Fix skill config requirements, spawn allowlists, chat stop lifecycle, and systemd status

[HemantSudarshan]

Summary

• Fixes Skill config requirements with object format show "[object Object]" instead of proper values #79488 by normalizing object-shaped metadata.openclaw.requires.config entries through their path field so skill status/info no longer prints [object Object] or blocks valid documented requirements.
• Fixes [Bug]: SPAWN_ALLOWLIST environment variable is ignored, preventing agent spawning #79490 by honoring OPENCLAW_SPAWN_ALLOWLIST / SPAWN_ALLOWLIST as fallback subagent target allowlists when config does not provide one.
• Fixes [Bug]: "Stop" button has no effect after the agent has reached maximum context length #79525 by mapping backend agent run ids back to originating WebChat client runs so context-overflow/error completions clear the active run and unblock Stop / queued /new lifecycle state.
• Fixes openclaw status reports gateway service as failed while systemd user unit is active #79515 by preferring systemctl is-active when systemctl show reports a stale failed state for the Gateway user service.
• Rebased onto current upstream/main so the production dependency audit includes the fast-uri pin already present on main.

Real behavior proof

• Behavior or issue addressed: Four user-facing regressions: skill config requirements rendered object metadata as [object Object], subagent spawn env allowlists were ignored, WebChat run state could stay active after backend error/context-overflow completion, and openclaw status could report a systemd Gateway service failed even when systemctl is-active reported active.
• Real environment tested: Local Windows checkout at 705723b9d0 after rebasing onto upstream/main; Node v22.15.0 for repo test wrappers; WSL Ubuntu has systemd installed but no user bus and no Linux Node, so it could not provide honest live user-systemd proof on this host.
• Exact steps or command run after this patch: Ran the touched skill/subagent/chat/frontmatter tests in one grouped repo invocation, ran the focused systemd stale-state regression, ran production dependency audit, and ran the changed gate from the rebased branch.
• Evidence after fix: Copied terminal output summary from the final local run:

OPENCLAW_VITEST_MAX_WORKERS=1 pnpm test src/agents/skills.buildworkspaceskillstatus.test.ts src/agents/openclaw-tools.subagents.sessions-spawn.allowlist.test.ts src/agents/subagent-target-policy.test.ts src/agents/tools/agents-list-tool.test.ts src/shared/frontmatter.test.ts src/gateway/server-methods/chat.directive-tags.test.ts -- --reporter=verbose
[test] passed 3 Vitest shards in 84.38s
unit-fast: 17 passed
agents: 30 passed
gateway: 74 passed

OPENCLAW_VITEST_MAX_WORKERS=1 pnpm test src/daemon/systemd.test.ts -t "prefers is-active" -- --reporter=verbose
✓ systemd runtime parsing > prefers is-active when show reports a stale failed state
Test Files 1 passed (1); Tests 1 passed | 60 skipped (61)

node scripts/pre-commit/pnpm-audit-prod.mjs --audit-level=high
No high or higher advisories found for production dependencies.

• Observed result after fix: Object-shaped skill requirements normalize correctly, SPAWN_ALLOWLIST fallback allowlists are respected, chat final/error lifecycle maps the backend run id to the client run, and the systemd parser prefers active is-active output over stale failed show state. The dependency-audit failure from the old branch base is gone after rebase.
• What was not tested: A live Linux user-systemd openclaw status run could not be executed on this Windows host because WSL reports systemctl --user bus unavailable and has no Linux Node/pnpm. The full src/daemon/systemd.test.ts file also has unrelated Windows-only failures around process.geteuid and quoted Windows EnvironmentFile paths; the new stale-state regression passed in isolation.

Verification

• pnpm docs:list
• pnpm exec oxfmt --check --threads=1 CHANGELOG.md docs/gateway/config-tools.md docs/tools/creating-skills.md docs/tools/skills.md docs/tools/subagents.md src/agents/acp-spawn.ts src/agents/openclaw-tools.subagents.sessions-spawn.allowlist.test.ts src/agents/skills.buildworkspaceskillstatus.test.ts src/agents/subagent-spawn.ts src/agents/subagent-target-policy.test.ts src/agents/subagent-target-policy.ts src/agents/tools/agents-list-tool.test.ts src/agents/tools/agents-list-tool.ts src/daemon/systemd.test.ts src/daemon/systemd.ts src/gateway/server-methods/chat.directive-tags.test.ts src/gateway/server-methods/chat.ts src/shared/frontmatter.test.ts src/shared/frontmatter.ts
• OPENCLAW_VITEST_MAX_WORKERS=1 pnpm test src/agents/skills.buildworkspaceskillstatus.test.ts src/agents/openclaw-tools.subagents.sessions-spawn.allowlist.test.ts src/agents/subagent-target-policy.test.ts src/agents/tools/agents-list-tool.test.ts src/shared/frontmatter.test.ts src/gateway/server-methods/chat.directive-tags.test.ts -- --reporter=verbose
• OPENCLAW_VITEST_MAX_WORKERS=1 pnpm test src/daemon/systemd.test.ts -t "prefers is-active" -- --reporter=verbose
• node scripts/pre-commit/pnpm-audit-prod.mjs --audit-level=high
• pnpm check:changed --base upstream/main
• git diff --check upstream/main..HEAD

Note: this shell's default Node is v22.15.0, so pnpm emitted the repo engine warning (>=22.16.0 required); the commands above completed with that warning.

[clawsweeper]

Codex review: needs real behavior proof before merge. Reviewed June 2, 2026, 1:07 AM ET / 05:07 UTC.

Summary
Review failed before ClawSweeper could summarize the requested change.

PR surface: Source +79, Tests +158, Docs +7. Total +244 across 19 files.

Reproducibility: unclear. The review failed before ClawSweeper could establish a reproduction path.

Review metrics: none identified.

Merge readiness
Overall: 🌊 off-meta tidepool
Proof: 🌊 off-meta tidepool
Patch quality: 🌊 off-meta tidepool
Result: rating does not apply to this item.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Risk before merge

• [P1] No close action taken because the review did not complete.

Maintainer options:

1. Decide the mitigation before merge
   Retry the Codex review after fixing the execution failure.
2. Pause or close
   Do not merge this PR until maintainers decide whether the risk is worth taking.

Next step before merge

• [P1] Review did not complete, so no work-lane recommendation was made.

Review details

Best possible solution:

Retry the Codex review after fixing the execution failure.

Do we have a high-confidence way to reproduce the issue?

Unclear. The review failed before ClawSweeper could establish a reproduction path.

Is this the best way to solve the issue?

Unclear. Retry the review first so ClawSweeper can evaluate the actual issue and fix direction.

AGENTS.md: unclear because the file could not be read completely.

Codex review notes: model gpt-5.5, reasoning high; reviewed against ebf20241bd17.

Label changes

Label justifications:

• rating: 🌊 off-meta tidepool: Overall readiness is 🌊 off-meta tidepool; proof is 🌊 off-meta tidepool and patch quality is 🌊 off-meta tidepool.

Evidence reviewed

PR surface:

Source +79, Tests +158, Docs +7. Total +244 across 19 files.

View PR surface stats

Area	Files	Added	Removed	Net
Source	7	94	15	+79
Tests	7	160	2	+158
Docs	5	17	10	+7
Config	0	0	0	0
Generated	0	0	0	0
Other	0	0	0	0
Total	19	271	27	+244

What I checked:

• failure reason: codex execution failed.
• codex failure detail: Codex review failed for this PR with exit 1.
• codex stdout: Per-item Codex failure; continuing with the rest of the shard.

Likely related people:

• unknown: Codex failed before it could trace repository history. (role: review did not complete; confidence: low)

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[openclaw-barnacle]

This pull request has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.