fix(gateway): resolve message actions against runtime config

[funmerlin]

Summary

• Problem: Discord message.action lookup/admin actions can still receive source config containing SecretRef-backed named account tokens and fail with configured_unavailable, even while the running gateway has a resolved runtime config.
• Solution: add a config-only active secrets runtime accessor and use it only for gateway message.action dispatch when it matches the request context source config.
• What changed: message.action now late-binds its dispatch config through selectApplicableRuntimeConfig(...); tests cover resolved-config use, stale-snapshot fallback, auto-enable config-shape matching, and that ordinary send requests do not read the active secrets runtime snapshot.
• What did NOT change (scope boundary): no Discord startup behavior, no channel discovery tolerance, no shared send/poll hot-path snapshot lookup, no changelog entry.

Change Type (select all)

• Bug fix
• Feature
• Refactor required for the fix
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Closes [Bug]: Discord channel-info fails for SecretRef-backed named account while send works #84530
• Related fix(gateway): use resolved runtime config for message actions #81477
• Related Tool subsystem fails to resolve SecretRefs for Discord token (message tool) #51263
• Related Discord message tool: SecretRef token fails to resolve on REST read calls (message.read action) #48419
• Related fix(secrets): scope message SecretRef resolution and harden doctor/status paths #48728
• Related [Bug] @openclaw/discord 2026.5.2 channel startup crashes on SecretRef-backed token (env:default:DISCORD_BOT_TOKEN unresolved) #76371
• Related fix(secretrefs): resolve external channel contracts #76449
• Related fix(secretrefs): resolve external channel contracts in dist/ sidecars #77421
• Related BUG: Embedded channel reply runs crash on SecretRef-backed Telegram/Discord credentials #75433
• Related fix(channels): tolerate unresolved SecretRef tokens during Discord/Telegram channel-actions discovery #75445
• Related fix(discord): report unresolved token refs at startup #82009
• This PR fixes a bug or regression

Motivation

• A live OpenClaw install reproduced message action=channel-info failing for a SecretRef-backed named Discord account with Discord bot token configured for account "drclaw" is unavailable; resolve SecretRefs against the active runtime snapshot before using this account.
• In the same runtime, inbound Discord delivery and explicit message action=send worked, so the issue is narrower than Discord startup and narrower than ordinary send.
• fix(gateway): use resolved runtime config for message actions #81477 targets the same broad failure class, but review feedback correctly called out that cloning the full active secrets snapshot in the shared send/poll/action channel-resolution path is too broad. This PR uses a config-only accessor and limits the lookup to gateway message.action.

Real behavior proof (required for external PRs)

• Behavior or issue addressed: SecretRef-backed Discord named account can fail in message.action lookup/admin dispatch when the request context config is still source-shaped, while a resolved runtime config exists.

• Real environment tested: Local OpenClaw checkout on macOS 15.7.7, Node v25.6.0, OpenClaw 2026.5.19, live Discord account drclaw with token configured via env SecretRef.

• Exact steps or command run after this patch:

  node --import tsx tmp-live-discord-message-action-proof.ts

  The temporary local proof harness prepared and activated a resolved secrets runtime snapshot, loaded the Discord channel plugin, then invoked the patched gateway sendHandlers["message.action"] with request-context source config and action: "channel-info" for account drclaw. The harness was removed after collecting the redacted output.

• Evidence after fix:

  Terminal output from the live Discord run, with channel id and token redacted:

  node --import tsx tmp-live-discord-message-action-proof.ts
  {
    "ok": true,
    "channel": "discord",
    "action": "channel-info",
    "accountId": "drclaw",
    "sourceTokenShape": "SecretRef(env)",
    "resolvedTokenShape": "resolved-string-redacted",
    "payloadKeys": [
      "channel",
      "ok"
    ],
    "resultKeys": [],
    "returnedChannel": {
      "id": "<redacted>",
      "name": "🤖the-bridge"
    },
    "meta": {
      "channel": "discord"
    }
  }
  

• Observed result after fix: the patched gateway message.action handler returned ok: true for live Discord channel-info using a SecretRef-backed named account. The output shows source config still had SecretRef(env), the active runtime config supplied a redacted resolved string token, and the returned Discord channel id was redacted.

• What was not tested: replacing the currently running OpenClaw gateway with this branch. I did not restart or replace the running OpenClaw gateway from inside an OpenClaw-hosted session.

• Before evidence: [Bug]: Discord channel-info fails for SecretRef-backed named account while send works #84530 includes the live failing action and sanitized surrounding evidence.

Root Cause (if applicable)

• Root cause: at least one gateway message.action dispatch path can operate on source-shaped config while the active secrets runtime already has the resolved config needed by SecretRef-backed named accounts.
• Missing detection / guardrail: gateway message-action coverage did not assert that action dispatch receives the resolved runtime config, and did not assert that stale runtime snapshots are ignored.
• Contributing context (if known): prior SecretRef fixes covered startup, external channel contracts, discovery tolerance, and older message-tool paths, but did not lock this gateway message-action dispatch shape.

Regression Test Plan (if applicable)

• Coverage level that should have caught this:
  • Unit test
  • Seam / integration test
  • End-to-end test
  • Existing coverage already sufficient
• Target test or file: src/gateway/server-methods/send.test.ts
• Scenario the test should lock in: gateway message.action receives resolved runtime config for a matching active runtime snapshot, keeps source config for stale snapshots, preserves runtime matching when plugin auto-enable changes the request config shape, and ordinary send does not use the runtime accessor.
• Why this is the smallest reliable guardrail: the bug is in gateway dispatch config selection before the channel plugin action uses Discord credentials.
• Existing test that already covers this (if any): none observed.
• If no new test is added, why not: N/A

User-visible / Behavior Changes

SecretRef-backed Discord message lookup/admin actions such as channel-info can use the active resolved runtime config when available.

Diagram (if applicable)

Before:
message.action -> request cfg with SecretRef -> Discord action -> configured_unavailable

After:
message.action -> matching active config-only runtime snapshot -> Discord action -> resolved account token path

Security Impact (required)

• New permissions/capabilities? (Yes/No): No
• Secrets/tokens handling changed? (Yes/No): Yes
• New/changed network calls? (Yes/No): No
• Command/tool execution surface changed? (Yes/No): No
• Data access scope changed? (Yes/No): No
• If any Yes, explain risk + mitigation: gateway message.action may now use the already-active resolved runtime config instead of source-shaped SecretRefs. The new accessor returns only cloned config and sourceConfig, not auth stores or web-tool metadata, and selectApplicableRuntimeConfig(...) prevents using a stale runtime snapshot for mismatched source config.

Repro + Verification

Environment

• OS: macOS 15.7.7
• Runtime/container: local OpenClaw checkout, Node v25.6.0
• Model/provider: NOT_ENOUGH_INFO
• Integration/channel (if any): Discord
• Relevant config (redacted): Discord named account token configured through an env SecretRef.

Steps

1. Configure a Discord named account with a SecretRef-backed token.
2. Run a gateway message.action lookup/admin action such as channel-info.
3. Observe the request fail if dispatch receives source-shaped config.
4. With this patch, dispatch resolves through the matching active config-only runtime snapshot before invoking the channel action.

Expected

• Discord lookup/admin message actions use resolved runtime account config when the active snapshot matches the request source config.

Actual

• Before patch: live repro in [Bug]: Discord channel-info fails for SecretRef-backed named account while send works #84530 failed with configured_unavailable.
• After patch: focused gateway test shows the action dispatch config is the resolved runtime config for matching snapshots, and a redacted live Discord channel-info run through the patched gateway message.action handler returned ok: true. The latest branch also covers auto-enable config-shape matching before dispatch.

Evidence

• Failing test/log before + passing after
• Trace/log snippets
• Screenshot/recording
• Perf numbers (if relevant)

Human Verification (required)

What you personally verified (not just CI), and how:

• Verified scenarios:
  • Merged current origin/main into the PR branch cleanly.
  • Re-read [Bug]: Discord channel-info fails for SecretRef-backed named account while send works #84530 and confirmed the fix still targets the named-account Discord channel-info SecretRef/runtime-config boundary, not ordinary send/startup behavior.
  • Reviewed the changelog and relevant main-branch changes since the PR was opened; no landed change appears to fix this exact message.action SecretRef dispatch boundary.
  • message.action dispatch receives active resolved runtime config for matching source config.
  • message.action dispatch falls back to the post-auto-enable request config when the active runtime snapshot source is stale.
  • ordinary send does not call the active secrets runtime config accessor.
• Edge cases checked:
  • active runtime snapshot absent.
  • active runtime snapshot source mismatch.
  • no send hot-path runtime snapshot lookup.
  • auto-enabled message.action config shape still matches the pre-auto-enable source snapshot and dispatches with the auto-enabled resolved runtime config.
• Commands run after the 2026-05-23 follow-up patch:
  • node scripts/run-vitest.mjs src/gateway/server-methods/send.test.ts — passed, 108 tests.
  • pnpm exec oxfmt --check --threads=1 src/gateway/server-methods/send.ts src/gateway/server-methods/send.test.ts — passed.
  • pnpm exec oxlint --tsconfig config/tsconfig/oxlint.core.json src/gateway/server-methods/send.ts src/gateway/server-methods/send.test.ts — passed.
  • pnpm tsgo:core — passed.
  • pnpm tsgo:core:test — passed.
  • git diff --check — passed.
• What you did not verify:
  • replacing the currently running gateway with this branch. The live Discord proof used the patched handler in a local process, not a gateway restart.
  • node scripts/crabbox-wrapper.mjs run --shell -- "pnpm check:changed"; the crabbox wrapper failed before running repo checks because the crabbox binary failed its basic sanity check.
  • full local pnpm check:changed; the local wrapper stayed alive for several minutes after dependency convergence with no child checker process visible, so it was stopped and replaced with the focused commands listed above.

Review Conversations

• I replied to or resolved every bot review conversation I addressed in this PR.
• I left unresolved only the conversations that still need reviewer or maintainer judgment.

If a bot review conversation is addressed by this PR, resolve that conversation yourself. Do not leave bot review conversation cleanup for maintainers.

Compatibility / Migration

• Backward compatible? (Yes/No): Yes
• Config/env changes? (Yes/No): No
• Migration needed? (Yes/No): No
• If yes, exact upgrade steps: N/A

Risks and Mitigations

• Risk: using a stale active runtime snapshot could route actions through outdated credentials.
  • Mitigation: use selectApplicableRuntimeConfig(...) with both active config and sourceConfig; mismatched source config falls back to the request context config.
• Risk: reintroducing fix(gateway): use resolved runtime config for message actions #81477's hot-path performance concern.
  • Mitigation: this PR does not call the accessor from shared channel resolution or ordinary send; it adds a config-only accessor and uses it only for gateway message.action.

AI-assisted: yes. I used an AI coding agent to implement and verify this change.

[clawsweeper]

Codex review: needs maintainer review before merge. Reviewed May 29, 2026, 8:05 PM ET / 00:05 UTC.

Summary
The branch updates gateway message.action dispatch to select a matching active runtime config for SecretRef-backed Discord action handling and routes non-send Discord credential actions through the gateway, with focused regression tests.

PR surface: Source +43, Tests +275. Total +318 across 5 files.

Reproducibility: yes. Current main source shows message.action dispatch uses the request-context config after plugin auto-enable, and the linked bug report plus PR body provide a live Discord channel-info failure/fix path for a SecretRef-backed named account.

Review metrics: 2 noteworthy metrics.

• Runtime Snapshot Access Scope: 1 gateway action path changed; ordinary send remains at 0 runtime snapshot reads. This matters because the prior broad approach was rejected for touching shared send/poll hot paths, while this branch keeps the lookup scoped to message.action.
• Discord Execution Mode Policy: 7 actions remain local; all other Discord message actions route through gateway. This summarizes the compatibility-sensitive behavior shift that reviewers should consciously accept before merge.

Merge readiness
Overall: 🐚 platinum hermit
Proof: 🦞 diamond lobster
Patch quality: 🐚 platinum hermit
Result: ready for maintainer review.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Rank-up moves:

• none.

Risk before merge

• [P1] Merging intentionally changes gateway message.action credential selection so matching source-shaped requests can execute against the active resolved runtime config; maintainers should explicitly accept that auth-provider compatibility behavior.
• [P1] The Discord execution-mode policy moves more non-send actions through the gateway; maintainers should be comfortable that actions needing client-local media, component, or payload semantics remain in the local allowlist.
• [P1] The real behavior proof is useful handler-level live Discord terminal output, but it is not a restarted managed-gateway proof.

Maintainer options:

1. Accept Scoped Runtime Config Selection (recommended)
   Maintainers can accept that matching message.action requests use the active resolved runtime config and merge once branch protection is satisfied.
2. Ask For Managed Gateway Proof
   Maintainers can require a restarted managed-gateway or Crabbox proof if handler-level live Discord output is not enough for this credential path.
3. Rework The Boundary
   If maintainers do not want gateway message.action to choose runtime config directly, pause this branch and move the behavior into a narrower plugin/runtime contract.

Next step before merge

• No automated repair is needed; the remaining action is maintainer acceptance of the scoped credential-selection behavior and normal merge gating.

Security
Cleared: The diff changes credential selection for gateway message actions but adds no dependencies, workflows, permissions, secret logging, or new command execution surface.

Review details

Best possible solution:

Land the focused action-dispatch runtime-config selection after maintainer acceptance of the scoped auth-provider behavior and normal branch-protection checks, keeping shared send/poll hot paths unchanged.

Do we have a high-confidence way to reproduce the issue?

Yes. Current main source shows message.action dispatch uses the request-context config after plugin auto-enable, and the linked bug report plus PR body provide a live Discord channel-info failure/fix path for a SecretRef-backed named account.

Is this the best way to solve the issue?

Yes, with maintainer acceptance. The branch is narrower than #81477 because it compares the pre-auto-enable source snapshot, late-binds only gateway message.action, preserves stale-snapshot fallback, and tests that ordinary send does not use the snapshot accessor.

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against ecc5601b2a4c.

Label changes

Label justifications:

• P2: This is a normal-priority gateway/auth bug fix for SecretRef-backed Discord message actions with limited affected surface.
• merge-risk: 🚨 compatibility: The PR changes which config source existing gateway message actions use at runtime, which can affect upgraded SecretRef-backed setups.
• merge-risk: 🚨 auth-provider: The changed path directly controls credential resolution for SecretRef-backed Discord accounts.
• rating: 🐚 platinum hermit: Overall readiness is 🐚 platinum hermit; proof is 🦞 diamond lobster and patch quality is 🐚 platinum hermit.
• status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (terminal): The PR body includes redacted terminal output from a live Discord channel-info run through the patched handler showing SecretRef source config, a resolved runtime token shape, and ok: true; it does not prove a managed gateway restart.
• proof: sufficient: Contributor real behavior proof is sufficient. The PR body includes redacted terminal output from a live Discord channel-info run through the patched handler showing SecretRef source config, a resolved runtime token shape, and ok: true; it does not prove a managed gateway restart.

Evidence reviewed

PR surface:

Source +43, Tests +275. Total +318 across 5 files.

View PR surface stats

Area	Files	Added	Removed	Net
Source	2	49	6	+43
Tests	3	285	10	+275
Docs	0	0	0	0
Config	0	0	0	0
Generated	0	0	0	0
Other	0	0	0	0
Total	5	334	16	+318

What I checked:

• Root and scoped policy read: Read full root AGENTS.md plus extensions/AGENTS.md, src/gateway/AGENTS.md, and src/gateway/server-methods/AGENTS.md; the root policy treats auth/provider routing, config loading, fallback behavior, and gateway/plugin surfaces as compatibility-sensitive review areas. (AGENTS.md:1, ecc5601b2a4c)
• Current main dispatch behavior: On current main, resolveRequestedChannel applies gateway plugin auto-enable to the request context config and message.action passes that cfg directly to dispatchChannelMessageAction, so Discord's own runtime-config selection may see a post-auto-enable shape instead of the canonical source snapshot. (src/gateway/server-methods/send.ts:172, ecc5601b2a4c)
• Runtime snapshot contract: Current main's selectApplicableRuntimeConfig selects the active runtime config only when the input config matches the stored source snapshot, which explains why comparing the pre-auto-enable source config matters for this PR. (src/config/runtime-snapshot.ts:209, ecc5601b2a4c)
• PR runtime-config selection: The PR adds resolveMessageActionRuntimeConfig, reads the canonical runtime and source snapshots, compares against sourceCfg, and re-applies gateway plugin config only when the active runtime config is applicable. (src/gateway/server-methods/send.ts:220, c253628ef18d)
• PR regression coverage: The PR adds focused tests for matching runtime config selection, pre-auto-enable source matching, stale runtime fallback to the post-auto-enable request config, and no runtime snapshot reads for ordinary send requests. (src/gateway/server-methods/send.test.ts:318, c253628ef18d)
• Linked issue proof: The linked bug report describes live Discord channel-info failing for a SecretRef-backed named account while inbound Discord and explicit sends worked in the same runtime, matching the branch's focused fix boundary.

Likely related people:

• joshavant: Assigned to the PR, authored the latest two branch commits that switch the fix to canonical runtime snapshots and Discord gateway routing, and authored related merged SecretRef/runtime work in the same cluster. (role: likely follow-up owner; confidence: high; commits: 5671e6d49684, c253628ef18d, b1f8172867f3; files: src/gateway/server-methods/send.ts, src/gateway/server-methods/send.test.ts, extensions/discord/src/channel-actions.ts)
• steipete: Recent current-main history for runtime snapshots, gateway message-action protocol, and Discord action/auth hardening repeatedly points to this handle as an adjacent code-path owner. (role: recent area contributor; confidence: high; commits: ad155fbbd7b3, 94a9d3f0bedb, 9ed1b0213421; files: src/gateway/server-methods/send.ts, src/config/runtime-snapshot.ts, extensions/discord/src/channel-actions.ts)
• amknight: Introduced the existing Discord resolveExecutionMode pattern that routed read/search through gateway execution mode, which this PR expands to additional credential-backed actions. (role: adjacent owner; confidence: medium; commits: e4ff7c162044; files: extensions/discord/src/channel-actions.ts)

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[clawsweeper]

ClawSweeper PR egg

🔥 Warming up: real-behavior proof passed; findings, security review, or rank-up moves are still in progress.

Hatch command

Comment @clawsweeper hatch when this PR is hatchable.

Hatchability rules:

• Merged PRs are hatchable.
• Open PRs are hatchable when they are status: 👀 ready for maintainer look, status: 🚀 automerge armed, or labeled clawsweeper:automerge.
• Closed unmerged PRs are hatchable only when one of those hatchable labels is still present in the durable record.

What is this egg doing here?

• Eggs appear after the PR passes real-behavior proof. It is here for vibes, not verdicts: it does not change labels, ratings, merge decisions, or automation.
• The shell reacts to review momentum: open follow-up work warms it up, re-review makes it wobble, and a clean final review lets it hatch.
• Hatchability usually comes from sufficient real-behavior proof, no blocking P0/P1/P2 findings, no security attention needed, and clean correctness. A merged PR is already final, so merge makes the egg hatchable independently.
• The hatch is seeded from this repository and PR number, so the same PR keeps the same creature; the reviewed head SHA can only change safe visual details.
• Rarity is just collectible sparkle: 🥚 common, 🌱 uncommon, 💎 rare, ✨ glimmer, and 🌈 legendary.

[funmerlin]

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26158647442
• Updated: 2026-05-20T11:19:02.749Z

[funmerlin]

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26160874628
• Updated: 2026-05-20T12:04:11.678Z

[funmerlin]

Addressed the P2 stale-snapshot fallback finding in 08e4e8855e7 after merging current origin/main into this branch.

What changed:

• resolveMessageActionRuntimeConfig(...) now only uses the active resolved runtime config when the active runtime source matches the pre-auto-enable request source config.
• When the active runtime snapshot is stale or mismatched, message.action falls back to the post-auto-enable request config (params.cfg) instead of the pre-auto-enable source config.
• The stale-snapshot regression now makes pre/post auto-enable configs distinguishable and asserts dispatch receives the post-auto-enable request config.

Intent/source check:

• Re-read [Bug]: Discord channel-info fails for SecretRef-backed named account while send works #84530: this remains about Discord lookup/admin message.action paths such as channel-info for SecretRef-backed named accounts, while ordinary send/startup may already work.
• Reviewed the changelog and relevant main-branch changes since this PR was opened. I did not find a landed fix for this exact message.action SecretRef dispatch boundary, so this PR still appears relevant.

Verification after the follow-up patch:

• node scripts/run-vitest.mjs src/gateway/server-methods/send.test.ts — passed, 108 tests.
• pnpm exec oxfmt --check --threads=1 src/gateway/server-methods/send.ts src/gateway/server-methods/send.test.ts — passed.
• pnpm exec oxlint --tsconfig config/tsconfig/oxlint.core.json src/gateway/server-methods/send.ts src/gateway/server-methods/send.test.ts — passed.
• pnpm tsgo:core — passed.
• pnpm tsgo:core:test — passed.
• git diff --check — passed.

Acceptance caveat:

• node scripts/crabbox-wrapper.mjs run --shell -- "pnpm check:changed" did not reach repo checks because the local crabbox binary failed its basic sanity check.
• Direct local pnpm check:changed stayed alive for several minutes after dependency convergence with no child checker process visible, so I stopped it and used the focused verification above instead.

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Failed
• Detail: The targeted re-review did not finish cleanly. Check the workflow run for details.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26333267640
• Updated: 2026-05-23T13:05:40.527Z

[KatTate]

@clawsweeper re-review

Requesting fresh review on current head 08e4e8855e75.

The prior ClawSweeper re-review did not produce a code verdict because the workflow failed on GitHub auth:

gh: Bad credentials (HTTP 401)

The previous P2 stale-snapshot fallback finding has been addressed in src/gateway/server-methods/send.ts.

Proof:

• message.action now uses the active resolved runtime config only when the active runtime source matches the pre-auto-enable request source.
• If the active runtime snapshot is stale or mismatched, it preserves the post-auto-enable request config.
• Regression coverage exists in src/gateway/server-methods/send.test.ts.
• Targeted local validation passed: node scripts/run-vitest.mjs src/gateway/server-methods/send.test.ts
• Result: 108 tests passed.

The remaining red CI job checks-node-core-runtime-media-ui failed during checkout, not during test execution:

fatal: could not read Username for 'https://github.com': No such device or address

Please re-review the current head and sync the durable review/labels if the finding is resolved.

[funmerlin]

Rebased this PR onto current origin/main and force-pushed the adapted branch. Current head: 8a0cc541919.

Review request follow-up:

• Re-checked the prior ClawSweeper P2 stale-snapshot fallback finding against the rebased code.
• resolveMessageActionRuntimeConfig(...) now uses the active resolved runtime config only when the active runtime source matches the pre-auto-enable request source.
• If the active runtime snapshot is stale/mismatched, message.action falls back to the post-auto-enable request config, preserving existing plugin auto-enable behavior.
• Regression coverage remains in src/gateway/server-methods/send.test.ts for stale-runtime plus auto-enable fallback.

Local validation on the rebased head:

• node scripts/run-vitest.mjs src/gateway/server-methods/send.test.ts --reporter=dot — passed, 112 tests.
• node_modules/.bin/oxfmt --check --threads=1 src/gateway/server-methods/send.ts src/gateway/server-methods/send.test.ts src/secrets/runtime-state.ts — passed.
• pnpm exec oxlint --tsconfig config/tsconfig/oxlint.core.json src/gateway/server-methods/send.ts src/gateway/server-methods/send.test.ts src/secrets/runtime-state.ts — passed.
• git diff --check — passed.
• pnpm build — passed.
• pnpm check:changed — passed.

Caveat: node scripts/crabbox-wrapper.mjs run --shell -- "pnpm check:changed" still failed before repo checks because the local crabbox binary failed its basic --version/--help sanity checks. Direct pnpm check:changed completed successfully.

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26646835338
• Updated: 2026-05-29T15:49:56.902Z