fix(images): skip CLI image cache refs

[clawsweeper]

Makes #87501 merge-ready for the ClawSweeper automerge loop.
The edit pass should inspect the live PR diff, review comments, and failing checks; rebase if needed; keep the contributor branch credited; and stop only when validation is green or an external blocker is proven.

ClawSweeper 🐠 replacement reef notes:

• Cluster: automerge-openclaw-openclaw-87501
• Source PRs: fix(images): skip CLI image cache refs #87501
• Credit: Source PR: fix(images): skip CLI image cache refs #87501
• Validation: pnpm check:changed
• Replacement reason: ClawSweeper could not update the source PR branch directly, so it opened a writable replacement PR instead.
• Automerge requested by: @Takhoffman

• Repair fallback: GitHub rejected the repair branch push because it updates workflow files and the ClawSweeper app token does not have workflows permission

Co-author credit kept:

• @TurboTheTurtle: Co-authored-by: Andy Ye 35905412+TurboTheTurtle@users.noreply.github.com

fish notes: model gpt-5.5, reasoning high; reviewed against c166f8b.

[clawsweeper]

Codex review: passed. Reviewed May 28, 2026, 12:34 PM ET / 16:34 UTC.

Summary
The branch filters OpenClaw CLI image-cache paths out of prompt image-reference detection and adds parser/helper regression tests.

PR surface: Source +17, Tests +65. Total +82 across 3 files.

Reproducibility: yes. source-level reproduction is high confidence: current main still scans replayed prompt text through detectImageReferences and has no cache-path exclusion before loadPromptRefImages can reload stale image paths.

Review metrics: none identified.

Merge readiness
Overall: 🦞 diamond lobster
Proof: 🦞 diamond lobster
Patch quality: 🦞 diamond lobster
Result: ready for maintainer review.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Risk before merge

• [P1] No live Discord replay was run in this read-only review; confidence rests on the shared detector/helper path, source PR terminal proof, and focused regression coverage.

Maintainer options:

1. Decide the mitigation before merge
   Land the narrow shared detector/helper fix for sticky image reattachment while keeping the separate group-chat selective-reply policy work outside this PR.
2. Pause or close
   Do not merge this PR until maintainers decide whether the risk is worth taking.

Next step before merge

• [P2] No repair lane is needed; review findings are empty and this should proceed through exact-head checks plus the existing automerge or maintainer gate.

Security
Cleared: The diff only narrows local prompt image-reference parsing and adds tests; it does not change dependencies, workflows, secrets handling, permissions, or package execution paths.

Review details

Best possible solution:

Land the narrow shared detector/helper fix for sticky image reattachment while keeping the separate group-chat selective-reply policy work outside this PR.

Do we have a high-confidence way to reproduce the issue?

Yes, source-level reproduction is high confidence: current main still scans replayed prompt text through detectImageReferences and has no cache-path exclusion before loadPromptRefImages can reload stale image paths.

Is this the best way to solve the issue?

Yes. Filtering OpenClaw-written cache paths in the shared detector is the narrowest maintainable fix, and the tests preserve normal similarly named user directories.

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 0d66710539ca.

Label changes

Label justifications:

• P1: The PR targets a regression that can repeatedly reattach stale images into active agent turns, affecting real channel workflows.
• rating: 🦞 diamond lobster: Overall readiness is 🦞 diamond lobster; proof is 🦞 diamond lobster and patch quality is 🦞 diamond lobster.
• status: 🚀 automerge armed: This PR is in ClawSweeper's automerge lane. Sufficient (terminal): The linked source PR includes terminal after-fix proof showing stale cache paths ignored, cache-only load count at zero, and focused tests passing; the replacement PR preserves that proof context.
• proof: sufficient: Contributor real behavior proof is sufficient. The linked source PR includes terminal after-fix proof showing stale cache paths ignored, cache-only load count at zero, and focused tests passing; the replacement PR preserves that proof context.

Evidence reviewed

PR surface:

Source +17, Tests +65. Total +82 across 3 files.

View PR surface stats

Area	Files	Added	Removed	Net
Source	1	19	2	+17
Tests	2	65	0	+65
Docs	0	0	0	0
Config	0	0	0	0
Generated	0	0	0	0
Other	0	0	0	0
Total	3	84	2	+82

What I checked:

• AGENTS.md policy read: Root AGENTS.md and the scoped agents runner AGENTS.md files were read; the scoped guidance supports focused helper-level tests for this agent/runner surface. (AGENTS.md:1, 0d66710539ca)
• Current main reload path: On current main, CLI prompt image payload preparation falls back to loadPromptRefImages when no fresh images are supplied, so replayed prompt text is scanned for image paths. (src/agents/cli-runner/helpers.ts:336, 0d66710539ca)
• Current main lacks cache-path exclusion: Current main detects image-looking paths and file URLs without excluding .openclaw-cli-images or OpenClaw temporary image-cache roots. (src/agents/embedded-agent-runner/run/images.ts:302, 0d66710539ca)
• PR source change is targeted: The PR adds isOpenClawCliImageCachePath and skips matching path/file-URL refs before recording them as prompt image references. (src/agents/embedded-agent-runner/run/images.ts:102, dfe0408df85a)
• Regression tests cover parser and helper behavior: The PR adds tests for transcript cache paths, temporary cache paths, file URLs, similarly named user directories, and the CLI helper not calling loadImageFromRef for a cache-only prompt. (src/agents/embedded-agent-runner/run/images.test.ts:82, dfe0408df85a)
• Source PR proof: The linked source PR reports terminal after-fix proof where stale cache paths were not detected, cacheOnlyLoadCount was 0, and focused regression tests passed. (f0aa2297a2cc)

Likely related people:

• steipete: Recent GitHub history for CLI runner helpers and tests shows repeated work on the CLI image/backend helper surface, including CLI image workspace handling and runner seams. (role: recent area contributor; confidence: high; commits: 32a38f125e9d, d0562a873fad, 48ae97633303; files: src/agents/cli-runner/helpers.ts, src/agents/cli-runner.helpers.test.ts)
• tyler6204: Prior merged work restored inbound image embedding for CLI-routed turns, which is directly adjacent to this sticky image reattachment path. (role: adjacent owner; confidence: medium; commits: 00e932a83cdd; files: src/agents/cli-runner/helpers.ts, src/agents/cli-runner.helpers.test.ts)
• vincentkoc: Recent agent/CLI history includes adjacent hardening and type-surface work on the touched agent paths. (role: recent area contributor; confidence: medium; commits: 3b84884793e8, 74e7b8d47b18, 64f28906de09; files: src/agents/embedded-agent-runner/run/images.ts, src/agents/cli-runner/helpers.ts)

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[clawsweeper]

🦞✅
ClawSweeper merged this PR after the passing review.

Source: clawsweeper[bot]
Feedback: structured ClawSweeper verdict: pass (sha=dfe0408df85a4963f04f43facf09e17fcef81706)
Merge status: merged by ClawSweeper automerge
Merged at: 2026-05-28T16:34:55Z
Merge commit: 51e240123b8c

What merged:

• The branch filters OpenClaw CLI image-cache paths out of prompt image-reference detection and adds parser/helper regression tests.
• PR surface: Source +17, Tests +65. Total +82 across 3 files.
• Reproducibility: yes. source-level reproduction is high confidence: current main still scans replayed prompt ... ectImageReferences and has no cache-path exclusion before loadPromptRefImages can reload stale image paths.

Automerge notes:

• PR branch already contained follow-up commit before automerge: fix(images): skip CLI image cache refs
• PR branch already contained follow-up commit before automerge: fix(clawsweeper): address review for automerge-openclaw-openclaw-8750…

The automerge loop is complete.

Automerge progress:

• 2026-05-28 15:57:15 UTC validation plan (passed) in 20s Run: https://github.com/openclaw/clawsweeper/actions/runs/26585569018 node scripts/run-vitest.mjs src/agents/embedded-agent-runner/run/images.test.ts src/agents/cli-runner.helpers.test.ts; pnpm check:changed; pnpm lint; pnpm chec...

• 2026-05-28 15:57:30 UTC Codex write preflight (passed) in 34s Run: https://github.com/openclaw/clawsweeper/actions/runs/26585569018 danger-full-access

• 2026-05-28 15:58:29 UTC Codex edit 1 12f18a201441 (running) in 1m 34s Run: https://github.com/openclaw/clawsweeper/actions/runs/26585569018 reconciling latest base

• 2026-05-28 16:18:35 UTC repair completed dfe0408df85a (no branch change) in 21m 39s Run: https://github.com/openclaw/clawsweeper/actions/runs/26585569018 Codex fix worker timed out after 1200000ms

• 2026-05-28 16:18:34 UTC review queued dfe0408df85a (after no-op repair)

• 2026-05-28 16:18:37 UTC repair finished (blocked) in 21m 41s Run: https://github.com/openclaw/clawsweeper/actions/runs/26585569018 Codex fix worker timed out after 1200000ms

• 2026-05-28 16:34:39 UTC review passed dfe0408df85a (structured ClawSweeper verdict: pass (sha=dfe0408df85a4963f04f43facf09e17fcef81...)

• 2026-05-28 16:24:48 UTC repair queued dfe0408df85a (autonomous) Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477

• 2026-05-28 16:27:45 UTC repair started (running) in 1s Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477 automerge-openclaw-openclaw-87501

• 2026-05-28 16:28:04 UTC validation plan (passed) in 19s Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477 node scripts/run-vitest.mjs src/agents/embedded-agent-runner/run/images.test.ts src/agents/cli-runner.helpers.test.ts; pnpm check:changed; pnpm lint; pnpm chec...

• 2026-05-28 16:28:17 UTC Codex write preflight (passed) in 32s Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477 danger-full-access

• 2026-05-28 16:36:45 UTC Codex edit 1 2b924d745b8c (complete) in 9m Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477 exit 0

• 2026-05-28 16:29:09 UTC review queued dfe0408df85a (queued)

• 2026-05-28 16:34:58 UTC merged dfe0408df85a (merged by ClawSweeper automerge)

• 2026-05-28 16:36:47 UTC validation and review 1 6d9eded98cc4 (running) in 9m 2s Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477 repair

• 2026-05-28 17:06:47 UTC repair failed (failed) in 39m 2s Run: https://github.com/openclaw/clawsweeper/actions/runs/26587582477 Codex validation-fix worker timed out after 30000ms

[clawsweeper]

ClawSweeper PR egg: ✨ hatched 🥚 common Frosted Review Wisp. Rarity: 🥚 common. Trait: sniffs out flaky tests.

Details

Share on X: post this hatch
Copy: My PR egg hatched a 🥚 common Frosted Review Wisp in ClawSweeper.
Hatchability:

• Merged PRs are hatchable.
• Open PRs are hatchable when they are status: 👀 ready for maintainer look, status: 🚀 automerge armed, or labeled clawsweeper:automerge.
• Closed unmerged PRs are hatchable only when one of those hatchable labels is still present in the durable record.

About:

• Eggs appear after real-behavior proof passes. They are collectible flavor only.
• Review momentum changes the shell state: follow-up work warms it, re-review makes it wobble, and a clean final review lets it hatch.
• The hatch is seeded from this repository and PR number, so the same PR keeps the same creature; the reviewed head SHA can only change safe visual details.
• Rarity is just collectible sparkle: 🥚 common, 🌱 uncommon, 💎 rare, ✨ glimmer, and 🌈 legendary.

[clawsweeper]

🦞👀
ClawSweeper picked this up.

Command router queued. I will update this comment with the next step.