v2026.5.12-beta.5 plugin update disables lossless-claw after @beta fallback and leaves stale contextEngine config

[BKF-Gitty]

Summary

During a 2026.5.12-beta.4 -> 2026.5.12-beta.5 update on one macOS npm/pnpm install, configured external plugin lossless-claw had no @beta release, so the updater fell back to @latest. The beta 5 plugin scanner then blocked the installed tree for dangerous patterns in transitive dependency/example files, disabled the plugin, and left stale config references including the configured contextEngine slot.

Core OpenClaw remained healthy after update, but the host lost its configured context engine and now falls back to legacy with stale plugin config warnings.

Environment

• OpenClaw before: 2026.5.12-beta.4
• OpenClaw after: 2026.5.12-beta.5 (2cdd69a)
• Install mode/root: npm/pnpm global install under Homebrew Node prefix
• OS: macOS
• Update command:

openclaw update --channel beta --tag 2026.5.12-beta.5 --yes --timeout 1800

Hostnames, usernames, local paths, account IDs, and tokens are intentionally omitted.

What happened

The update completed the core package upgrade, but plugin update output included:

Could not check lossless-claw before update; falling back to installer path: Package not found on npm: @martian-engineering/lossless-claw@beta.
Plugin "lossless-claw" has no beta npm release for @martian-engineering/lossless-claw@beta; using @martian-engineering/lossless-claw@latest instead. Core update can still complete.
WARNING: Plugin "lossless-claw" installed tree contains dangerous code patterns: Shell command execution detected (child_process); Dynamic code execution detected; Environment variable access combined with network send.
Disabled "lossless-claw" after plugin update failure; OpenClaw will continue without it.

After update, config and doctor output showed stale references:

Config warnings:
- plugins.entries.lossless-claw: plugin not found: lossless-claw (stale config entry ignored; remove it from plugins config)
- plugins.allow: plugin not found: lossless-claw (stale config entry ignored; remove it from plugins config)

Doctor:
- plugins.slots.contextEngine: slot references missing plugin "lossless-claw"

Runtime logs also confirmed fallback away from the configured context engine:

[context-engine] Context engine "lossless-claw" is not registered; falling back to default engine "legacy".

openclaw plugins doctor printed the stale config warnings, but still ended with:

No plugin issues detected.

Expected behavior

If a channel-specific plugin install falls back to @latest and the security scanner blocks the resulting tree, the updater should avoid leaving the host in a half-disabled/stale-config state. Possible acceptable outcomes:

• Keep or restore the previously working plugin version if it was already installed and passed prior validation.
• Disable the plugin but atomically clean or rewrite dependent config such as plugins.allow, plugins.entries, and plugins.slots.contextEngine.
• Leave config untouched but emit a high-signal remediation summary that clearly says the context engine was disabled and what command/operator action is needed next.

The scanner may be correct to block this install; the bug is the confusing post-update state and stale context-engine configuration.

Actual post-update state

Healthy:

• openclaw --version: OpenClaw 2026.5.12-beta.5 (2cdd69a)
• openclaw gateway status --deep: LaunchAgent loaded, gateway running, CLI and gateway both beta 5, connectivity probe OK
• Direct agent check through openai/gpt-5.5 / agentHarnessId: codex passed with fallbackUsed: false

Regressed/degraded:

• lossless-claw absent from selected plugins after update
• stale plugins.entries.lossless-claw
• stale plugins.allow reference
• plugins.slots.contextEngine still points at missing plugin
• runtime falls back to legacy context engine
• plugins doctor still says No plugin issues detected after printing related warnings

Likely source areas

• src/plugins/update.ts
• src/plugins/install-security-scan.runtime.ts
• src/plugins/config-activation-shared.ts
• src/plugins/effective-plugin-ids.ts
• src/plugins/slots.ts
• context engine registration/fallback path

Not treated as failures

• Existing task-audit warnings on the host predated beta 5.
• Optional model-pricing warnings did not block model routing.
• I did not force reinstall the plugin or run openclaw doctor --fix, because either would mutate the operator state beyond update/audit verification.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Summary
Keep open. Current main still has a source-backed path where post-update plugin failure marks the plugin entry disabled without clearing dependent allow/slot state, while the separate stale-config repair path only runs under doctor/fix-style remediation.

Reproducibility: yes. A focused source repro can configure a plugin in plugins.allow, plugins.entries, and plugins.slots.contextEngine, mock the npm update to fail under disableOnFailure: true, and observe that current main only disables the entry while dependent config remains.

Next step
This is a concrete updater/config bug with clear source proof, likely files, and focused regression tests; no new config surface is needed.

Review details

Best possible solution:

Preserve the security scanner block, then make the post-update failure path either reset affected plugin slots through the existing stale-config repair semantics or emit a slot-specific remediation summary that points to openclaw doctor --fix.

Do we have a high-confidence way to reproduce the issue?

Yes. A focused source repro can configure a plugin in plugins.allow, plugins.entries, and plugins.slots.contextEngine, mock the npm update to fail under disableOnFailure: true, and observe that current main only disables the entry while dependent config remains.

Is this the best way to solve the issue?

Yes, fixing this in the update/doctor boundary is the narrow maintainable direction. The scanner should keep blocking unsafe installs; the repair should address the stale context-engine state or make the existing doctor repair guidance explicit enough for the operator.

Acceptance criteria:

• pnpm test src/plugins/update.test.ts src/cli/update-cli/update-command.test.ts src/commands/doctor/shared/stale-plugin-config.test.ts
• pnpm check:changed

What I checked:

• Plugin update failure disablement is narrow: When disableOnFailure is set, update failure only calls disablePluginConfigEntry, which preserves the existing entry and sets entries[pluginId].enabled = false; it does not reset plugins.allow, plugins.installs, or plugins.slots.contextEngine. (src/plugins/update.ts:763, 433bafa55bc7)
• Core update invokes the failure-disabling plugin update path: The post-core update flow calls updateNpmInstalledPlugins with skipDisabledPlugins: true, syncOfficialPluginInstalls: true, and disableOnFailure: true, matching the reported update path that can disable a failed plugin update while the core update continues. (src/cli/update-cli/update-command.ts:1284, 433bafa55bc7)
• Existing test locks in entry-only disablement: The current regression test for disabled update failures asserts that the entry is set to enabled: false and the install record is preserved, but it does not cover selected slots or allowlist cleanup. (src/plugins/update.test.ts:1681, 433bafa55bc7)
• Context-engine slot selection is independent config state: Effective plugin resolution treats plugins.slots.contextEngine as an explicit plugin id, but skips it when that plugin entry is disabled; this supports the reported state where the selected engine no longer loads while the slot can remain configured. (src/plugins/effective-plugin-ids.ts:124, 433bafa55bc7)
• Doctor/fix has stale context-engine slot repair, but update does not call it: The stale plugin config helper detects plugins.slots.contextEngine references to missing plugins and can reset them to legacy, which shows there is an existing repair concept separate from update failure handling. (src/commands/doctor/shared/stale-plugin-config.ts:160, 433bafa55bc7)
• Plugins doctor can still print no plugin issues: openclaw plugins doctor only checks plugin errors, error diagnostics, shadow diagnostics, and compatibility notices before printing No plugin issues detected; it does not include the stale plugin config scan used by the broader doctor repair path. (src/cli/plugins-cli.ts:359, 433bafa55bc7)

Likely related people:

• Peter Steinberger: Visible local blame for the central update failure handler, stale plugin config helper, and plugins doctor command points to commit 488a3d8e52438c2d4586785d4819cd5e9ead7bc6 authored by Peter Steinberger. (role: recent area contributor; confidence: medium; commits: 488a3d8e5243; files: src/plugins/update.ts, src/commands/doctor/shared/stale-plugin-config.ts, src/cli/plugins-cli.ts)

Remaining risk / open question:

• A live macOS npm beta update with the external lossless-claw package was not replayed; the current-main failure is source-reproducible from the updater and config paths.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 433bafa55bc7.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/25819126709
• Updated: 2026-05-13T18:52:03.875Z

[BKF-Gitty]

Additional beta 8 data point from a sanitized macOS npm update audit on 2026-05-14.

One host that previously had lossless-claw blocked/removed still reports stale plugin config after updating to 2026.5.12-beta.8 (097daf9):

Config warnings:
- plugins.entries.lossless-claw: plugin not found: lossless-claw (stale config entry ignored; remove it from plugins config)
- plugins.allow: plugin not found: lossless-claw (stale config entry ignored; remove it from plugins config)

openclaw plugins doctor prints those warnings, then still ends with:

No plugin issues detected.

That host otherwise remained healthy: beta 8 CLI/gateway matched, gateway connectivity was OK, and a direct agent check succeeded with openai/gpt-5.5, agentHarnessId: codex, and fallbackUsed: false.

On two other beta 8 hosts where lossless-claw remains installed, the runtime deprecation warning is now attributed to the plugin/source path, which is a nice improvement. The remaining operator-facing gap is that stale plugin config can still coexist with a final No plugin issues detected line, making it easy to miss that remediation is still needed.