fix(whatsapp): clarify inbound group diagnostics

[neeravmakwana]

Summary

• Problem: WhatsApp Web startup said it was listening for personal inbound messages even though the monitor observes DM and group traffic, and the group allowlist drop diagnostic did not tell operators how to route observed-but-unregistered groups.
• Solution: Replace the DM-only startup wording with listener-scope diagnostics that distinguish no group allowlist, wildcard group admission, and explicit configured group counts.
• What changed: Unregistered group drops now name channels.whatsapp.groups, preserve the current sender-authorization warning, and the WhatsApp docs troubleshooting section calls out the observed-before-routing behavior.
• What did NOT change (scope boundary): Runtime admission policy, groupPolicy, groupAllowFrom, allowFrom, mention gating, and session routing controls are unchanged.

Change Type (select all)

• Bug fix
• Feature
• Refactor required for the fix
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Closes Misleading log: Listening for personal WhatsApp inbound messages — group messages received but not routed #83779
• This PR fixes a bug or regression

Motivation

Operators can see group traffic arriving in the WhatsApp Web monitor while OpenClaw intentionally drops groups that are not admitted by channels.whatsapp.groups. The old startup and drop diagnostics made that look like DM-only listening or unexplained message loss.

Real behavior proof (required for external PRs)

• Behavior addressed: WhatsApp inbound diagnostics now describe DM plus group observation/routing accurately, and unregistered group drops explain the required config without changing runtime policy.

• Real environment tested: macOS local OpenClaw source checkout, Node/Vitest test harness for the WhatsApp Web monitor and config group-policy path.

• Exact steps or command run after this patch: node scripts/run-vitest.mjs extensions/whatsapp/src/auto-reply/web-auto-reply-monitor.test.ts src/config/group-policy.test.ts

• Evidence after fix (screenshot, recording, terminal capture, console output, redacted runtime log, linked artifact, or copied live output):

  Listening for WhatsApp inbound messages (DM + all groups; no group allowlist configured).
  Listening for WhatsApp inbound messages (DM + all groups; wildcard configured).
  Listening for WhatsApp inbound messages (DM + 2 configured groups).
  Dropping message from unregistered WhatsApp group 123@g.us. Add the group JID to channels.whatsapp.groups, or add "*" there to admit all groups. Sender authorization still applies.
  

• Observed result after fix: The focused WhatsApp/config regression run passed with 2 test files and 42 tests, including assertions for the startup diagnostic variants and the unregistered-group drop message.

• What was not tested: A live credentialed WhatsApp session was not run; the change is limited to diagnostics/docs and preserves the existing tested routing policy.

• Before evidence (optional but encouraged):

  Listening for personal WhatsApp inbound messages.
  Skipping group message 123@g.us (not in allowlist)
  

Root Cause (if applicable)

• Root cause: The listener startup log was written as if the WhatsApp Web monitor only listened for personal DMs, while later group admission logic can observe group traffic and drop it before session routing.
• Missing detection / guardrail: Existing group-policy tests asserted the drop behavior but did not assert the operator-facing diagnostics.
• Contributing context (if known): channels.whatsapp.groups is both the per-group config map and group membership allowlist; groupAllowFrom only handles sender authorization inside admitted groups.

Regression Test Plan (if applicable)

• Coverage level that should have caught this:
  • Unit test
  • Seam / integration test
  • End-to-end test
  • Existing coverage already sufficient
• Target test or file: extensions/whatsapp/src/auto-reply/web-auto-reply-monitor.test.ts
• Scenario the test should lock in: Startup diagnostics do not imply DM-only listening, and unregistered group drops explain channels.whatsapp.groups while preserving the block.
• Why this is the smallest reliable guardrail: The change is diagnostic-only on top of existing group-gating behavior.
• Existing test that already covers this (if any): src/config/group-policy.test.ts covers the group allowlist policy itself.
• If no new test is added, why not: N/A

User-visible / Behavior Changes

WhatsApp logs and docs are clearer for group messages that are observed by the monitor but dropped before routing because the group is not registered in channels.whatsapp.groups. No runtime routing, authorization, or security behavior changes.

Diagram (if applicable)

Before:
WhatsApp Web monitor observes group -> group not in groups allowlist -> vague skip log

After:
WhatsApp Web monitor observes group -> group not in groups allowlist -> drop log names channels.whatsapp.groups and notes sender authorization still applies

Security Impact (required)

• New permissions/capabilities? No
• Secrets/tokens handling changed? No
• New/changed network calls? No
• Command/tool execution surface changed? No
• Data access scope changed? No
• If any Yes, explain risk + mitigation: N/A

Security/runtime controls unchanged: channels.whatsapp.groups still gates group membership admission; groupPolicy and groupAllowFrom still gate sender authorization; mention gating still applies after group admission.

Repro + Verification

Environment

• OS: macOS
• Runtime/container: local Node/Vitest via repo test wrapper
• Model/provider: N/A
• Integration/channel (if any): WhatsApp
• Relevant config (redacted): tests cover no groups, wildcard groups["*"], and explicit group allowlist entries

Steps

1. Compare previous diagnostics from origin/main with the new WhatsApp listener/drop diagnostic strings.
2. Run the focused WhatsApp monitor and group-policy tests.
3. Run docs/list, whitespace, and changed checks.

Expected

• Startup log describes WhatsApp inbound scope without implying DM-only listening.
• Group allowlist drops identify channels.whatsapp.groups and keep sender-authorization expectations explicit.
• Existing group blocking behavior remains unchanged.

Actual

• Expected diagnostics are asserted in tests.
• Focused tests and changed checks pass.

Evidence

• Failing test/log before + passing after
• Trace/log snippets
• Screenshot/recording
• Perf numbers (if relevant)

Verification run:

git diff --check
pnpm docs:list
node scripts/run-vitest.mjs extensions/whatsapp/src/auto-reply/web-auto-reply-monitor.test.ts src/config/group-policy.test.ts
pnpm check:changed

Human Verification (required)

• Verified scenarios: startup log text for no group allowlist, wildcard group admission, explicit group count; unregistered group drop message; current group-policy allowlist behavior.
• Edge cases checked: no groups, groups["*"], multiple explicit groups, unregistered group blocked with observable diagnostic.
• What you did not verify: live WhatsApp credentials, QR login, or a real phone/device session.

Review Conversations

• I replied to or resolved every bot review conversation I addressed in this PR.
• I left unresolved only the conversations that still need reviewer or maintainer judgment.

Compatibility / Migration

• Backward compatible? Yes
• Config/env changes? No
• Migration needed? No
• If yes, exact upgrade steps: N/A

Risks and Mitigations

• Risk: Operators could interpret wildcard admission as bypassing all group controls.
  • Mitigation: The drop diagnostic and docs state that sender authorization still applies through groupPolicy and groupAllowFrom.

Out of scope

• Changing WhatsApp group routing or admission behavior.
• Auto-registering observed groups.
• Running a live credentialed WhatsApp E2E lane.

Made with Cursor

[clawsweeper]

Codex review: passed.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
The PR updates WhatsApp Web inbound startup/drop diagnostics, adds a small listener-log helper and tests, and documents group allowlist troubleshooting.

Reproducibility: yes. Source inspection on current main shows the DM-only startup log and vague group-drop diagnostic while the existing group policy path observes and gates group messages before routing.

PR rating
Overall: 🐚 platinum hermit
Proof: 🐚 platinum hermit
Patch quality: 🐚 platinum hermit
Summary: Good normal PR: proof is overridden/sufficient, the patch is focused and policy-aligned, and the only current blocker is merge state rather than code correctness.

Rank-up moves:

• Resolve the dirty merge state against current main, then let exact-head CI/automerge run again.

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

PR egg
✨ Hatched: 💎 rare Brave Test Hopper

        /\     /\            
      _/  \___/  \_          
     /  ( o   o )  \         
    |      \_/      |        
    |   /\  ===  /\ |        
     \_/  \_____/  \_/       
        _/|_| |_|\_          
       /__| | | |__\         
          ' ' ' '            
         /_/     \_\         
       `-----------'         
 *===================*       

Rarity: 💎 rare.
Trait: polishes edge cases.
Share on X: post this hatch
Copy: My PR egg hatched a 💎 rare Brave Test Hopper in ClawSweeper.

What is this egg doing here?

• Eggs appear after the PR passes real-behavior proof. It is here for vibes, not verdicts: it does not change labels, ratings, merge decisions, or automation.
• The shell reacts to review momentum: open follow-up work warms it up, re-review makes it wobble, and a clean final review lets it hatch.
• How to hatch it: reach status: 👀 ready for maintainer look or status: 🚀 automerge armed; that usually means sufficient real-behavior proof, no blocking P0/P1/P2 findings, no security attention needed, and clean correctness.
• The hatch is seeded from this repository and PR number, so the same PR keeps the same creature; the reviewed head SHA can only change safe visual details.
• Rarity is just collectible sparkle: 🥚 common, 🌱 uncommon, 💎 rare, ✨ glimmer, and 🌈 legendary.

Real behavior proof
Override: A maintainer applied proof: override for this PR.

Risk before merge
Why this matters: - Live GitHub metadata reports a dirty merge state, so conflicts or a rebase/update must be handled before the opted-in automerge path can land the exact head.

Maintainer options:

1. Decide the mitigation before merge
   Resolve the dirty merge state, then land the focused diagnostics/docs/test update through exact-head CI while preserving the existing WhatsApp routing and sender-authorization contracts.
2. Pause or close
   Do not merge this PR until maintainers decide whether the risk is worth taking.

Next step before merge
No code repair lane is needed, but the live PR API reports a dirty merge state that needs maintainer or contributor conflict resolution before automerge can proceed.

Security
Cleared: The diff only changes WhatsApp diagnostic text, docs, and tests, and adds no dependency, permission, secret, network, or execution-surface change.

Review details

Best possible solution:

Resolve the dirty merge state, then land the focused diagnostics/docs/test update through exact-head CI while preserving the existing WhatsApp routing and sender-authorization contracts.

Do we have a high-confidence way to reproduce the issue?

Yes. Source inspection on current main shows the DM-only startup log and vague group-drop diagnostic while the existing group policy path observes and gates group messages before routing.

Is this the best way to solve the issue?

Yes. The PR uses the existing resolved WhatsApp inbound policy as the source of truth for diagnostic wording and adds focused tests/docs without changing routing behavior.

Label justifications:

• P3: This is a low-risk WhatsApp diagnostics and docs improvement with no runtime policy change.

What I checked:

• Current main startup diagnostic is misleading: Current main still logs Listening for personal WhatsApp inbound messages. even though the monitor path also observes group messages before policy gating. (extensions/whatsapp/src/auto-reply/monitor.ts:564, e9989f3a92e5)
• Current main group-drop diagnostic is vague: The group gating path drops unregistered groups with the old not in allowlist message and no channels.whatsapp.groups guidance. (extensions/whatsapp/src/auto-reply/monitor/group-gating.ts:116, e9989f3a92e5)
• Existing policy contract supports the PR shape: Current group policy resolution already distinguishes disabled groups, explicit/wildcard group maps, and the sender-filter bypass when groupAllowFrom is configured. (src/config/group-policy.ts:385, e9989f3a92e5)
• PR diff uses resolved WhatsApp policy facts: The branch calls resolveWhatsAppInboundPolicy at monitor startup and formats the diagnostic from resolved groups, groupPolicy, and sender allowlist state instead of duplicating routing policy. (extensions/whatsapp/src/auto-reply/monitor.ts:543, d012a009e74a)
• Focused tests cover the operator-visible diagnostics: The PR adds listener diagnostic assertions for open, disabled, empty allowlist, sender-filter, wildcard, and explicit group states, plus an assertion for the clarified unregistered-group drop log. (extensions/whatsapp/src/auto-reply/web-auto-reply-monitor.test.ts:118, d012a009e74a)
• Real behavior proof is present and overridden: The PR has proof: override and proof: sufficient; the author also posted sanitized installed-build terminal output for the updated startup/drop strings and unchanged shouldProcess=false group drop result. (d012a009e74a)

Likely related people:

• Takhoffman: Current-main blame on the affected startup and group-gating lines points to Tak Hoffman in the shallow checkout, and Takhoffman also requested automerge on this PR. (role: recent area contributor and reviewer; confidence: medium; commits: c92ebd6a4104; files: extensions/whatsapp/src/auto-reply/monitor.ts, extensions/whatsapp/src/auto-reply/monitor/group-gating.ts)
• Marcus Castro: Commit 458a526... introduced the resolved WhatsApp inbound policy and rewired the monitor/group-gating paths that this PR now uses for diagnostics. (role: feature-history owner; confidence: high; commits: 458a52610a4d; files: extensions/whatsapp/src/inbound-policy.ts, extensions/whatsapp/src/auto-reply/monitor.ts, extensions/whatsapp/src/auto-reply/monitor/group-gating.ts)
• Peter Steinberger: git shortlog shows the most commits across the central WhatsApp/docs files sampled for this review, making Peter a useful routing candidate for this surface. (role: frequent area contributor; confidence: medium; commits: 50a2481652b6; files: docs/channels/whatsapp.md, extensions/whatsapp/src/auto-reply/monitor.ts, extensions/whatsapp/src/auto-reply/monitor/group-gating.ts)

Codex review notes: model gpt-5.5, reasoning high; reviewed against e9989f3a92e5.

[neeravmakwana]

Local install real behavior proof

Installed/updated the local wrapper to the current PR branch build:

~/.local/bin/openclaw --version
OpenClaw 2026.5.19 (5774f2a)

Ran a sanitized local behavior probe against the PR branch checkout. No .env values or credentials were printed.

install.version:
  OpenClaw 2026.5.19 (5774f2a) via ~/.local/bin/openclaw
startup.log.no_groups:
  Listening for WhatsApp inbound messages (DM + all groups; no group allowlist configured).
startup.log.wildcard:
  Listening for WhatsApp inbound messages (DM + all groups; wildcard configured).
startup.log.explicit_groups:
  Listening for WhatsApp inbound messages (DM + 2 configured groups).
group_drop.result:
  shouldProcess=false
group_drop.log:
  Dropping message from unregistered WhatsApp group 123@g.us. Add the group JID to channels.whatsapp.groups, or add "*" there to admit all groups. Sender authorization still applies.

This proves the changed diagnostics on the installed local build and confirms the existing runtime control remains unchanged: the unregistered group is not routed.

[neeravmakwana]

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26071115256
• Updated: 2026-05-19T01:52:43.036Z

[neeravmakwana]

Addressed the ClawSweeper finding about policy-state correctness in the startup diagnostic.

What changed:

• formatWhatsAppInboundListeningLog now takes resolved groupPolicy and sender-filter facts instead of deriving scope only from channels.whatsapp.groups.
• The startup log now distinguishes these states:
  • groupPolicy: "disabled" -> groups disabled
  • groupPolicy: "allowlist" with no sender allowlist -> group inbound blocked by empty allowlist
  • sender-filter bypass/admission -> all groups with sender allowlist configured
  • wildcard group admission -> all groups with wildcard configured
  • explicit group allowlist -> configured group count
• monitorWebChannel now builds the startup diagnostic from resolveWhatsAppInboundPolicy(...), so the log follows the same resolved defaults/fallbacks as runtime admission.
• Tests now cover disabled, fail-closed allowlist, sender-filter, wildcard, and explicit-group diagnostic states.

Security/runtime controls unchanged:

• channels.whatsapp.groups still gates group membership admission.
• groupPolicy and groupAllowFrom / allowFrom still gate sender authorization.
• Mention gating and session routing behavior are unchanged.
• No new permissions, secrets handling, network calls, dependencies, or execution surface.

Verification run after the fix:

git diff --check
node scripts/run-vitest.mjs extensions/whatsapp/src/auto-reply/web-auto-reply-monitor.test.ts src/config/group-policy.test.ts
pnpm docs:list
pnpm check:changed
pnpm build

Focused test result:

Test Files  2 passed (2)
Tests       42 passed (42)

Changed check result:

[check:changed] lanes=extensions, extensionTests, docs
Found 0 warnings and 0 errors.
Import cycle check: 0 runtime value cycle(s).

Updated local installed-build proof, sanitized:

~/.local/bin/openclaw --version
OpenClaw 2026.5.19 (d012a00)

install.version:
  OpenClaw 2026.5.19 (d012a00) via ~/.local/bin/openclaw
startup.log.open_no_groups:
  Listening for WhatsApp inbound messages (DM + all groups; no group allowlist configured).
startup.log.disabled:
  Listening for WhatsApp inbound messages (DM + groups disabled by groupPolicy).
startup.log.fail_closed_allowlist:
  Listening for WhatsApp inbound messages (DM + group inbound blocked by empty groupPolicy allowlist).
startup.log.sender_filter:
  Listening for WhatsApp inbound messages (DM + all groups; sender allowlist configured).
startup.log.wildcard:
  Listening for WhatsApp inbound messages (DM + all groups; wildcard configured).
startup.log.explicit_groups:
  Listening for WhatsApp inbound messages (DM + 2 configured groups).
group_drop.result:
  shouldProcess=false
group_drop.log:
  Dropping message from unregistered WhatsApp group 123@g.us. Add the group JID to channels.whatsapp.groups, or add "*" there to admit all groups. Sender authorization still applies.

No .env values or credentials were read or printed. A live credentialed WhatsApp session remains out of scope for this diagnostics-only change.

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Failed
• Detail: The targeted re-review did not finish cleanly. Check the workflow run for details.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26071919356
• Updated: 2026-05-19T02:11:49.129Z

[Takhoffman]

@clawsweeper automerge

[clawsweeper]

🦞🔧
ClawSweeper automerge is enabled.

• Head: d012a009e74a
• Label: clawsweeper:automerge
• Action: repair worker queued. Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013
• Flow: review this head, repair/rebase only if needed, then re-review the exact repaired head before merge.

Draft PRs stay fix-only until GitHub marks them ready for review. Pause with /clawsweeper stop.

Automerge progress:

• 2026-05-19 02:27:49 UTC review queued d012a009e74a (queued)

• 2026-05-19 02:29:42 UTC repair queued d012a009e74a (autonomous) Run: https://github.com/openclaw/clawsweeper/actions/runs/26072515204

• 2026-05-19 02:32:18 UTC repair started (running) in 1s Run: https://github.com/openclaw/clawsweeper/actions/runs/26072515204 automerge-openclaw-openclaw-83846

• 2026-05-19 02:32:35 UTC validation plan (passed) in 18s Run: https://github.com/openclaw/clawsweeper/actions/runs/26072515204 pnpm check:changed; pnpm lint; pnpm check:test-types

• 2026-05-19 02:32:44 UTC Codex write preflight (passed) in 27s Run: https://github.com/openclaw/clawsweeper/actions/runs/26072515204 danger-full-access

• 2026-05-19 02:34:26 UTC review passed d012a009e74a (structured ClawSweeper verdict: pass (sha=d012a009e74aab96a70976dc46fb544c64a75...)

• 2026-05-19 02:37:49 UTC repair completed (no branch change) in 5m 32s Run: https://github.com/openclaw/clawsweeper/actions/runs/26072515204 command timed out after 300000ms: git fetch origin +refs/pull/83846/head:refs/remotes/clawsweeper/source-pr-83846

• 2026-05-19 02:37:50 UTC repair finished (blocked) in 5m 33s Run: https://github.com/openclaw/clawsweeper/actions/runs/26072515204 command timed out after 300000ms: git fetch origin +refs/pull/83846/head:refs/remotes/clawsweeper/source-pr-83846

• 2026-05-19 03:35:02 UTC repair queued d012a009e74a (autonomous) Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013

• 2026-05-19 03:37:46 UTC repair started (running) in 1s Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013 automerge-openclaw-openclaw-83846

• 2026-05-19 03:38:03 UTC validation plan (passed) in 18s Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013 pnpm check:changed; pnpm lint; pnpm check:test-types

• 2026-05-19 03:38:14 UTC Codex write preflight (passed) in 28s Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013 danger-full-access

• 2026-05-19 03:43:19 UTC Codex edit 1 cbc3c36e4ead (complete) in 5m 33s Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013 exit 0

• 2026-05-19 03:46:14 UTC validation and review 1 0da24e3bbbab (base moved) in 8m 28s Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013 rebased

• 2026-05-19 03:46:52 UTC repair finished 0da24e3bbbab (opened) in 9m 6s Run: https://github.com/openclaw/clawsweeper/actions/runs/26074579013 open_fix_pr

[clawsweeper]

ClawSweeper 🐠 reef update

Thanks for the useful work here. ClawSweeper could not update this branch directly, so the replacement PR is the writable swim lane for the same fix path.

Why replacement: ClawSweeper could not update the source PR branch directly; GitHub did not grant sufficient push rights to the bot for that branch.
Replacement PR: #83969
Why close: this run explicitly closes the superseded source PR after the credited replacement PR is open, so review continues in one place.
This source PR is being closed only under the explicit source-close setting for this ClawSweeper run.
The replacement PR carries the original credit trail forward.
Co-author credit kept:

• @neeravmakwana: Co-authored-by: Neerav Makwana 261249544+neeravmakwana@users.noreply.github.com

fish notes: model gpt-5.5, reasoning high; reviewed against 0da24e3.