_PROJECT, GOOGLE_CLOUD_LOCATION

---

Logs, screenshots, and evidence

Bug 1 — node-fetch crash on Node 25:

$ node -e "import('@google/genai').then(async ({GoogleGenAI}) => { ... })"
Error: Cannot convert undefined or null to object
    at node-fetch/index.js:...

Bug 2 — ADC marker leak in gateway logs:

[model-auth-env] resolved=undefined source=gcloud-adc
# downstream receives GCP_VERTEX_CREDENTIALS_MARKER and fails

---

Impact and severity

Affected: Users of google-vertex provider on Node 25+ (latest macOS default)
Severity: High — provider completely unusable on current Node version
Frequency: 100% (always fails on Node 25+)
Consequence: google-vertex requests crash; no workaround without patching

---

Additional information

Root causes:

1. gaxios inside @google/genai uses import("node-fetch") fallback unconditionally — Node 18+ has native globalThis.fetch but gaxios does not check for it.
2. model-auth-env exposes internal credential marker constant to downstream consumers instead of a resolved sentinel value.
3. pi-ai google provider does not detect google-vertex provider mode and fails to set vertexai: true on GoogleGenAI.
4. LaunchAgent plist EnvironmentVariables and OPENCLAW_SERVICE_MANAGED_ENV_KEYS drift apart on restart.

Temporary workaround: run the two local patch scripts at ~/gcDora/scripts/patch-vertex-adc.updated.sh and ~/gcDora/scripts/patch-vertex-node25-fetch.sh after each OpenClaw upgrade.

[seemebreakthis]

Same problem I am seeing on version 2026.4.23

Whenever I try to talk to my agent on google-vertex/gemini-2.5-flash (or other models from the same provider), I am hit with the Cannot convert undefined or null to object error. Reverted back to the version that worked for me: 2026.3.28

[cskeleton]

Same problem I am seeing on version 2026.4.23

Whenever I try to talk to my agent on google-vertex/gemini-2.5-flash (or other models from the same provider), I am hit with the Cannot convert undefined or null to object error. Reverted back to the version that worked for me: 2026.3.28

Yeah, it's been through several versions. My OpenClaw write&update these scripts to patch it. I just apply the patch every time there's an update.

[seemebreakthis]

Same problem I am seeing on version 2026.4.23
Whenever I try to talk to my agent on google-vertex/gemini-2.5-flash (or other models from the same provider), I am hit with the Cannot convert undefined or null to object error. Reverted back to the version that worked for me: 2026.3.28

Yeah, it's been through several versions. My OpenClaw write&update these scripts to patch it. I just apply the patch every time there's an update.

Not sure if docker OpenClaw have different file/folder structures, but I'd be more than willing to give your patches a try. Could you provide them here so I can examine / run / modify them if necessary?

[clawsweeper]

Thanks for the context here. I did a careful shell check against current main, and this is already implemented.

Current main now implements the reported Google Vertex ADC path well enough to close: authorized-user ADC is detected, routed to the Google plugin's native Vertex transport, exchanged for a bearer token, and sent to the Vertex AI endpoint without serializing the ADC marker as an API key. This is present on main but is not proven shipped in v2026.4.27.

So I’m closing this as already implemented rather than keeping a duplicate issue open.

Review details

Best possible solution:

Keep the provider-owned Google Vertex transport on main and let the next release carry it, because it keeps Vertex endpoint construction and ADC token exchange inside the Google plugin instead of adding core marker-stripping policy.

Do we have a high-confidence way to reproduce the issue?

Yes. The focused regression path constructs authorized-user ADC, passes the gcp-vertex-credentials marker, and verifies the request goes to the Vertex endpoint with a bearer token; current main should not reproduce the reported ADC marker leak on that path.

Is this the best way to solve the issue?

Yes. The current fix is the narrow maintainable solution for this report: route Google Vertex ADC through the Google plugin's native transport and exchange ADC before request headers are built, rather than teaching core to special-case Google credential markers.

Security review:

Security review: No patch is under review; this is ordinary provider-auth bug triage rather than a security disclosure.

What I checked:

• Current main routes ADC Vertex requests to native transport: The Google provider now returns createGoogleVertexTransportStreamFn() for google-vertex models when authorized-user ADC is detected, avoiding the pi-ai/@google/genai fallback for the reported ADC setup. (extensions/google/provider-registration.ts:60, 98b96182f8e1)
• ADC marker no longer becomes x-goog-api-key on native Vertex path: The Vertex header builder treats the marker as ADC evidence and resolves bearer headers; x-goog-api-key is only used for a real non-marker API key. (extensions/google/transport-stream.ts:604, 98b96182f8e1)
• Vertex endpoint now uses project and location: The native Vertex transport requires GOOGLE_CLOUD_PROJECT/GCLOUD_PROJECT and GOOGLE_CLOUD_LOCATION, then builds the aiplatform.googleapis.com Vertex streamGenerateContent URL. (extensions/google/transport-stream.ts:208, 98b96182f8e1)
• ADC exchange returns bearer Authorization: The ADC helper reads authorized_user credentials, refreshes the access token through oauth2.googleapis.com/token, caches it, and returns an Authorization bearer header. (extensions/google/vertex-adc.ts:104, 98b96182f8e1)
• Regression coverage exercises the reported marker path: The focused test passes apiKey: gcp-vertex-credentials, mocks ADC token refresh, and expects the Vertex AI URL plus Authorization: Bearer ya29.vertex-token in request headers. (extensions/google/transport-stream.test.ts:292, 98b96182f8e1)
• Release provenance check: v2026.4.27 lacked extensions/google/vertex-adc.ts and its provider-registration only handled google-generative-ai; current main contains the Vertex files, but git tag --contains HEAD returned no shipped tag. (extensions/google/provider-registration.ts:52, cbc2ba093146)

Likely related people:

• Vincent Koc: Current blame and shortlog for the Google Vertex ADC helper, native Vertex transport, provider registration, and regression test point to this author for the relevant main-branch behavior. (role: recent maintainer / implementation owner; confidence: medium; commits: 02597caa8bff; files: extensions/google/vertex-adc.ts, extensions/google/transport-stream.ts, extensions/google/provider-registration.ts)

Codex review notes: model gpt-5.5, reasoning high; reviewed against 98b96182f8e1; fix evidence: commit 98b96182f8e1, main fix timestamp 2026-04-30T14:59:30+01:00.