doctor --fix populates plugins.allow with only non-bundled plugins, blocking all 65 bundled plugins under bundledDiscovery: compat

[slideshow-dingo]

Bug Description

openclaw doctor --fix populates plugins.allow with only non-bundled plugins, which blocks all 65 bundled stock plugins from loading when plugins.bundledDiscovery is "compat".

Reproduction Steps

1. Start with plugins.allow: [] and plugins.bundledDiscovery: "compat" (the v2026.5.27 default after fresh install)
2. Install a non-bundled plugin (e.g., openclaw-honcho) and configure bundled providers (e.g., minimax, ollama, opencode-go) and a search plugin (e.g., tavily)
3. Run openclaw doctor — it shows:

   ◇  Doctor changes preview
   minimax auth configured, enabled automatically.
   opencode-go/deepseek-v4-pro model configured, enabled automatically.
   tavily web search provider selected, enabled automatically.
   openclaw-honcho tool configured, enabled automatically.
   ollama plugin config present, added to plugin allowlist.
   

4. Run openclaw doctor --fix

Observed Behavior

• --fix writes plugins.allow: ["minimax", "opencode-go", "tavily", "openclaw-honcho", "ollama"]
• On gateway restart: 65 loaded → 5 loaded, 27 disabled → 87 disabled
• All bundled provider plugins, tool plugins, and utility plugins are blocked
• openclaw doctor still shows the same 5 "Doctor changes preview" items again (plugins.allow was reverted by config auto-restore)
• Gateway startup log: (2 plugins: openclaw-honcho, tavily; 2.1s) instead of the expected 65

Expected Behavior

Either:

1. doctor --fix should NOT populate plugins.allow when bundledDiscovery: "compat" is active, since compat mode means bundled plugins auto-load regardless of the allowlist
2. OR bundledDiscovery: "compat" should actually exempt bundled plugins from the allowlist gate at plugin load time (not just for provider discovery/inventory), so that a non-empty plugins.allow doesn't block bundled plugins
3. OR doctor --fix should add ALL detected bundled plugins to the allowlist, not just the 5 non-bundled/config-entry ones

Impact

• Severity: Config-breaking on doctor --fix (the recommended maintenance command)
• Recovery: Manually revert plugins.allow to [] and restart gateway
• Loop: Running --fix again repeats the same breakage because the 5 items still show as pending in doctor
• v2026.5.27 regression: This was partially addressed in plugins.allow semantics undocumented — unexpectedly gates bundled channel plugins #56717 for bundled channel plugins, but the fix did not extend to bundled provider/tool/utility plugins. The doctor --fix auto-population behavior makes this much more likely to hit.

Version

OpenClaw 2026.5.27 (27ae826)
Node v26.0.0
Linux (Ubuntu 24.04 VM)
Install method: Homebrew (linuxbrew)

Related Issues

• plugins.allow semantics undocumented — unexpectedly gates bundled channel plugins #56717 — Same class of bug, fixed only for bundled channel plugins
• doctor --fix fails atomically when config has multiple validation errors, preventing fixes from persisting #77802 — doctor --fix atomicity failure (exacerbates this — if --fix fails partway through, config is left in broken state)
• [Feature]: Honor plugins.allow on runtime provider paths (currently force-loaded) — propose plugins.bundledMode opt-in #75575 — Feature request for plugins.bundledMode / bundledDiscovery
• Gateway CPU pegged at ~99% with plugins.bundledDiscovery: "compat" — manifest-registry hot loop on idle #79806 — CPU pegged with bundledDiscovery: "compat" (performance concern with compat mode)

Workaround

After running doctor --fix, manually revert plugins.allow to []:

python3 -c "
import json
with open('$HOME/.openclaw/openclaw.json') as f:
    c = json.load(f)
c['plugins']['allow'] = []
with open('$HOME/.openclaw/openclaw.json', 'w') as f:
    json.dump(c, f, indent=2)
"
systemctl --user restart openclaw-gateway

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed May 28, 2026, 11:41 PM ET / 03:41 UTC.

Summary
Keep open: current main still has a source-reproducible path where doctor auto-enable can turn an empty plugins.allow into a restrictive allowlist, while bundled plugin activation still treats non-empty allowlists as exclusive outside specific compat/channel paths.

Reproducibility: yes. from source inspection: doctor applies applyPluginAutoEnable, which appends candidates to an empty array allowlist, and plugin activation disables omitted plugins once the allowlist becomes non-empty. I did not execute the live doctor --fix flow in this read-only checkout.

Next step
This is a narrow, source-traceable doctor/config regression with clear files and focused regression tests, so it is a good repair-lane candidate.

Review details

Best possible solution:

Keep the issue open and fix doctor/auto-enable so plugins.allow: [] remains nonrestrictive under compat, with regression coverage that preserves explicit restrictive allowlist semantics.

Do we have a high-confidence way to reproduce the issue?

Yes from source inspection: doctor applies applyPluginAutoEnable, which appends candidates to an empty array allowlist, and plugin activation disables omitted plugins once the allowlist becomes non-empty. I did not execute the live doctor --fix flow in this read-only checkout.

Is this the best way to solve the issue?

Yes, the best fix is a narrow doctor/auto-enable repair that does not convert an empty allowlist into a restrictive one, rather than adding a new config surface or changing all plugin trust semantics.

AGENTS.md: found and applied where relevant.

Remaining risk / open question:

• A fix needs to preserve intentional restrictive plugins.allow behavior for users who already populated the allowlist.
• I did not run a live doctor/gateway repro in this read-only review; the keep-open decision is based on source-trace proof.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 2209faef405f.

Label changes

Label changes:

• add P1: A recommended maintenance command can make configured provider/tool plugins unavailable on restart for current-release users.
• add impact:auth-provider: The reported failure blocks bundled provider plugins and can break configured model/provider routing after doctor repair.
• add impact:other: The issue is also a concrete plugin inventory/config repair regression outside the more specific owned impact labels.
• add issue-rating: 🦞 diamond lobster: Current issue advisory state selects this label.
• add clawsweeper:source-repro: Current issue advisory state selects this label.
• add clawsweeper:queueable-fix: Current issue advisory state selects this label.
• add clawsweeper:fix-shape-clear: Current issue advisory state selects this label.

Label justifications:

• P1: A recommended maintenance command can make configured provider/tool plugins unavailable on restart for current-release users.
• impact:auth-provider: The reported failure blocks bundled provider plugins and can break configured model/provider routing after doctor repair.
• impact:other: The issue is also a concrete plugin inventory/config repair regression outside the more specific owned impact labels.

Evidence reviewed

Acceptance criteria:

• node scripts/run-vitest.mjs src/config/plugin-auto-enable.core.test.ts src/config/plugin-auto-enable.providers.test.ts src/commands/doctor-config-flow.test.ts src/plugins/effective-plugin-ids.test.ts
• If the implementation changes gateway plugin loading beyond doctor auto-enable, add and run the narrow affected src/plugins/* tests with node scripts/run-vitest.mjs.

What I checked:

• Issue reproduction and impact: The report describes openclaw doctor --fix on v2026.5.27 writing a five-entry plugins.allow from an initially empty allowlist, followed by a gateway restart where the loaded plugin count drops from 65 to 5 and omitted bundled plugins are disabled.
• Doctor applies auto-enable mutations before config write: doctor-config-flow calls applyPluginAutoEnable({ config: candidate, env: process.env }) and applies the returned mutation when changes exist, so auto-enable allowlist changes are part of doctor repair. (src/commands/doctor-config-flow.ts:169, 2209faef405f)
• Auto-enable appends candidates to any array allowlist: The auto-enable loop computes allowMissing whenever plugins.allow is an array and then calls ensurePluginAllowlisted, so an empty array is converted into a non-empty restrictive list for configured providers/tools. (src/config/plugin-auto-enable.shared.ts:1043, 2209faef405f)
• Allowlist append helper preserves the empty-array footgun: ensurePluginAllowlisted returns unchanged only when plugins.allow is missing or already contains the plugin; for plugins.allow: [] it writes a new array with the plugin id. (src/config/plugins-allowlist.ts:11, 2209faef405f)
• Non-empty allowlists disable omitted plugins: The activation decision returns not-in-allowlist whenever normalized allow has entries and the plugin is not explicitly allowed, which matches the reported post-fix plugin drop. (src/plugins/config-activation-shared.ts:226, 2209faef405f)
• Current docs/schema only exempt configured bundled chat channels: The schema help describes plugins.allow as allowing only listed plugins to load, with a specific exception for configured bundled chat channels, not a general compat-mode bypass for all bundled providers/tools/utilities. (src/config/schema.help.ts:1346, 2209faef405f)

Likely related people:

• Peter Steinberger: Git history and blame identify Peter on the current plugin auto-enable, bundled compat, and allowlist materialization code; commit dc008f956c3d8fb0a086575005b27e7b6afc5971 specifically changed configured-plugin allowlist preservation. (role: recent area contributor; confidence: medium; commits: dc008f956c3d, 185e62a9aed7, 2209faef405f; files: src/config/plugin-auto-enable.shared.ts, src/config/plugins-allowlist.ts, src/plugins/bundled-compat.ts)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.