Skip to content

fix(feishu): preserve streaming card content#90181

Merged
sliverp merged 2 commits into
openclaw:mainfrom
mushuiyu886:feat/issue-90164-feishu-streaming-card
Jun 4, 2026
Merged

fix(feishu): preserve streaming card content#90181
sliverp merged 2 commits into
openclaw:mainfrom
mushuiyu886:feat/issue-90164-feishu-streaming-card

Conversation

@mushuiyu886

@mushuiyu886 mushuiyu886 commented Jun 4, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Summary

  • Fix Feishu streaming-card updates so CardKit receives cumulative visible markdown instead of suffix-only content.
  • Update Feishu streaming regression tests for throttled, natural-boundary, failed-update, and non-OK retry paths to assert cumulative request bodies.
  • Scope: Feishu streaming CardKit content updates only; no config/default changes and no non-streaming Feishu delivery changes.

Fixes #90164

Real behavior proof

Behavior addressed: Feishu streaming-card update calls must preserve the cumulative reply text in the CardKit content element. Latest origin/main still sends only the suffix when the visible text is already hello and the next streamed snapshot is hello!; the patched PR head sends the cumulative hello! body for the same FeishuStreamingSession.update() path.

Real environment tested: Local Linux detached worktree at latest origin/main (344417c0de19c23ceb68a88c044b473fe1847f8f) and local Linux patched PR head (d87c6c3ed4530664cb4316219a21b2c645785fe7). Both runs imported the real extensions/feishu/src/streaming-card.ts production code and used production fetchWithSsrFGuard against a live local Feishu-compatible HTTP server that implemented the tenant-token and CardKit content update endpoints. The fetch boundary was not mocked; the local HTTP server captured the actual token request and CardKit PUT request bodies.

Exact steps or command run after this patch:

env -C "/home/0668001029/openclaw-worktrees/issue-90164-main-proof" OPENCLAW_REPO_ROOT="/home/0668001029/openclaw-worktrees/issue-90164-main-proof" PROOF_RUN_LABEL="latest-main-344417c0de" HTTP_PROXY="" HTTPS_PROXY="" ALL_PROXY="" NO_PROXY="127.0.0.1,localhost" corepack pnpm@11.2.2 exec tsx "/home/0668001029/openclaw-evidence/openclaw-issue-90164-evidence/feishu-compatible-http-proof.ts" > "/home/0668001029/openclaw-evidence/openclaw-issue-90164-evidence/compatible-http-main-output.txt"

env -C "/home/0668001029/openclaw-worktrees/issue-90164" OPENCLAW_REPO_ROOT="/home/0668001029/openclaw-worktrees/issue-90164" PROOF_RUN_LABEL="patched-head" HTTP_PROXY="" HTTPS_PROXY="" ALL_PROXY="" NO_PROXY="127.0.0.1,localhost" corepack pnpm@11.2.2 exec tsx "/home/0668001029/openclaw-evidence/openclaw-issue-90164-evidence/feishu-compatible-http-proof.ts" > "/home/0668001029/openclaw-evidence/openclaw-issue-90164-evidence/compatible-http-patched-output.txt"

env -C "/home/0668001029/openclaw-worktrees/issue-90164" node scripts/run-vitest.mjs extensions/feishu/src/streaming-card.test.ts extensions/feishu/src/reply-dispatcher.test.ts --reporter=verbose > "/home/0668001029/openclaw-evidence/openclaw-issue-90164-evidence/focused-tests-output.txt"

git -C "/home/0668001029/openclaw-worktrees/issue-90164" diff --check > "/home/0668001029/openclaw-evidence/openclaw-issue-90164-evidence/diff-check-output.txt"

Evidence after fix:

Latest origin/main (344417c0de19c23ceb68a88c044b473fe1847f8f), live local Feishu-compatible HTTP server:
PROOF_RUN_LABEL=latest-main-344417c0de
FETCH_BOUNDARY=production fetchWithSsrFGuard to local Feishu-compatible HTTP server
SERVER_RECEIVED_PATHS=/open-apis/auth/v3/tenant_access_token/internal,/open-apis/cardkit/v1/cards/card_proof/elements/content/content
TOKEN_REQUEST_COUNT=1
CARDKIT_UPDATE_METHOD=PUT
CARDKIT_UPDATE_AUTHORIZATION=Bearer <redacted>
CARDKIT_UPDATE_CONTENT=!
CARDKIT_UPDATE_BODY={"content":"!","sequence":2,"uuid":"s_card_proof_2"}

Patched PR head (d87c6c3ed4530664cb4316219a21b2c645785fe7), same live local Feishu-compatible HTTP server proof:
PROOF_RUN_LABEL=patched-head
FETCH_BOUNDARY=production fetchWithSsrFGuard to local Feishu-compatible HTTP server
SERVER_RECEIVED_PATHS=/open-apis/auth/v3/tenant_access_token/internal,/open-apis/cardkit/v1/cards/card_proof/elements/content/content
TOKEN_REQUEST_COUNT=1
CARDKIT_UPDATE_METHOD=PUT
CARDKIT_UPDATE_AUTHORIZATION=Bearer <redacted>
CARDKIT_UPDATE_CONTENT=hello!
CARDKIT_UPDATE_BODY={"content":"hello!","sequence":2,"uuid":"s_card_proof_2"}

Focused regression suite on patched PR head:
Test Files  2 passed (2)
Tests       94 passed (94)

Whitespace check on patched PR head:
git diff --check produced no output.

Observed result after fix: The same real FeishuStreamingSession.update() path that sent suffix-only content: "!" on latest origin/main now sends cumulative content: "hello!" on the patched head, while still authenticating once and using the CardKit content element PUT endpoint. This preserves the full visible streaming-card text instead of overwriting the element with only the newest chunk.

What was not tested: No live Feishu/Lark tenant or real user chat was used, and no real Feishu credentials were exercised. The proof used a live local Feishu-compatible HTTP server to verify the production HTTP boundary and request payloads without external credentials.

Regression Test Plan

  • extensions/feishu/src/streaming-card.test.ts now asserts cumulative CardKit content bodies for throttled flushes, natural-boundary immediate pushes, failed update retries, and non-OK update retries.
  • extensions/feishu/src/reply-dispatcher.test.ts was run with the streaming-card tests to keep the dispatcher-to-session streaming path covered.
  • Focused command run: env -C "/home/0668001029/openclaw-worktrees/issue-90164" node scripts/run-vitest.mjs extensions/feishu/src/streaming-card.test.ts extensions/feishu/src/reply-dispatcher.test.ts --reporter=verbose.

Root Cause

  • FeishuStreamingSession.update() received cumulative merged streaming text, but converted it back to suffix-only content before calling the CardKit content element update endpoint.
  • CardKit content updates replace the target element content, so sending only the suffix could leave users seeing only the last character or chunk.
  • The fix keeps the existing merge/throttle/retry behavior and changes the CardKit update payload to the cumulative text that the session is already tracking.

@openclaw-barnacle openclaw-barnacle Bot added channel: feishu Channel integration: feishu size: XS proof: supplied External PR includes structured after-fix real behavior proof. labels Jun 4, 2026
@clawsweeper

clawsweeper Bot commented Jun 4, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Codex review: needs maintainer review before merge. Reviewed June 4, 2026, 2:09 AM ET / 06:09 UTC.

Summary
The PR removes Feishu streaming-card suffix extraction so CardKit text updates receive cumulative markdown, and updates streaming-card tests to expect cumulative payloads.

PR surface: Source -14, Tests 0. Total -14 across 2 files.

Reproducibility: yes. A high-confidence source path is FeishuStreamingSession.update() with current/sent text hello and next text hello!: current main sends content: "!", and the PR body supplies before/after compatible-HTTP output for the same path.

Review metrics: none identified.

Merge readiness
Overall: 🦞 diamond lobster
Proof: 🦞 diamond lobster
Patch quality: 🦞 diamond lobster
Result: ready for maintainer review.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Risk before merge

  • [P1] No live Feishu/Lark tenant rendering was exercised; the supplied proof covers the production fetch boundary against a compatible local HTTP server and matches the official full-text API contract, leaving only a small service-side rendering gap.

Maintainer options:

  1. Decide the mitigation before merge
    Land the focused Feishu plugin fix after normal CI and maintainer merge gates, keeping streaming CardKit updates cumulative.
  2. Pause or close
    Do not merge this PR until maintainers decide whether the risk is worth taking.

Next step before merge

  • No ClawSweeper repair lane is needed because the PR is reviewable as-is with sufficient proof and no blocking findings.

Security
Cleared: The diff changes only Feishu streaming-card payload construction and tests, with no credential, dependency, workflow, or supply-chain surface added.

Review details

Best possible solution:

Land the focused Feishu plugin fix after normal CI and maintainer merge gates, keeping streaming CardKit updates cumulative.

Do we have a high-confidence way to reproduce the issue?

Yes. A high-confidence source path is FeishuStreamingSession.update() with current/sent text hello and next text hello!: current main sends content: "!", and the PR body supplies before/after compatible-HTTP output for the same path.

Is this the best way to solve the issue?

Yes. Removing suffix extraction at the FeishuStreamingSession CardKit update boundary is the narrowest maintainable fix because the dispatcher already passes cumulative snapshots and the replacement path remains for non-prefix rewrites.

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against ce0d5117bf04.

Label changes

Label changes:

  • add P1: This fixes a shipped Feishu channel regression that can leave streaming-card users seeing only the newest chunk or character instead of the full reply.
  • add proof: sufficient: Contributor real behavior proof is sufficient. The PR body now includes before/after output from production fetchWithSsrFGuard against a live local Feishu-compatible HTTP server, showing current main sends ! and the patched head sends hello!.
  • add rating: 🦞 diamond lobster: Overall readiness is 🦞 diamond lobster; proof is 🦞 diamond lobster and patch quality is 🦞 diamond lobster.
  • add status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (live_output): The PR body now includes before/after output from production fetchWithSsrFGuard against a live local Feishu-compatible HTTP server, showing current main sends ! and the patched head sends hello!.
  • remove rating: 🦐 gold shrimp: Current PR rating is rating: 🦞 diamond lobster, so this older rating label is no longer current.
  • remove status: 📣 needs proof: Current PR status label is status: 👀 ready for maintainer look.

Label justifications:

  • P1: This fixes a shipped Feishu channel regression that can leave streaming-card users seeing only the newest chunk or character instead of the full reply.
  • rating: 🦞 diamond lobster: Overall readiness is 🦞 diamond lobster; proof is 🦞 diamond lobster and patch quality is 🦞 diamond lobster.
  • status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (live_output): The PR body now includes before/after output from production fetchWithSsrFGuard against a live local Feishu-compatible HTTP server, showing current main sends ! and the patched head sends hello!.
  • proof: sufficient: Contributor real behavior proof is sufficient. The PR body now includes before/after output from production fetchWithSsrFGuard against a live local Feishu-compatible HTTP server, showing current main sends ! and the patched head sends hello!.
Evidence reviewed

PR surface:

Source -14, Tests 0. Total -14 across 2 files.

View PR surface stats
Area Files Added Removed Net
Source 1 3 17 -14
Tests 1 8 8 0
Docs 0 0 0 0
Config 0 0 0 0
Generated 0 0 0 0
Other 0 0 0 0
Total 2 11 25 -14

What I checked:

Likely related people:

  • xzq-xu: Commit 65be9cc introduced Feishu streaming-card support via CardKit API and added the core streaming-card module. (role: introduced behavior; confidence: high; commits: 65be9ccf63f3; files: extensions/feishu/src/streaming-card.ts, extensions/feishu/src/reply-dispatcher.ts)
  • Huaqing.Hao: Commit a5a7239 previously repaired Feishu streaming text preservation and added the mergeStreamingText tests used by this path. (role: prior streaming repair author; confidence: high; commits: a5a7239182d5; files: extensions/feishu/src/streaming-card.ts, extensions/feishu/src/streaming-card.test.ts)
  • rexl2018: Commit 3bf6ed1 hardened streaming merge semantics, final reply dedupe, and routing behavior around the same session and dispatcher boundary. (role: adjacent feature hardening author; confidence: high; commits: 3bf6ed181e03; files: extensions/feishu/src/streaming-card.ts, extensions/feishu/src/reply-dispatcher.ts, extensions/feishu/src/streaming-card.test.ts)
  • Vincent Koc: Recent Feishu runtime and streaming-adjacent commits touched this channel surface, including reasoning preview gating and runtime seam refactors. (role: recent area contributor; confidence: medium; commits: d609f71c9b74, ddd1c77b49ef; files: extensions/feishu/src/reply-dispatcher.ts, extensions/feishu/src/streaming-card.ts)
  • Peter Steinberger: Multiple recent Feishu refactors and the current-main source snapshot touch the same channel/runtime files, making this a likely routing candidate for follow-up review. (role: recent area contributor; confidence: medium; commits: 143ae5a5b070, 35d801a1e54f; files: extensions/feishu/src/reply-dispatcher.ts, extensions/feishu/src/streaming-card.ts)
What the crustacean ranks mean
  • 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
  • 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
  • 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
  • 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
  • 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
  • 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
  • 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works
  • ClawSweeper keeps one durable marker-backed review comment per issue or PR.
  • Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
  • A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
  • PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
  • Maintainers can also comment @clawsweeper review to request a fresh review only.
  • Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
  • Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
  • Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

@clawsweeper clawsweeper Bot added rating: 🦐 gold shrimp Decent PR readiness signal, but merge confidence is limited. status: 📣 needs proof The PR needs real behavior proof before ClawSweeper can clear the contributor ask. labels Jun 4, 2026
@mushuiyu886

mushuiyu886 commented Jun 4, 2026

Copy link
Copy Markdown
Contributor Author

@clawsweeper re-review

@clawsweeper

clawsweeper Bot commented Jun 4, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

@clawsweeper clawsweeper Bot added proof: sufficient ClawSweeper judged the real behavior proof convincing. rating: 🦞 diamond lobster Very strong PR readiness with only minor maintainer review expected. status: 👀 ready for maintainer look ClawSweeper has no concrete contributor-facing blocker left for this PR. P1 High-priority user-facing bug, regression, or broken workflow. and removed rating: 🦐 gold shrimp Decent PR readiness signal, but merge confidence is limited. status: 📣 needs proof The PR needs real behavior proof before ClawSweeper can clear the contributor ask. labels Jun 4, 2026
@sliverp sliverp self-assigned this Jun 4, 2026
@sliverp sliverp force-pushed the feat/issue-90164-feishu-streaming-card branch from d87c6c3 to 22ead4d Compare June 4, 2026 07:57
@sliverp sliverp merged commit 1f1ce8a into openclaw:main Jun 4, 2026
16 checks passed
@openclaw-barnacle openclaw-barnacle Bot removed the proof: sufficient ClawSweeper judged the real behavior proof convincing. label Jun 4, 2026
@sliverp

sliverp commented Jun 4, 2026

Copy link
Copy Markdown
Member

Landed via temp rebase onto main.

  • Gate: skipped per maintainer request
  • Land commit: 22ead4d
  • Merge commit: 1f1ce8a

Thanks @mushuiyu886!

@github-actions github-actions Bot mentioned this pull request Jun 4, 2026
Open
SebTardif pushed a commit to SebTardif/openclaw that referenced this pull request Jun 4, 2026
@mushuiyu886 @sliverp @SebTardif
fix(feishu): preserve streaming card content (openclaw#90181)
1cecf4c 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
SebTardif pushed a commit to SebTardif/openclaw that referenced this pull request Jun 4, 2026
@mushuiyu886 @sliverp @SebTardif
fix(feishu): preserve streaming card content (openclaw#90181)
8e8bd35 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
SebTardif pushed a commit to SebTardif/openclaw that referenced this pull request Jun 4, 2026
@mushuiyu886 @sliverp @SebTardif
fix(feishu): preserve streaming card content (openclaw#90181)
3e136f5 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
SebTardif pushed a commit to SebTardif/openclaw that referenced this pull request Jun 4, 2026
@mushuiyu886 @sliverp @SebTardif
fix(feishu): preserve streaming card content (openclaw#90181)
a89dcdf 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
github-actions Bot pushed a commit to Desicool/openclaw that referenced this pull request Jun 5, 2026
@mushuiyu886 @sliverp
fix(feishu): preserve streaming card content (openclaw#90181)
708fefc 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
@mikeyoubeach mikeyoubeach mentioned this pull request Jun 5, 2026
Closed
traoremp pushed a commit to traoremp/openclaw that referenced this pull request Jun 5, 2026
@mushuiyu886 @sliverp
fix(feishu): preserve streaming card content (openclaw#90181)
0810fe2 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
@clawsweeper clawsweeper Bot mentioned this pull request Jun 6, 2026
Merged
4 tasks
849261680 pushed a commit to 849261680/openclaw that referenced this pull request Jun 7, 2026
@mushuiyu886 @sliverp @849261680
fix(feishu): preserve streaming card content (openclaw#90181)
153881a 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
@sliverp sliverp mentioned this pull request Jun 8, 2026
Closed
wangmiao0668000666 pushed a commit to wangmiao0668000666/openclaw that referenced this pull request Jun 9, 2026
@mushuiyu886 @sliverp @wangmiao0668000666
fix(feishu): preserve streaming card content (openclaw#90181)
cf00314 
* fix(feishu): preserve streaming card content

* fix(feishu): preserve streaming card content (openclaw#90181) (thanks @mushuiyu886)

---------

Co-authored-by: sliverp <870080352@qq.com>
eleboucher pushed a commit to eleboucher/homelab that referenced this pull request Jun 9, 2026
@eleboucher
fix(container): update image ghcr.io/openclaw/openclaw (2026.6.1 ➔ 20…
e04fa1a 
…26.6.5) (#963)

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [ghcr.io/openclaw/openclaw](https://openclaw.ai) ([source](https://github.com/openclaw/openclaw)) | patch | `2026.6.1` → `2026.6.5` |

---

### Release Notes

<details>
<summary>openclaw/openclaw (ghcr.io/openclaw/openclaw)</summary>

### [`v2026.6.5`](https://github.com/openclaw/openclaw/blob/HEAD/CHANGELOG.md#202665)

[Compare Source](openclaw/openclaw@v2026.6.1...v2026.6.5)

##### Highlights

- QQBot now strips model reasoning/thinking scaffolding before native delivery, preventing raw `<thinking>` content from leaking into channel replies. ([#&#8203;89913](openclaw/openclaw#89913), [#&#8203;90132](openclaw/openclaw#90132)) Thanks [@&#8203;openperf](https://github.com/openperf).
- MCP tool results now coerce `resource_link`, `resource`, `audio`, malformed image, and future non-text/image blocks at the materialize boundary, preventing Anthropic 400s and poisoned session history after a tool returns richer MCP content. ([#&#8203;90710](openclaw/openclaw#90710), [#&#8203;90728](openclaw/openclaw#90728)) Thanks [@&#8203;RanSHammer](https://github.com/RanSHammer) and [@&#8203;849261680](https://github.com/849261680).
- Anthropic extended-thinking sessions recover after prompt-cache expiry or Gateway restart because stream start events wait for `message_start`, letting pre-generation signature errors trigger the existing recovery retry. ([#&#8203;90667](openclaw/openclaw#90667), [#&#8203;90697](openclaw/openclaw#90697)) Thanks [@&#8203;openperf](https://github.com/openperf).
- Parallel is now a bundled `web_search` provider with `PARALLEL_API_KEY` discovery, guarded endpoint handling, cache-safe session ids, onboarding picker support, and docs. ([#&#8203;85158](openclaw/openclaw#85158)) Thanks [@&#8203;NormallyGaussian](https://github.com/NormallyGaussian).
- Google Vertex ADC users get static catalog rows and runtime model resolution again, while single-provider cooldown recovery and memory adapter status checks are more reliable. ([#&#8203;90506](openclaw/openclaw#90506), [#&#8203;90609](openclaw/openclaw#90609), [#&#8203;90717](openclaw/openclaw#90717), [#&#8203;90816](openclaw/openclaw#90816)) Thanks [@&#8203;849261680](https://github.com/849261680).
- Matrix can preflight voice notes before mention gating, preserve thread reads/replies through Matrix relations pagination, and carry QA coverage for voice and thread flows. ([#&#8203;78016](openclaw/openclaw#78016), [#&#8203;90415](openclaw/openclaw#90415))
- Auth and plugin install state is more durable: auth profiles now live in SQLite, official npm plugin install records keep their trusted pins, and prerelease fallback integrity checks avoid carrying stale integrity forward. ([#&#8203;89102](openclaw/openclaw#89102), [#&#8203;88585](openclaw/openclaw#88585))
- macOS node mode no longer silently self-reconnects away from a healthy direct Gateway session, reducing unexpected companion app session churn. ([#&#8203;90668](openclaw/openclaw#90668), [#&#8203;90815](openclaw/openclaw#90815)) Thanks [@&#8203;vrurg](https://github.com/vrurg).
- Upgrade and service paths are safer: cron legacy JSON stores migrate during doctor preflight, service env placeholders no longer mask state-dir secrets, WhatsApp startup waits are bounded, and disabled WhatsApp accounts tear down on config reload. ([#&#8203;90072](openclaw/openclaw#90072), [#&#8203;90208](openclaw/openclaw#90208), [#&#8203;90277](openclaw/openclaw#90277), [#&#8203;90488](openclaw/openclaw#90488), [#&#8203;90486](openclaw/openclaw#90486), [#&#8203;87951](openclaw/openclaw#87951), [#&#8203;87965](openclaw/openclaw#87965)) Thanks [@&#8203;MonkeyLeeT](https://github.com/MonkeyLeeT), [@&#8203;sallyom](https://github.com/sallyom), [@&#8203;mcaxtr](https://github.com/mcaxtr), and [@&#8203;MukundaKatta](https://github.com/MukundaKatta).

##### Changes

- Search/providers: add the Parallel bundled web-search plugin, live provider tests, registration contracts, onboarding/docs wiring, and guarded `api.parallel.ai/v1/search` support. ([#&#8203;85158](openclaw/openclaw#85158)) Thanks [@&#8203;NormallyGaussian](https://github.com/NormallyGaussian).
- Matrix/channels: add voice-message preflight and thread-aware read/reply behavior, including Matrix QA scenario wiring and docs for voice-message behavior. ([#&#8203;78016](openclaw/openclaw#78016), [#&#8203;90415](openclaw/openclaw#90415))
- Skills/ClawHub: install ClawHub skills backed by GitHub repositories through the resolved install API, download the pinned GitHub commit, keep install-policy checks, and report install telemetry after success. ([#&#8203;90478](openclaw/openclaw#90478)) Thanks [@&#8203;Patrick-Erichsen](https://github.com/Patrick-Erichsen).
- Google Chat/channels: add native approval card actions and click handling so Google Chat approvals use platform-native cards instead of generic message flow.
- Mobile: Android provider/model screens now surface expiring, unavailable, unresolved, and attention states more clearly, while iOS settings and Talk tabs keep diagnostics, gateway rows, attachment labels, and unavailable Talk controls reachable.
- Memory: QMD search can use the new rerank toggle, and memory adapter status uses the resolved default model identity when checking plain status. ([#&#8203;61834](openclaw/openclaw#61834))
- Docs/tooling: add Parallel search docs, refresh weather-skill guidance toward `web_fetch`, clarify legacy `openai-codex` auth, document release/test helper scripts, and tighten changed-test routing docs for CI/debugging work. ([#&#8203;90028](openclaw/openclaw#90028), [#&#8203;90250](openclaw/openclaw#90250)) Thanks [@&#8203;fuller-stack-dev](https://github.com/fuller-stack-dev).
- Release/process: switch release trains to `YYYY.M.PATCH` monthly patch numbering, keep pre-transition tags compatible, and pin the June 2026 floor at `2026.6.5` after the published beta.
- Platform maintenance: refresh Android, Swift/macOS, Docker, CodeQL, Buildx, Docker build/push, and Codex Action dependencies for this release train. ([#&#8203;74980](openclaw/openclaw#74980), [#&#8203;81757](openclaw/openclaw#81757), [#&#8203;86481](openclaw/openclaw#86481), [#&#8203;86483](openclaw/openclaw#86483), [#&#8203;90601](openclaw/openclaw#90601))
- QQBot: add `/bot-group-allways on|off` slash command (with named-account and default-account support) to toggle whether group messages require an `@mention` before the bot replies, and clear the runtime config snapshot after the write so the new account-level `defaultRequireMention` takes effect immediately without restart. ([#&#8203;91423](openclaw/openclaw#91423)) Thanks [@&#8203;cxyhhhhh](https://github.com/cxyhhhhh).

##### Fixes

- Channel content boundaries: QQBot now strips reasoning/thinking tags before sending, preserving final answers while hiding internal model narration from users. ([#&#8203;89913](openclaw/openclaw#89913), [#&#8203;90132](openclaw/openclaw#90132)) Thanks [@&#8203;openperf](https://github.com/openperf).
- Agents/MCP/providers: coerce non-text/image MCP tool-result blocks before they reach provider converters, preserving valid images and turning richer MCP content into text instead of malformed image blocks. ([#&#8203;90710](openclaw/openclaw#90710), [#&#8203;90728](openclaw/openclaw#90728)) Thanks [@&#8203;RanSHammer](https://github.com/RanSHammer) and [@&#8203;849261680](https://github.com/849261680).
- Anthropic/Codex/ACP/agent recovery: defer Anthropic stream start events until `message_start`, strip stale compaction thinking signatures before Anthropic replay, detect unsigned thinking-only stalls, refresh prompt fences after compaction writes, reject empty completion handoffs, preserve parent streaming-off overrides/shared progress commentary, forward heartbeat metadata to context-engine hooks, and cover Codex session/thread migration edge cases. ([#&#8203;90667](openclaw/openclaw#90667), [#&#8203;90697](openclaw/openclaw#90697), [#&#8203;90163](openclaw/openclaw#90163), [#&#8203;90108](openclaw/openclaw#90108), [#&#8203;89874](openclaw/openclaw#89874), [#&#8203;89505](openclaw/openclaw#89505), [#&#8203;90632](openclaw/openclaw#90632), [#&#8203;89302](openclaw/openclaw#89302), [#&#8203;90729](openclaw/openclaw#90729), [#&#8203;90317](openclaw/openclaw#90317), [#&#8203;90319](openclaw/openclaw#90319)) Thanks [@&#8203;openperf](https://github.com/openperf), [@&#8203;100yenadmin](https://github.com/100yenadmin), and [@&#8203;ooiuuii](https://github.com/ooiuuii).
- Provider/model resolution: preserve Google Vertex ADC auth markers in generated catalogs, re-probe a single-provider primary after cooldown, share Codex model visibility, fail closed for unknown model auth, preserve Codex alias availability, keep unresolved profile refs unknown, and avoid resolving auth while listing models. ([#&#8203;90506](openclaw/openclaw#90506), [#&#8203;90609](openclaw/openclaw#90609), [#&#8203;90717](openclaw/openclaw#90717), [#&#8203;90702](openclaw/openclaw#90702)) Thanks [@&#8203;849261680](https://github.com/849261680).
- Gateway/macOS/mobile: avoid duplicate Gateway probe warnings by identity, rate-limit node pairing requests while preserving paired-node reconnects, keep macOS node mode on a healthy direct Gateway session, keep iOS diagnostics and gateway rows reachable, and avoid Linux ARM Gradle resource tasks during Android builds. ([#&#8203;85791](openclaw/openclaw#85791), [#&#8203;90147](openclaw/openclaw#90147), [#&#8203;90668](openclaw/openclaw#90668), [#&#8203;90815](openclaw/openclaw#90815)) Thanks [@&#8203;giodl73-repo](https://github.com/giodl73-repo) and [@&#8203;vrurg](https://github.com/vrurg).
- TUI/chat/Workboard/auto-reply: optimistic user messages stay stable across stale history reloads, runId reassignment, and abort windows instead of disappearing, jumping, or lingering as ghost rows; Workboard stale lifecycle bulk updates no longer overwrite newer status/provenance; message-tool sends now count as delivery. ([#&#8203;86205](openclaw/openclaw#86205), [#&#8203;89600](openclaw/openclaw#89600), [#&#8203;88592](openclaw/openclaw#88592), [#&#8203;90123](openclaw/openclaw#90123)) Thanks [@&#8203;RomneyDa](https://github.com/RomneyDa).
- Cron/update/service env: doctor config preflight now migrates legacy cron JSON stores into SQLite before runtime reads, service env planning skips unresolved placeholders that would mask state-dir `.env` values, and session transcript rewrites keep registry markers/discriminants consistent. ([#&#8203;90072](openclaw/openclaw#90072), [#&#8203;90208](openclaw/openclaw#90208), [#&#8203;90277](openclaw/openclaw#90277), [#&#8203;90488](openclaw/openclaw#90488)) Thanks [@&#8203;MonkeyLeeT](https://github.com/MonkeyLeeT) and [@&#8203;sallyom](https://github.com/sallyom).
- Security/config/tooling: guard MCP HTTP redirects, protect global agent config defaults, and keep release/test/tooling proof failures bounded and explicit. ([#&#8203;89732](openclaw/openclaw#89732), [#&#8203;90145](openclaw/openclaw#90145))
- Channels: WhatsApp restarts when per-account config changes, bounds background startup waits, closes failed sockets, and preserves reconnect behavior; Mattermost slash commands keep their state on `globalThis`; Feishu streaming cards preserve full merged content; voice-call tracks Twilio streams after connect; ClickClack reply tools respect `toolsAllow`. ([#&#8203;87951](openclaw/openclaw#87951), [#&#8203;87965](openclaw/openclaw#87965), [#&#8203;90486](openclaw/openclaw#90486), [#&#8203;68113](openclaw/openclaw#68113), [#&#8203;90534](openclaw/openclaw#90534), [#&#8203;90181](openclaw/openclaw#90181), [#&#8203;90607](openclaw/openclaw#90607), [#&#8203;89500](openclaw/openclaw#89500)) Thanks [@&#8203;MukundaKatta](https://github.com/MukundaKatta), [@&#8203;mcaxtr](https://github.com/mcaxtr), [@&#8203;infoanton](https://github.com/infoanton), [@&#8203;mushuiyu886](https://github.com/mushuiyu886), and [@&#8203;sahibzada-allahyar](https://github.com/sahibzada-allahyar).
- Feishu: retry transient send rate-limit errors (HTTP 429, per-chat code 230020, tenant-level code 11232) with linear backoff, including SDK responses that fulfill with rate-limit bodies instead of throwing, and route streaming-card sends through the retry wrapper. ([#&#8203;89659](openclaw/openclaw#89659)) Thanks [@&#8203;ladygege](https://github.com/ladygege).
- Release/CI/E2E: main CI guard drift, PR merge diff scoping, live Docker credential staging, base-image qualification, installer Docker classification, Playwright dependency install recovery, API-key auth for Codex live Docker lanes, Parallels option terminators, and JSON-mode progress handling are tighter so release proof fails cleaner. ([#&#8203;90532](openclaw/openclaw#90532), [#&#8203;90287](openclaw/openclaw#90287), [#&#8203;90058](openclaw/openclaw#90058)) Thanks [@&#8203;RomneyDa](https://github.com/RomneyDa), [@&#8203;hxy91819](https://github.com/hxy91819), and [@&#8203;mrunalp](https://github.com/mrunalp).
- Release/CI/E2E: Docker E2E and live Docker harness runs now apply default memory, CPU, and process ceilings while preserving explicit per-lane overrides.
- Release/CI/E2E: plugin lifecycle matrix resource sampling now fails phases that exceed RSS, wall-clock, or CPU ceilings instead of only logging the measurements.
- Release/CI/E2E: Codex npm plugin live assertions now cap transcript discovery and diagnostic log reads so failure proof stays bounded.
- Tests/state isolation: QA Lab valid-tool-call metrics now require runtime tool-call evidence when runtime parity data is available instead of counting tool-backed scenario pass status alone.
- Tests/state isolation: QA Lab runtime parity now fails planned-only tool-call rows without matching tool results instead of treating matching mock plans as real tool evidence.
- Tests/state isolation: provider, media, auth, cron, task, session, sandbox, Gateway, and Codex timeout fixtures now scope more home/state/env data per test, reducing cross-test leakage and making release validation failures less noisy. ([#&#8203;90027](openclaw/openclaw#90027), [#&#8203;89974](openclaw/openclaw#89974))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about these updates again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xMDEuMSIsInVwZGF0ZWRJblZlciI6IjQzLjEwMS4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJyZW5vdmF0ZS9jb250YWluZXIiLCJ0eXBlL3BhdGNoIl19-->

Reviewed-on: https://git.erwanleboucher.dev/eleboucher/homelab/pulls/963
This was referenced Jun 11, 2026
Open
Open
@silentwxy silentwxy mentioned this pull request Jun 11, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@sliverp sliverp

Labels

channel: feishu Channel integration: feishu P1 High-priority user-facing bug, regression, or broken workflow. proof: supplied External PR includes structured after-fix real behavior proof. rating: 🦞 diamond lobster Very strong PR readiness with only minor maintainer review expected. size: XS status: 👀 ready for maintainer look ClawSweeper has no concrete contributor-facing blocker left for this PR.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Bug]: 2026.6.1 飞书流式回复仅显示最后一个字符(卡片被 update 而非 patch)

2 participants

@mushuiyu886 @sliverp