Plugin config (plugins.entries.<id>.config) has no env-var or writable-overlay path — every change requires image rebuild in policy-locked sandboxes

[mayank6136]

Summary

In plain English: plugin config (plugins.entries.<id>.config) is sourced from openclaw.json at startup — and that file is in a directory that NemoClaw makes read-only by Landlock policy at runtime. So a plugin like <observability-plugin> that needs per-deployment config (OTLP endpoint, service name, etc.) cannot be reconfigured after the sandbox is built; every config change requires a full image rebuild. There's no env-var override path and no writable-overlay path documented.

Companion issue planned against NVIDIA/NemoClaw to make plugin config writable from the policy side; this is the OpenClaw-core angle on the same problem.

Problem

The OpenClaw config schema currently sources plugin config from a single location: plugins.entries.<id>.config in openclaw.json. That file is in /sandbox/.openclaw/openclaw.json in NemoClaw, which is Landlock-RO at runtime per sandbox security policy. So:

• Editing the file at runtime → EACCES, no useful diagnostic.
• Plugin code can't read overrides from anywhere else.
• Change config = full image rebuild (~5–10min).

For plugins that follow OTel ecosystem conventions, this is particularly awkward: OTEL_EXPORTER_OTLP_ENDPOINT, OTEL_SERVICE_NAME, etc. are well-established standard env-vars, and the OpenTelemetry SDK reads them automatically. But the plugin can't pass them through if OpenClaw's config layer doesn't surface them — and OpenClaw's plugin-config schema currently has no env-var overlay support.

Suggested fix (in priority order)

1. Env-var overrides for plugin config

Allow plugins to declare which env vars override which config keys. Either:

• Schema-level: plugins.entries.<id>.configEnv: { endpoint: "OTEL_EXPORTER_OTLP_ENDPOINT" } — OpenClaw resolves env-vars at startup, applies to config.
• Or: pass process.env through to plugin's register(api) so the plugin can read its own env-vars.

2. Writable-overlay path for plugin config

Allow plugin config to source from a writable path AS WELL AS openclaw.json. e.g., /sandbox/.openclaw-data/plugin-config.json (which IS writable in NemoClaw) overlaid on top of openclaw.json. Plugin sees the merged result.

3. (Minimum) document the build-time-only constraint

If neither of the above is acceptable, at least document that plugin config is build-time-only in policy-locked environments and explain how plugins should be developed accordingly (e.g., consume only env vars, or expose a runtime config endpoint).

Repro

# 1. Build a NemoClaw sandbox with deep-observability plugin baked in (per
#    project setup; openclaw.json baked at build time with plugin config block).

# 2. Try to edit openclaw.json at runtime:
openshell sandbox exec -n nemoclaw-deepobs -- /bin/bash -c '
  sed -i "s|http://172.17.0.1:14318|https://example.com|" /sandbox/.openclaw/openclaw.json
'
# Output: sed: cannot rename /sandbox/.openclaw/sed3iy3v: Operation not permitted

# 3. The OPS path is to rebuild the image. Multi-minute round-trip per config tweak.

Why it matters

This compounds with the deploy/docker-compose architectural mismatch — when users debug span-not-landing issues under NemoClaw, they want to try different OTel endpoint configurations. Each attempt is a full image rebuild. The iteration cost discourages diagnosis. Eight cycles of "tweak endpoint → rebuild → test → no change" is what we did during this run; it didn't have to be that painful.

Alternatives considered

• Hot-reload of openclaw.json: doesn't help if the file is RO at runtime.
• Plugins read their own config independently from openclaw.json: breaks the unified-config contract that's already established.

Test plan

After fix #1 (env-var overrides):

• Plugin config has endpoint: "http://default-endpoint" baked in.
• Set OTEL_EXPORTER_OTLP_ENDPOINT=http://override.example.com in the sandbox env (via openshell sandbox-create env injection).
• Plugin's actual exporter URL should be http://override.example.com/v1/traces.
• Restart sandbox → endpoint persists per env, no image rebuild.

Risk / blast radius

• Env-var overrides: medium risk for plugins that read config without expecting env-overlay (could surprise on existing deployments). Mitigated by making it opt-in at the plugin level (plugin declares which keys are env-overridable).
• Writable-overlay: small risk; opt-in via config schema change.
• Docs-only: zero risk.

Open questions for maintainers

1. Is there architectural intent to keep plugin config strictly file-based? If so, what's the path forward for policy-locked environments?
2. Companion: a NVIDIA/NemoClaw issue is planned suggesting NemoClaw expose a writable overlay path for plugin config. Which fix-side is preferred?
3. The OTel ecosystem env-var conventions (OTEL_EXPORTER_OTLP_ENDPOINT, etc.) are well-established. Acceptable to lean on those rather than invent OpenClaw-specific ones?

Tested-against

• OpenClaw v2026.4.9
• NemoClaw v0.0.26 / OpenShell 0.0.36 (sandbox provider with Landlock RO)

Severity

Medium. Doesn't block functionality, but it's a development-velocity tax that compounds with other plugin issues. Anyone iterating on plugin config under NemoClaw will hit it.

[yakovliam]

Big +1 on this. Adding a full image rebuild to every minor tweak makes debugging nearly impossible in policy-locked environments. Providing a path for environment variables to override the static openclaw.json at startup would solve this without compromising the security of the RO sandbox policy. This would be a huge QOL improvement for the release cycle.

[dhqdbb]

same on openclaw-weixin

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed May 30, 2026, 12:52 AM ET / 04:52 UTC.

Summary
Codex review failed: timeout.

Reproducibility: unclear. The review failed before ClawSweeper could establish a reproduction path.

Ways to help us reproduce this

• Add a screenshot or short recording showing the behavior.
• Include the exact command, prompt, or workflow that triggered it.

Next step
Review did not complete, so no work-lane recommendation was made.

Review details

Best possible solution:

Retry the Codex review after fixing the execution failure.

Do we have a high-confidence way to reproduce the issue?

Unclear. The review failed before ClawSweeper could establish a reproduction path.

Is this the best way to solve the issue?

Unclear. Retry the review first so ClawSweeper can evaluate the actual issue and fix direction.

AGENTS.md: unclear because the file could not be read completely.

Remaining risk / open question:

• No close action taken because the review did not complete.

Codex review notes: model gpt-5.5, reasoning high; reviewed against f848a6f7f74b.

Label changes

Label changes:

• add issue-rating: 🦪 silver shellfish: Current issue advisory state selects this label.
• add clawsweeper:needs-info: Current issue advisory state selects this label.

Evidence reviewed

What I checked:

• failure reason: timeout.
• codex failure detail: Codex review failed for this issue: spawnSync codex ETIMEDOUT.
• codex stdout: Per-item Codex failure; continuing with the rest of the shard.

Likely related people:

• unknown: Codex failed before it could trace repository history. (role: review did not complete; confidence: low)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[mayank6136]

Thanks for the +1s here — the comments make me think this is not just an observability-plugin/NemoClaw issue, but a broader plugin-config contract problem for policy-locked deployments.

One clarification on the solution shape: I don't think env-var overrides alone fully solve the core issue unless the sandbox/runtime can inject or change env vars without rebuilding the image. If env vars are also effectively fixed at sandbox creation time, then env overrides reduce the coupling to openclaw.json, but they still do not give operators a fast "change config → restart gateway → test again" loop.

So I'd separate the fix into two layers:

1. Env-var overrides for standard ecosystem settings

   • Useful for OTel-style plugins, e.g. OTEL_EXPORTER_OTLP_ENDPOINT, OTEL_SERVICE_NAME.
   • Best when the runtime can pass env vars at sandbox start without rebuilding the image.
   • Should be opt-in / declared, not magical: only explicitly mapped env vars should override plugin config.

2. Writable plugin-config overlay for policy-locked sandboxes

   • This seems like the more complete fix for the problem described here.
   • Keep /sandbox/.openclaw/openclaw.json read-only.
   • Add a writable overlay path, for example:
     • /sandbox/.openclaw-data/plugin-config/<plugin-id>.json, or
     • /sandbox/.openclaw-data/plugin-config.json
   • At gateway/plugin startup, OpenClaw merges:
     • baked plugins.entries.<id>.config
     • plus the writable overlay
     • plus any explicitly declared env overrides, if supported
   • Then validate the final merged config against the plugin schema and expose it through api.pluginConfig.

For the debugging loop we hit, the overlay path is probably the key requirement:

change overlay config → restart gateway/plugin → test again → no image rebuild

Env vars are still valuable, especially for OTel conventions, but I would not want env vars to be treated as the only fix unless NemoClaw/OpenShell confirms env injection is cheap and does not require image rebuild.

Suggested precedence could be:

baked openclaw.json config < writable plugin overlay < declared env overrides

[mayank6136]

Reporter nudge — no new design, just trying to unblock.

The 04-29 reply laid out a two-layer proposal (env-var overrides for declared keys + a writable plugin-config overlay path, with precedence baked < overlay < declared env). With @yakovliam's +1 on the env-var direction and @dhqdbb noting the same shape on openclaw-weixin, this looks like a fairly common deployment pattern across policy-locked sandboxes, not just NemoClaw/OpenShell.

What would help most here is a maintainer call on direction:

• (a) env-var-only via a declared configEnv field in PluginEntrySchema,
• (b) writable overlay path (e.g. /sandbox/.openclaw-data/plugin-config/<plugin-id>.json) merged into the resolver,
• (c) both, with documented precedence,
• (d) docs-only (document the existing ${VAR} / $include workaround as the supported answer).

Happy to put up the PR for whichever shape you'd accept. If the answer is "this needs a broader plugin-config-contract RFC first," that's also useful to know so I can hold off.

[openclaw-barnacle]

This issue has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.

[openclaw-barnacle]

Closing due to inactivity.
If this is still an issue, please retry on the latest OpenClaw release and share updated details.
If you are absolutely sure it still happens on the latest release, open a new issue with fresh steps to reproduce.