OpenClaw docs capability index
過去レポートのView/ソース規律バックフィルで生成したView。
Generated: 2026-05-10T13:21:19+09:00
Docs tree
.i18n/README.md
AGENTS.md
auth-credential-semantics.md
automation/auth-monitoring.md
automation/clawflow.md
automation/cron-jobs.md
automation/cron-vs-heartbeat.md
automation/gmail-pubsub.md
automation/hooks.md
automation/index.md
automation/poll.md
automation/standing-orders.md
automation/taskflow.md
automation/tasks.md
automation/troubleshooting.md
automation/webhook.md
brave-search.md
channels/access-groups.md
channels/bluebubbles.md
channels/broadcast-groups.md
channels/channel-routing.md
channels/discord.md
channels/feishu.md
channels/googlechat.md
channels/group-messages.md
channels/groups.md
channels/imessage.md
channels/index.md
channels/irc.md
channels/line.md
channels/location.md
channels/matrix-migration.md
channels/matrix-push-rules.md
channels/matrix.md
channels/mattermost.md
channels/msteams.md
channels/nextcloud-talk.md
channels/nostr.md
channels/pairing.md
channels/qqbot.md
channels/signal.md
channels/slack.md
channels/synology-chat.md
channels/telegram.md
channels/tlon.md
channels/troubleshooting.md
channels/twitch.md
channels/wechat.md
channels/whatsapp.md
channels/yuanbao.md
channels/zalo.md
channels/zalouser.md
ci.md
cli/acp.md
cli/agent.md
cli/agents.md
cli/approvals.md
cli/backup.md
cli/browser.md
cli/channels.md
cli/clawbot.md
cli/commitments.md
cli/completion.md
cli/config.md
cli/configure.md
cli/crestodian.md
cli/cron.md
cli/daemon.md
cli/dashboard.md
cli/devices.md
cli/directory.md
cli/dns.md
cli/docs.md
cli/doctor.md
cli/flows.md
cli/gateway.md
cli/health.md
cli/hooks.md
cli/index.md
cli/infer.md
cli/logs.md
cli/mcp.md
cli/memory.md
cli/message.md
cli/migrate.md
cli/models.md
cli/node.md
cli/nodes.md
cli/onboard.md
cli/pairing.md
cli/plugins.md
cli/proxy.md
cli/qr.md
cli/reset.md
cli/sandbox.md
cli/secrets.md
cli/security.md
cli/sessions.md
cli/setup.md
cli/skills.md
cli/status.md
cli/system.md
cli/tasks.md
cli/tui.md
cli/uninstall.md
cli/update.md
cli/voicecall.md
cli/webhooks.md
cli/wiki.md
concepts/active-memory.md
concepts/agent-loop.md
concepts/agent-runtimes.md
concepts/agent-workspace.md
concepts/agent.md
concepts/architecture.md
concepts/channel-docking.md
concepts/commitments.md
concepts/compaction.md
concepts/context-engine.md
concepts/context.md
concepts/delegate-architecture.md
concepts/dreaming.md
concepts/experimental-features.md
concepts/features.md
concepts/mantis.md
concepts/markdown-formatting.md
concepts/memory-builtin.md
concepts/memory-honcho.md
concepts/memory-qmd.md
concepts/memory-search.md
concepts/memory.md
concepts/messages.md
concepts/model-failover.md
concepts/model-providers.md
concepts/models.md
concepts/multi-agent.md
concepts/oauth.md
concepts/openclaw-sdk.md
concepts/parallel-specialist-lanes.md
concepts/presence.md
concepts/progress-drafts.md
concepts/qa-e2e-automation.md
concepts/qa-matrix.md
concepts/queue-steering.md
concepts/queue.md
concepts/retry.md
concepts/session-pruning.md
concepts/session-tool.md
concepts/session.md
concepts/soul.md
concepts/streaming.md
concepts/system-prompt.md
concepts/timezone.md
concepts/typebox.md
concepts/typing-indicators.md
concepts/usage-tracking.md
date-time.md
debug/node-issue.md
diagnostics/flags.md
gateway/authentication.md
gateway/background-process.md
gateway/bonjour.md
gateway/bridge-protocol.md
gateway/cli-backends.md
gateway/config-agents.md
gateway/config-channels.md
gateway/config-tools.md
gateway/configuration-examples.md
gateway/configuration-reference.md
gateway/configuration.md
gateway/diagnostics.md
gateway/discovery.md
gateway/doctor.md
gateway/gateway-lock.md
gateway/health.md
gateway/heartbeat.md
gateway/index.md
gateway/local-models.md
gateway/logging.md
gateway/multiple-gateways.md
gateway/network-model.md
gateway/openai-http-api.md
gateway/openresponses-http-api.md
gateway/openshell.md
gateway/opentelemetry.md
gateway/operator-scopes.md
gateway/pairing.md
gateway/prometheus.md
gateway/protocol.md
gateway/remote-gateway-readme.md
gateway/remote.md
gateway/sandbox-vs-tool-policy-vs-elevated.md
gateway/sandboxing.md
gateway/secrets-plan-contract.md
gateway/secrets.md
gateway/security/audit-checks.md
gateway/security/index.md
gateway/tailscale.md
gateway/tools-invoke-http-api.md
gateway/troubleshooting.md
gateway/trusted-proxy-auth.md
help/debugging.md
help/environment.md
help/faq-first-run.md
help/faq-models.md
help/faq.md
help/gpt55-codex-agentic-parity-maintainers.md
help/gpt55-codex-agentic-parity.md
help/index.md
help/scripts.md
help/testing-live.md
help/testing-updates-plugins.md
help/testing.md
help/troubleshooting.md
index.md
install/ansible.md
install/azure.md
install/bun.md
install/clawdock.md
install/development-channels.md
install/digitalocean.md
install/docker-vm-runtime.md
install/docker.md
install/exe-dev.md
install/fly.md
install/gcp.md
install/hetzner.md
install/hostinger.md
install/index.md
install/installer.md
install/kubernetes.md
install/macos-vm.md
install/migrating-claude.md
install/migrating-hermes.md
install/migrating.md
install/nix.md
install/node.md
install/northflank.mdx
install/oracle.md
install/podman.md
install/railway.mdx
install/raspberry-pi.md
install/render.mdx
install/uninstall.md
install/updating.md
logging.md
network.md
nodes/audio.md
nodes/camera.md
nodes/images.md
nodes/index.md
nodes/location-command.md
nodes/media-understanding.md
nodes/talk.md
nodes/troubleshooting.md
nodes/voicewake.md
perplexity.md
pi-dev.md
pi.md
plan/codex-context-engine-harness.md
plan/ui-channels.md
platforms/android.md
platforms/digitalocean.md
platforms/index.md
platforms/ios.md
platforms/linux.md
platforms/mac/bundled-gateway.md
platforms/mac/canvas.md
platforms/mac/child-process.md
platforms/mac/dev-setup.md
platforms/mac/health.md
platforms/mac/icon.md
platforms/mac/logging.md
platforms/mac/menu-bar.md
platforms/mac/peekaboo.md
platforms/mac/permissions.md
platforms/mac/remote.md
platforms/mac/signing.md
platforms/mac/skills.md
platforms/mac/voice-overlay.md
platforms/mac/voicewake.md
platforms/mac/webchat.md
platforms/mac/xpc.md
platforms/macos.md
platforms/oracle.md
platforms/raspberry-pi.md
platforms/windows.md
plugins/agent-tools.md
plugins/architecture-internals.md
plugins/architecture.md
plugins/building-extensions.md
plugins/building-plugins.md
plugins/bundles.md
plugins/codex-computer-use.md
plugins/codex-harness.md
plugins/community.md
plugins/compatibility.md
plugins/dependency-resolution.md
plugins/google-meet.md
plugins/hooks.md
plugins/manage-plugins.md
plugins/manifest.md
plugins/memory-lancedb.md
plugins/memory-wiki.md
plugins/message-presentation.md
plugins/plugin-inventory.md
plugins/reference.md
plugins/reference/acpx.md
plugins/reference/alibaba.md
plugins/reference/amazon-bedrock-mantle.md
plugins/reference/amazon-bedrock.md
plugins/reference/anthropic-vertex.md
plugins/reference/anthropic.md
plugins/reference/arcee.md
plugins/reference/azure-speech.md
plugins/reference/bluebubbles.md
plugins/reference/bonjour.md
plugins/reference/brave.md
plugins/reference/browser.md
plugins/reference/byteplus.md
plugins/reference/cerebras.md
plugins/reference/chutes.md
plugins/reference/cloudflare-ai-gateway.md
plugins/reference/codex.md
plugins/reference/comfy.md
plugins/reference/copilot-proxy.md
plugins/reference/deepgram.md
plugins/reference/deepinfra.md
plugins/reference/deepseek.md
plugins/reference/diagnostics-otel.md
plugins/reference/diagnostics-prometheus.md
plugins/reference/diffs.md
plugins/reference/discord.md
plugins/reference/document-extract.md
plugins/reference/duckduckgo.md
plugins/reference/elevenlabs.md
plugins/reference/exa.md
plugins/reference/fal.md
plugins/reference/feishu.md
plugins/reference/file-transfer.md
plugins/reference/firecrawl.md
plugins/reference/fireworks.md
plugins/reference/github-copilot.md
plugins/reference/google-meet.md
plugins/reference/google.md
plugins/reference/googlechat.md
plugins/reference/gradium.md
plugins/reference/groq.md
plugins/reference/huggingface.md
plugins/reference/imessage.md
plugins/reference/inworld.md
plugins/reference/irc.md
plugins/reference/kilocode.md
plugins/reference/kimi.md
plugins/reference/line.md
plugins/reference/litellm.md
plugins/reference/llm-task.md
plugins/reference/lmstudio.md
plugins/reference/lobster.md
plugins/reference/matrix.md
plugins/reference/mattermost.md
plugins/reference/memory-core.md
plugins/reference/memory-lancedb.md
plugins/reference/memory-wiki.md
plugins/reference/microsoft-foundry.md
plugins/reference/microsoft.md
plugins/reference/migrate-claude.md
plugins/reference/migrate-hermes.md
plugins/reference/minimax.md
plugins/reference/mistral.md
plugins/reference/moonshot.md
plugins/reference/msteams.md
plugins/reference/nextcloud-talk.md
plugins/reference/nostr.md
plugins/reference/nvidia.md
plugins/reference/ollama.md
plugins/reference/open-prose.md
plugins/reference/openai.md
plugins/reference/opencode-go.md
plugins/reference/opencode.md
plugins/reference/openrouter.md
plugins/reference/openshell.md
plugins/reference/perplexity.md
plugins/reference/qa-channel.md
plugins/reference/qa-lab.md
plugins/reference/qa-matrix.md
plugins/reference/qianfan.md
plugins/reference/qqbot.md
plugins/reference/qwen.md
plugins/reference/runway.md
plugins/reference/searxng.md
plugins/reference/senseaudio.md
plugins/reference/sglang.md
plugins/reference/signal.md
plugins/reference/skill-workshop.md
plugins/reference/slack.md
plugins/reference/stepfun.md
plugins/reference/synology-chat.md
plugins/reference/synthetic.md
plugins/reference/tavily.md
plugins/reference/telegram.md
plugins/reference/tencent.md
plugins/reference/tlon.md
plugins/reference/together.md
plugins/reference/tokenjuice.md
plugins/reference/tts-local-cli.md
plugins/reference/twitch.md
plugins/reference/venice.md
plugins/reference/vercel-ai-gateway.md
plugins/reference/vllm.md
plugins/reference/voice-call.md
plugins/reference/volcengine.md
plugins/reference/voyage.md
plugins/reference/vydra.md
plugins/reference/web-readability.md
plugins/reference/webhooks.md
plugins/reference/whatsapp.md
plugins/reference/xai.md
plugins/reference/xiaomi.md
plugins/reference/zai.md
plugins/reference/zalo.md
plugins/reference/zalouser.md
plugins/sdk-agent-harness.md
plugins/sdk-channel-plugins.md
plugins/sdk-channel-turn.md
plugins/sdk-entrypoints.md
plugins/sdk-migration.md
plugins/sdk-overview.md
plugins/sdk-provider-plugins.md
plugins/sdk-runtime.md
plugins/sdk-setup.md
plugins/sdk-subpaths.md
plugins/sdk-testing.md
plugins/skill-workshop.md
plugins/voice-call.md
plugins/webhooks.md
plugins/zalouser.md
prose.md
providers/alibaba.md
providers/anthropic.md
providers/arcee.md
providers/azure-speech.md
providers/bedrock-mantle.md
providers/bedrock.md
providers/cerebras.md
providers/chutes.md
providers/claude-max-api-proxy.md
providers/cloudflare-ai-gateway.md
providers/comfy.md
providers/deepgram.md
providers/deepinfra.md
providers/deepseek.md
providers/elevenlabs.md
providers/fal.md
providers/fireworks.md
providers/github-copilot.md
providers/glm.md
providers/google.md
providers/gradium.md
providers/groq.md
providers/huggingface.md
providers/index.md
providers/inferrs.md
providers/inworld.md
providers/kilocode.md
providers/litellm.md
providers/lmstudio.md
providers/minimax.md
providers/mistral.md
providers/models.md
providers/moonshot.md
providers/nvidia.md
providers/ollama.md
providers/openai.md
providers/opencode-go.md
providers/opencode.md
providers/openrouter.md
providers/perplexity-provider.md
providers/qianfan.md
providers/qwen.md
providers/runway.md
providers/senseaudio.md
providers/sglang.md
providers/stepfun.md
providers/synthetic.md
providers/tencent.md
providers/together.md
providers/venice.md
providers/vercel-ai-gateway.md
providers/vllm.md
providers/volcengine.md
providers/vydra.md
providers/xai.md
providers/xiaomi.md
providers/zai.md
reference/AGENTS.default.md
reference/RELEASING.md
reference/api-usage-costs.md
reference/application-modernization-plan.md
reference/credits.md
reference/device-models.md
reference/full-release-validation.md
reference/memory-config.md
reference/openclaw-sdk-api-design.md
reference/prompt-caching.md
reference/rich-output-protocol.md
reference/rpc.md
reference/secretref-credential-surface.md
reference/session-management-compaction.md
reference/templates/AGENTS.dev.md
reference/templates/AGENTS.md
reference/templates/BOOT.md
reference/templates/BOOTSTRAP.md
reference/templates/HEARTBEAT.md
reference/templates/IDENTITY.dev.md
reference/templates/IDENTITY.md
reference/templates/SOUL.dev.md
reference/templates/SOUL.md
reference/templates/TOOLS.dev.md
reference/templates/TOOLS.md
reference/templates/USER.dev.md
reference/templates/USER.md
reference/test.md
reference/token-use.md
reference/transcript-hygiene.md
reference/wizard.md
security/CONTRIBUTING-THREAT-MODEL.md
security/THREAT-MODEL-ATLAS.md
security/formal-verification.md
security/incident-response.md
security/network-proxy.md
start/bootstrapping.md
start/docs-directory.md
start/getting-started.md
start/hubs.md
start/lore.md
start/onboarding-overview.md
start/onboarding.md
start/openclaw.md
start/quickstart.md
start/setup.md
start/showcase.md
start/wizard-cli-automation.md
start/wizard-cli-reference.md
start/wizard.md
superpowers/specs/2026-04-22-tweakcn-custom-theme-import-design.md
tools/acp-agents-setup.md
tools/acp-agents.md
tools/agent-send.md
tools/apply-patch.md
tools/brave-search.md
tools/browser-control.md
tools/browser-linux-troubleshooting.md
tools/browser-login.md
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md
tools/browser.md
tools/btw.md
tools/capability-cookbook.md
tools/clawhub.md
tools/code-execution.md
tools/creating-skills.md
tools/diffs.md
tools/duckduckgo-search.md
tools/elevated.md
tools/exa-search.md
tools/exec-approvals-advanced.md
tools/exec-approvals.md
tools/exec.md
tools/firecrawl.md
tools/gemini-search.md
tools/grok-search.md
tools/image-generation.md
tools/index.md
tools/kimi-search.md
tools/llm-task.md
tools/lobster.md
tools/loop-detection.md
tools/media-overview.md
tools/minimax-search.md
tools/multi-agent-sandbox-tools.md
tools/music-generation.md
tools/ollama-search.md
tools/pdf.md
tools/perplexity-search.md
tools/plugin.md
tools/reactions.md
tools/searxng-search.md
tools/skills-config.md
tools/skills.md
tools/slash-commands.md
tools/steer.md
tools/subagents.md
tools/tavily.md
tools/thinking.md
tools/tokenjuice.md
tools/trajectory.md
tools/tts.md
tools/video-generation.md
tools/web-fetch.md
tools/web.md
tts.md
vps.md
web/control-ui.md
web/dashboard.md
web/index.md
web/tui.md
web/webchat.md
Capability keyword hits
heartbeat
platforms/mac/health.md:34:- You can still use the CLI flow in [Gateway health](/gateway/health) (openclaw status, openclaw status --deep, openclaw health --json) and tail /tmp/openclaw/openclaw-*.log for web-heartbeat / web-reconnect.
tools/thinking.md:119:- Heartbeat probe body is the configured heartbeat prompt (default: Read HEARTBEAT.md if it exists (workspace context). Follow it strictly. Do not infer or repeat old tasks from prior chats. If nothing needs attention, reply HEARTBEAT_OK.). Inline directives in a heartbeat message apply as usual (but avoid changing session defaults from heartbeats).
tools/thinking.md:120:- Heartbeat delivery defaults to the final payload only. To also send the separate Reasoning: message (when available), set agents.defaults.heartbeat.includeReasoning: true or per-agent agents.list[].heartbeat.includeReasoning: true.
tools/exec.md:98:- tools.exec.notifyOnExit (default: true): when true, backgrounded exec sessions enqueue a system event and request a heartbeat on exit.
tools/loop-detection.md:77:When a run id is available, recent tool-call history is evaluated only within that run so scheduled heartbeat cycles and fresh runs do not inherit stale loop counts from earlier runs.
plugins/sdk-channel-plugins.md:32:- Heartbeat typing — optional typing/busy signals for heartbeat delivery targets
plugins/sdk-channel-plugins.md:38:heartbeat.sendTyping(...) on the channel plugin. Core calls it with the
plugins/sdk-channel-plugins.md:39:resolved heartbeat delivery target before the heartbeat model run starts and
plugins/sdk-channel-plugins.md:40:uses the shared typing keepalive/cleanup lifecycle. Add heartbeat.clearTyping(...)
plugins/sdk-migration.md:26: mixed system events, heartbeat state, delivery queues, fetch/proxy helpers,
plugins/sdk-migration.md:314: | Heartbeat event and visibility helpers | openclaw/plugin-sdk/heartbeat-runtime |
plugins/sdk-migration.md:432: | plugin-sdk/heartbeat-runtime | Heartbeat helpers | Heartbeat event and visibility helpers |
plugins/sdk-migration.md:451: | plugin-sdk/reply-runtime | Shared reply runtime | Inbound dispatch, heartbeat, reply planner, chunking |
plugins/codex-harness.md:25:Codex heartbeat turns also get the heartbeat_respond tool by default, so the
plugins/codex-harness.md:30:developer instruction on the heartbeat turn itself. Ordinary chat turns restore
plugins/codex-harness.md:31:Codex Default mode instead of carrying heartbeat philosophy in their normal
plugins/codex-harness.md:498:for autonomous heartbeats: Codex can use shell and network tools without
plugins/codex-harness.md:625:cron, browser, nodes, gateway, heartbeat_respond, and web_search remain
plugins/sdk-overview.md:156: agent_turn_prepare, before_prompt_build, heartbeat_prompt_contribution,
plugins/sdk-overview.md:166:| Background lifecycle monitor | Runtime lifecycle cleanup, agent event subscription, session scheduler ownership/cleanup, heartbeat prompt contribution, UI descriptor |
plugins/hooks.md:110:- heartbeat_prompt_contribution — add heartbeat-only context for background monitor and lifecycle plugins
plugins/hooks.md:228:- heartbeat_prompt_contribution: runs only for heartbeat turns and returns
plugins/sdk-subpaths.md:194: | plugin-sdk/reply-runtime | Shared inbound/reply runtime helpers, chunking, dispatch, heartbeat, reply planner |
plugins/sdk-subpaths.md:238: | plugin-sdk/heartbeat-runtime | Heartbeat event and visibility helpers |
plugins/architecture-internals.md:647:text-runtime, runtime-store, system-event-runtime, heartbeat-runtime,
providers/openai.md:471:The bundled native Codex harness uses the same GPT-5 behavior and heartbeat overlay through Codex app-server developer instructions, so openai/gpt-5.x sessions forced through agentRuntime.id: "codex" keep the same follow-through and proactive heartbeat guidance even though Codex owns the rest of the harness prompt.
start/openclaw.md:25:- Heartbeats now default to every 30 minutes. Disable until you trust the setup by setting agents.defaults.heartbeat.every: "0m".
start/openclaw.md:118:- heartbeats (once you trust it)
start/openclaw.md:131: heartbeat: { every: "0m" },
start/openclaw.md:167:By default, OpenClaw runs a heartbeat every 30 minutes with the prompt:
start/openclaw.md:169:Set agents.defaults.heartbeat.every: "0m" to disable.
start/openclaw.md:171:- If HEARTBEAT.md exists but is effectively empty (only blank lines and markdown headers like # Heading), OpenClaw skips the heartbeat run to save API calls.
start/openclaw.md:172:- If the file is missing, the heartbeat still runs and the model decides what to do.
start/openclaw.md:173:- If the agent replies with HEARTBEAT_OK (optionally with short padding; see agents.defaults.heartbeat.ackMaxChars), OpenClaw suppresses outbound delivery for that heartbeat.
start/openclaw.md:174:- By default, heartbeat delivery to DM-style user:<id> targets is allowed. Set agents.defaults.heartbeat.directPolicy: "block" to suppress direct-target delivery while keeping heartbeat runs active.
start/openclaw.md:180: heartbeat: { every: "30m" },
start/hubs.md:92:- [Heartbeat](/gateway/heartbeat)
cli/doctor.md:50:- Doctor checks openai-codex/* model refs across primary models, fallbacks, heartbeat/subagent/compaction overrides, hooks, channel model overrides, and stale session route pins. --fix rewrites them to openai/* only when the native Codex runtime is installed, enabled, contributes the codex harness, and has usable OAuth, or when direct OpenAI auth is already available and no usable Codex OAuth route would be moved. When openai-codex/* is the working Codex OAuth route through OpenClaw PI, doctor preserves it. If an earlier repair left openai/* GPT-5 routes on PI while only Codex OAuth auth is available, --fix recovers them back to openai-codex/*; when direct OpenAI auth is also usable, doctor warns and leaves the ambiguous mixed-auth route unchanged for explicit confirmation.
cli/doctor.md:52:- Doctor repairs stale plugin config by removing missing plugin ids from plugins.allow/plugins.entries, plus matching dangling channel config, heartbeat targets, and channel model overrides when plugin discovery is healthy.
cli/commitments.md:6: - You are auditing what heartbeat may deliver
commitments
cli/commitments.md:2:summary: "CLI reference for openclaw commitments (inspect and dismiss inferred follow-ups)"
cli/commitments.md:4: - You want to inspect inferred follow-up commitments
cli/commitments.md:7:title: "openclaw commitments"
cli/commitments.md:10:List and manage inferred follow-up commitments.
cli/commitments.md:13:conversation context. See [Inferred commitments](/concepts/commitments) for the
cli/commitments.md:16:With no subcommand, openclaw commitments lists pending commitments.
cli/commitments.md:21:openclaw commitments [--all] [--agent <id>] [--status <status>] [--json]
cli/commitments.md:22:openclaw commitments list [--all] [--agent <id>] [--status <status>] [--json]
cli/commitments.md:23:openclaw commitments dismiss <id...> [--json]
cli/commitments.md:28:- --all: show all statuses instead of only pending commitments.
cli/commitments.md:36:List pending commitments:
cli/commitments.md:39:openclaw commitments
cli/commitments.md:45:openclaw commitments --all
cli/commitments.md:51:openclaw commitments --agent main
cli/commitments.md:54:Find snoozed commitments:
cli/commitments.md:57:openclaw commitments --status snoozed
cli/commitments.md:60:Dismiss one or more commitments:
cli/commitments.md:63:openclaw commitments dismiss cm_abc123 cm_def456
cli/commitments.md:69:openclaw commitments --all --json
cli/commitments.md:87:- [Inferred commitments](/concepts/commitments)
cli/index.md:23:| Models and inference | [models](/cli/models) · [infer](/cli/infer) · capability (alias for [infer](/cli/infer)) · [memory](/cli/memory) · [commitments](/cli/commitments) · [wiki](/cli/wiki) |
cli/index.md:124: commitments
concepts/commitments.md:3:title: "Inferred commitments"
concepts/commitments.md:8: - You want to review or dismiss follow-up commitments
concepts/commitments.md:26:## Enable commitments
concepts/commitments.md:31:openclaw config set commitments.enabled true
concepts/commitments.md:32:openclaw config set commitments.maxPerDay 3
concepts/commitments.md:39: "commitments": {
concepts/commitments.md:46:commitments.maxPerDay limits how many inferred follow-ups can be delivered
concepts/commitments.md:52:separate context. That pass looks only for inferred follow-up commitments. It
concepts/commitments.md:68:If heartbeat is configured with target: "none", due commitments remain
concepts/commitments.md:102:## Manage commitments
concepts/commitments.md:104:Use the CLI to inspect and clear stored commitments:
concepts/commitments.md:107:openclaw commitments
concepts/commitments.md:108:openclaw commitments --all
concepts/commitments.md:109:openclaw commitments --agent main
concepts/commitments.md:110:openclaw commitments --status snoozed
concepts/commitments.md:111:openclaw commitments dismiss cm_abc123
concepts/commitments.md:114:See [openclaw commitments](/cli/commitments) for the command reference.
concepts/commitments.md:123:Stored commitments are local OpenClaw state. They are operational memory, not
taskflow
tools/lobster.md:11:Lobster is one authoring layer above detached background work. For flow orchestration above individual tasks, see [Task Flow](/automation/taskflow) (openclaw tasks flow). For the task activity ledger, see [openclaw tasks](/automation/tasks).
cli/flows.md:18:For full documentation see [Task Flow](/automation/taskflow) and the [tasks CLI reference](/cli/tasks).
automation/clawflow.md:6:ClawFlow was renamed to [Task flow](/automation/taskflow).
automation/clawflow.md:10:- [Task flow](/automation/taskflow)
automation/tasks.md:341: [Task Flow](/automation/taskflow) is the flow orchestration layer above background tasks. A single flow may coordinate multiple tasks over its lifetime using managed or mirrored sync modes. Use openclaw tasks to inspect individual task records and openclaw tasks flow to inspect the orchestrating flow.
automation/tasks.md:343: See [Task Flow](/automation/taskflow) for details.
automation/tasks.md:372:- [Task Flow](/automation/taskflow) — flow orchestration above tasks
automation/index.md:91:See [Task Flow](/automation/taskflow).
automation/index.md:129:- [Task Flow](/automation/taskflow) — durable multi-step flow orchestration
TaskFlow
plugins/reference.md:128:| [webhooks](/plugins/reference/webhooks) | Authenticated inbound webhooks that bind external automation to OpenClaw TaskFlows. | @openclaw/webhooks<br />included in OpenClaw | plugin |
plugins/plugin-inventory.md:136:| [webhooks](/plugins/reference/webhooks) | Authenticated inbound webhooks that bind external automation to OpenClaw TaskFlows. | @openclaw/webhooks<br />included in OpenClaw | plugin |
plugins/sdk-migration.md:733: New: runtime.tasks.managedFlows keeps the managed TaskFlow mutation
plugins/webhooks.md:2:summary: "Webhooks plugin: authenticated TaskFlow ingress for trusted external automation"
plugins/webhooks.md:4: - You want to trigger or drive TaskFlows from an external system
plugins/webhooks.md:12:automation to OpenClaw TaskFlows.
plugins/webhooks.md:15:internal service to create and drive managed TaskFlows without writing a custom
plugins/webhooks.md:46: description: "Zapier TaskFlow bridge",
plugins/webhooks.md:60:- sessionKey: required session that owns the bound TaskFlows
plugins/webhooks.md:75:Each route is trusted to act with the TaskFlow authority of its configured
plugins/webhooks.md:78:This means the route can inspect and mutate TaskFlows owned by that session, so
plugins/webhooks.md:92:- Owner-bound TaskFlow access through api.runtime.tasks.managedFlows.bindSession(...)
plugins/webhooks.md:130:Creates a managed TaskFlow for the route's bound session.
plugins/webhooks.md:145:Creates a managed child task inside an existing managed TaskFlow.
plugins/webhooks.md:183: "error": "TaskFlow not found.",
plugins/sdk-testing.md:141:| createRuntimeTaskFlow | Create isolated runtime task-flow state |
plugins/reference/webhooks.md:2:summary: "Authenticated inbound webhooks that bind external automation to OpenClaw TaskFlows."
plugins/reference/webhooks.md:10:Authenticated inbound webhooks that bind external automation to OpenClaw TaskFlows.
automation/tasks.md:83: # Inspect TaskFlow state
cron
platforms/raspberry-pi.md:75:# Set timezone (important for cron/reminders)
tools/browser.md:212:- tabCleanup is best-effort cleanup for tabs opened by primary-agent browser sessions. Subagent, cron, and ACP lifecycle cleanup still closes their explicit tracked tabs at session end; primary sessions keep active tabs reusable, then close idle or excess tracked tabs in the background.
tools/subagents.md:402:| Source | subagent or cron |
tools/subagents.md:472: deny: ["gateway", "cron"],
tools/index.md:65:| cron / gateway | Manage scheduled jobs; inspect, patch, restart, or update the gateway | |
tools/index.md:150:| coding | group:fs, group:runtime, group:web, group:sessions, group:memory, cron, image, image_generate, music_generate, video_generate |
tools/index.md:157:browser, canvas, nodes, cron, and gateway control. Use tools.profile: "full"
tools/index.md:199:| group:automation | cron, gateway |
tools/acp-agents-setup.md:238:built-in tools such as cron:
tools/acp-agents-setup.md:248:- Exposes selected built-in OpenClaw tools. The initial server exposes cron.
tools/exec.md:93:- For work that should happen later or on a schedule, use cron instead of
install/migrating-hermes.md:80:- cron/
install/raspberry-pi.md:49: # Set timezone (important for cron and reminders)
install/docker.md:282:cron/runs/*.jsonl, installed plugin package roots, and rolling file logs
plugins/sdk-migration.md:355: cron delivery, and session routing. If your plugin owns custom target
plugins/codex-harness.md:625:cron, browser, nodes, gateway, heartbeat_respond, and web_search remain
plugins/sdk-overview.md:319:- cron_changed: observe gateway-owned cron lifecycle changes. Use event.job?.state?.nextRunAtMs and ctx.getCron?.() when syncing external wake schedulers, and keep OpenClaw as the source of truth for due checks and execution.
plugins/manifest.md:1330:- Env-var metadata (setup.providers[].envVars, deprecated providerAuthEnvVars, and channelEnvVars) is declarative only. Status, audit, cron delivery validation, and other read-only surfaces still apply plugin trust and effective activation policy before treating an env var as configured.
plugins/hooks.md:147:- cron_changed — observe gateway-owned cron lifecycle changes (added, updated, removed, started, finished, scheduled)
plugins/hooks.md:159: ctx.runId, ctx.jobId (set on cron-driven runs), and diagnostic ctx.trace
plugins/hooks.md:237:Cron-driven runs also expose ctx.jobId (the originating cron job id) so
plugins/hooks.md:367:cron inspection and updates. Use gateway_stop to clean up long-running
plugins/hooks.md:373:cron_changed fires for gateway-owned cron lifecycle events with a typed
plugins/sdk-subpaths.md:200: | plugin-sdk/cron-store-runtime | Cron store path/load/save helpers |
web/control-ui.md:111: - Cron jobs: list/add/edit/run/enable/disable + run history (cron.*).
web/control-ui.md:140: - Advanced edit controls include delete-after-run, clear agent override, cron exact/stagger options, agent model/thinking overrides, and best-effort delivery toggles.
web/control-ui.md:142: - Set cron.webhookToken to send a dedicated bearer token, if omitted the webhook is sent without an auth header.
web/control-ui.md:143: - Deprecated fallback: stored legacy jobs with notify: true can still use cron.webhook until migrated.
providers/openai.md:326: cron, sub-agent, and configured default-model runs do not fail with
providers/ollama.md:248:Isolated cron jobs do one extra local safety check before they start the agent
providers/ollama.md:250:Ollama provider and /api/tags is unreachable, OpenClaw records that cron run
providers/ollama.md:252:preflight is cached for 5 minutes, so multiple cron jobs pointed at the same
providers/ollama.md:660: localModelLean removes the browser, cron, and message tools from the agent surface, but it does not change Ollama's runtime context or thinking mode. Pair it with explicit params.num_ctx and params.thinking: false for small Qwen-style thinking models that loop or spend their response budget on hidden reasoning.
start/openclaw.md:226:- Cron + wakeups: [Cron jobs](/automation/cron-jobs)
start/docs-directory.md:61:- [Cron jobs](/automation/cron-jobs)
start/docs-directory.md:62:- [Webhooks](/automation/cron-jobs#webhooks)
start/docs-directory.md:63:- [Gmail hooks (Pub/Sub)](/automation/cron-jobs#gmail-pubsub-integration)
start/hubs.md:81:- [Webhooks](/automation/cron-jobs#webhooks)
start/hubs.md:82:- [Gmail Pub/Sub](/automation/cron-jobs#gmail-pubsub-integration)
start/hubs.md:112:- [Cron jobs](/automation/cron-jobs)
sandbox
platforms/mac/webchat.md:49:- The UI is optimized for chat sessions (not a full browser sandbox).
tools/slash-commands.md:144: - /exec host=<auto|sandbox|gateway|node> security=<deny|allowlist|full> ask=<off|on-miss|always> node=<id> shows or sets exec defaults.
tools/slash-commands.md:317:- Execution vs runtime: /status reports Execution for the effective sandbox path and Runtime for who is actually running the session: OpenClaw Pi Default, OpenAI Codex, a CLI backend, or an ACP backend.
tools/lobster.md:32:- Safety policy baked in: Timeouts, output caps, sandbox checks, and allowlists are enforced by the runtime, not each script.
tools/lobster.md:322:- Sandbox-aware — disabled when the tool context is sandboxed.
tools/exec-approvals.md:6: - Reviewing sandbox-escape prompts and their implications
tools/exec-approvals.md:12:a sandboxed agent run commands on a real host (gateway or node). A
tools/exec-approvals.md:186:- tools.exec.host=auto chooses where exec runs: sandbox when available, otherwise gateway.
tools/exec-approvals.md:189:- auto does not make gateway routing a free override from a sandboxed session. A per-call host=node request is allowed from auto; host=gateway is only allowed from auto when no sandbox runtime is active. For a stable non-auto default, set tools.exec.host or use /exec host=... explicitly.
tools/exec-approvals.md:409: <Card title="Sandboxing" href="/gateway/sandboxing" icon="box">
tools/exec-approvals.md:415: <Card title="Sandbox vs tool policy vs elevated" href="/gateway/sandbox-vs-tool-policy-vs-elevated" icon="sliders">
tools/plugin.md:407:runtime config, workspace, agent/session ids, sandbox policy, browser settings,
tools/exec-approvals-advanced.md:159:- For those workflows, prefer sandboxing, a separate host boundary, or an explicit trusted
tools/code-execution.md:2:summary: "code_execution -- run sandboxed remote Python analysis with xAI"
tools/code-execution.md:10:code_execution runs sandboxed remote Python analysis on xAI's Responses API.
tools/code-execution.md:14:- code_execution runs Python in xAI's remote sandbox
tools/browser.md:753: - target (sandbox | host | node) to select where the browser lives.
tools/browser.md:754: - In sandboxed sessions, target: "host" requires agents.defaults.sandbox.browser.allowHostControl=true.
tools/browser.md:755: - If target is omitted: sandboxed sessions default to sandbox, non-sandbox sessions default to host.
tools/browser.md:763:- [Sandboxing](/gateway/sandboxing) — browser control in sandboxed environments
tools/acp-agents.md:54:session must not be sandbox-blocked, and a runtime backend must be
tools/acp-agents.md:205: is enabled, the requester is not sandboxed, and an ACP runtime
tools/acp-agents.md:722:OpenClaw sandbox.
tools/acp-agents.md:728:- OpenClaw's sandbox policy does not wrap ACP harness execution.
tools/acp-agents.md:730:- Use runtime: "subagent" for sandbox-enforced OpenClaw-native work.
tools/acp-agents.md:736:- If the requester session is sandboxed, ACP spawns are blocked for both sessions_spawn({ runtime: "acp" }) and /acp spawn.
tools/acp-agents.md:737:- sessions_spawn with runtime: "acp" does not support sandbox: "require".
tools/acp-agents.md:827:| Sandboxed sessions cannot spawn ACP sessions ... | ACP runtime is host-side; requester session is sandboxed. | Use runtime="subagent" from sandboxed sessions, or run ACP spawn from a non-sandboxed session. |
tools/acp-agents.md:828:| sessions_spawn sandbox="require" is unsupported for runtime="acp" ... | sandbox="require" requested for ACP runtime. | Use runtime="subagent" for required sandboxing, or use ACP with sandbox="inherit" from a non-sandboxed session. |
tools/acp-agents.md:842:- [Multi-agent sandbox tools](/tools/multi-agent-sandbox-tools)
tools/browser-login.md:50:If the agent is sandboxed, the browser tool defaults to the sandbox. To allow host control:
tools/browser-login.md:56: sandbox: {
tools/browser-login.md:73:Or disable sandboxing for the agent that posts updates.
tools/web-fetch.md:139: provider from available credentials. Non-sandboxed web_fetch can use
tools/subagents.md:20:- Keep sub-agents isolated by default (session separation + optional sandboxing).
tools/subagents.md:107: - OpenClaw hides runtime: "acp" until ACP is enabled, the requester is not sandboxed, and a backend plugin such as acpx is loaded. runtime: "acp" expects an external ACP harness id, or an agents.list[] entry with runtime.type="acp"; use the default sub-agent runtime for normal OpenClaw config agents from agents_list.
tools/subagents.md:135:work. Channel/group, provider, sandbox, and per-agent allow/deny policies can
tools/subagents.md:183:<ParamField path="sandbox" type='"inherit" | "require"' default="inherit">
tools/subagents.md:184: require rejects spawn unless the target child runtime is sandboxed.
tools/subagents.md:264:If the requester session is sandboxed, sessions_spawn rejects targets
media
platforms/windows.md:41:- if Scheduled Task creation is denied, OpenClaw falls back to a per-user Startup-folder login item and starts the gateway immediately
platforms/mac/menu-bar.md:21:- Priority: main always wins. If main is active, its state is shown immediately. If main is idle, the most recently active non‑main session is shown. We do not flip‑flop mid‑activity; we only switch when the current session goes idle or main becomes active.
platforms/mac/menu-bar.md:86:- Trigger main session job: verify icon switches immediately and status row shows main label.
platforms/mac/voice-overlay.md:15:- Wake-word alone still auto-sends on silence; push-to-talk sends immediately on release.
platforms/mac/voice-overlay.md:38: - Apply a short cooldown to the wake runtime after push-to-talk finishes so wake-word doesn’t immediately retrigger.
platforms/mac/voicewake.md:13:- Push-to-talk (Right Option hold): hold the right Option key to capture immediately—no trigger needed. The overlay appears while held; releasing finalizes and forwards after a short delay so you can tweak text.
platforms/mac/voicewake.md:42:- Capture pipeline lives in VoicePushToTalk: starts Speech immediately, streams partials to the overlay, and calls VoiceWakeForwarder on release.
platforms/mac/logging.md:56:- Optionally run sudo log config --reload to force logd to drop the override immediately.
platforms/mac/dev-setup.md:40:> Note: Ad-hoc signed apps may trigger security prompts. If the app crashes immediately with "Abort trap 6", see the [Troubleshooting](#troubleshooting) section.
tools/slash-commands.md:32: They run immediately, are stripped before the model sees the message, and the remaining text continues through the normal flow.
tools/slash-commands.md:78: Controls how long bash waits before switching to background mode (0 backgrounds immediately).
tools/slash-commands.md:274: - /model persists the new session model immediately.
tools/slash-commands.md:282: - Fast path: command-only messages from allowlisted senders are handled immediately (bypass queue + model).
tools/slash-commands.md:358:Overrides apply immediately to new config reads, but do not write to openclaw.json. Use /debug reset to clear all overrides and return to the on-disk config.
tools/plugin.md:13:voice, media-understanding, image generation, video generation, web fetch, web
tools/plugin.md:535:explicit install is immediately loadable after restart.
tools/exec-approvals-advanced.md:162:When approvals are required, the exec tool returns immediately with an approval id. Use that id to
tools/thinking.md:125:- Picking another level writes the session override immediately via sessions.patch; it does not wait for the next send and it is not a one-shot thinkingOnce override.
tools/kimi-search.md:84:payload, search_results, or citation URLs. If Kimi stops immediately with a
tools/web-fetch.md:20:call it immediately:
tools/video-generation.md:25:- generate — text-to-video requests with no reference media.
tools/video-generation.md:62:1. OpenClaw submits the request to the provider and immediately returns a task id.
tools/video-generation.md:75:the tool falls back to inline generation and returns the final media path
tools/video-generation.md:78:Generated video files are saved under OpenClaw-managed media storage when
tools/video-generation.md:80:the video media limit, and agents.defaults.mediaMaxMb raises it for
tools/video-generation.md:248:- No reference media → generate
tools/video-generation.md:303:Set agents.defaults.mediaGenerationAutoProviderFallback: false to use
tools/video-generation.md:477:pnpm test:live:media video
tools/video-generation.md:493:pnpm test:live:media video --video-providers fal
tools/video-generation.md:497:transform modes the shared sweep can exercise safely with local media:
tools/subagents.md:78: - The spawn command is non-blocking; it returns a run id immediately.
tools/subagents.md:181: "delete" archives immediately after announce (still keeps the transcript via rename).
tools/subagents.md:278:- cleanup: "delete" archives immediately after announce (still keeps the transcript via rename).
tools/subagents.md:548:- sessions_spawn is always non-blocking: it returns { status: "accepted", runId, childSessionKey } immediately.
tools/music-generation.md:61: the final media path in the tool result.
tools/music-generation.md:178: started/task response immediately, and posts the finished track later in
tools/music-generation.md:242:Set agents.defaults.mediaGenerationAutoProviderFallback: false to use only
tools/music-generation.md:319:pnpm test:live:media music
tools/image-generation.md:12:configured providers. Generated images are delivered automatically as media
tools/image-generation.md:215: agents.defaults.mediaGenerationAutoProviderFallback: false to use only
browser
platforms/android.md:149:no requested scopes. Operator/browser pairing and any role, scope, metadata, or
platforms/linux.md:118:- OpenClaw-launched browser/Chrome processes.
platforms/raspberry-pi.md:176:Then open the printed Dashboard URL in your local browser.
platforms/raspberry-pi.md:294:| Chromium (browser) | ✅ | sudo apt install chromium-browser |
platforms/mac/webchat.md:49:- The UI is optimized for chat sessions (not a full browser sandbox).
platforms/mac/remote.md:32:possible; if you need browser control from that Mac, install/start it with
platforms/mac/remote.md:34:openclaw node run ... in the foreground), then target that browser-capable
platforms/ios.md:63:no requested scopes. Operator/browser pairing and any role, scope, metadata, or
tools/clawhub.md:199: Site base URL (browser login).
tools/clawhub.md:216: clawhub login # browser flow
tools/clawhub.md:225: - --label <label> — label stored for browser login tokens (default: CLI token).
tools/clawhub.md:226: - --no-browser — do not open a browser (requires --token).
tools/plugin.md:242: - browser — bundled browser plugin for the browser tool, openclaw browser CLI, browser.request gateway method, browser runtime, and default browser control service (enabled by default; disable before replacing it)
tools/plugin.md:407:runtime config, workspace, agent/session ids, sandbox policy, browser settings,
tools/plugin.md:524:bundled model providers, bundled speech providers, and the bundled browser
tools/thinking.md:127:- The picker uses thinkingLevels returned by the gateway session row/defaults, with thinkingOptions kept as a legacy label list. The browser UI does not keep its own provider regex list; plugins own model-specific level sets.
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:5: - Seeing overlapping browser/control-ui errors across WSL2 and Windows
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:10:In the common split-host setup, OpenClaw Gateway runs inside WSL2, Chrome runs on Windows, and browser control must cross the WSL2 and Windows boundary. The layered failure pattern from [issue #39369](https://github.com/openclaw/openclaw/issues/39369) means several independent problems can show up at once, which makes the wrong layer look broken first.
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:12:## Choose the right browser mode first
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:18:Use a remote browser profile that points from WSL2 to a Windows Chrome CDP endpoint.
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:24:- you need browser control to cross the WSL2/Windows boundary
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:33:- you want the local signed-in browser state
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:34:- you do not need cross-host browser transport
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:45:- Windows opens the Control UI in a normal browser at http://127.0.0.1:18789/`
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:48:- OpenClaw points a browser profile at the address that is reachable from WSL2
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:58:- the browser profile points at the wrong address
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:115:### Layer 3: Configure the correct browser profile
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:121: browser: {
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:138:- keep attachOnly: true for externally managed browsers
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:141:- use WS(S) only when the browser provider gives you a direct DevTools socket URL
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:154:- you are not debugging a Control UI auth problem as if it were a browser problem
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:160:### Layer 5: Verify end-to-end browser control
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:165:openclaw browser open https://example.com --browser-profile remote
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:166:openclaw browser tabs --browser-profile remote
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:172:- openclaw browser tabs returns the target
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:190: - run openclaw browser stop --browser-profile remote
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:191: - this closes the active control session and releases Playwright/CDP emulation state without restarting the gateway or the external browser
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:201:3. OpenClaw config: does browser.profiles.<name>.cdpUrl use that exact WSL2-reachable address?
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:207:The setup is usually viable. The hard part is that browser transport, Control UI origin security, and token/pairing can each fail independently while looking similar from the user side.
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:217:- [Browser](/tools/browser)
memory
platforms/oracle.md:289:- ~/.openclaw/workspace/ — workspace (SOUL.md, memory, artifacts)
platforms/linux.md:104:runs out of memory. The Gateway can be a poor victim because it owns long-lived
platforms/linux.md:133:This does not replace normal memory tuning. If a VPS or container repeatedly
platforms/linux.md:134:kills children, increase the memory limit, reduce concurrency, or add stronger
platforms/linux.md:135:resource controls such as systemd MemoryMax= or container-level memory limits.
platforms/raspberry-pi.md:93:Swap prevents out-of-memory crashes:
platforms/raspberry-pi.md:257:### Reduce memory usage
platforms/raspberry-pi.md:260:# Disable GPU memory allocation (headless)
platforms/raspberry-pi.md:270:# Check memory
platforms/raspberry-pi.md:352:# Check memory
platforms/mac/peekaboo.md:78:Snapshots are stored in memory and expire automatically after a short window.
platforms/digitalocean.md:188:### Monitor memory
platforms/digitalocean.md:202:- ~/.openclaw/workspace/ — workspace (SOUL.md, memory, etc.)
platforms/digitalocean.md:249:### Out of memory
platforms/digitalocean.md:252:# Check memory
tools/slash-commands.md:223:- /dreaming [on|off|status|help] toggles memory dreaming. See [Dreaming](/concepts/dreaming).
tools/slash-commands.md:345:/debug lets you set runtime-only config overrides (memory, not disk). Owner-only. Disabled by default; enable with commands.debug: true.
tools/lobster.md:209:(repeat daily, no memory of what was triaged)
tools/lobster.md:339:One public example: a “second brain” CLI + Lobster pipelines that manage three Markdown vaults (personal, partner, shared). The CLI emits JSON for stats, inbox listings, and stale scans; Lobster chains those commands into workflows like weekly-review, inbox-triage, memory-consolidation, and shared-task-sync, each with approval gates. AI handles judgment (categorization) when available and falls back to deterministic rules when not.
tools/clawhub.md:354: clawhub package explore "memory" --family code-plugin
tools/plugin.md:229: - memory-core — bundled memory search (default via plugins.slots.memory)
tools/plugin.md:230: - memory-lancedb — LanceDB-backed long-term memory with auto-recall/capture (set plugins.slots.memory = "memory-lancedb")
tools/plugin.md:232: See [Memory LanceDB](/plugins/memory-lancedb) for OpenAI-compatible
tools/plugin.md:273:| slots | Exclusive slot selectors (e.g. memory, contextEngine) |
tools/plugin.md:463: memory: "memory-core", // or "none" to disable
tools/plugin.md:472:| memory | Active memory plugin | memory-core |
tools/index.md:150:| coding | group:fs, group:runtime, group:web, group:sessions, group:memory, cron, image, image_generate, music_generate, video_generate |
tools/index.md:196:| group:memory | memory_search, memory_get |
tools/acp-agents-setup.md:209:OpenClaw plugin tools such as memory recall/store, enable the dedicated bridge:
tools/media-overview.md:120: realtime voice, and memory-embedding surfaces.
tools/media-overview.md:124: batch STT, image media understanding, and memory-embedding surfaces.
install/fly.md:76: memory = "2048mb"
install/fly.md:90: | memory = "2048mb" | 512MB is too small; 2GB recommended |
install/fly.md:283:Fix: Increase memory in fly.toml:
install/fly.md:287: memory = "2048mb"
install/fly.md:293:fly machine update <machine-id> --vm-memory 2048 -y
install/fly.md:374:# Or with memory increase
install/fly.md:375:fly machine update <machine-id> --vm-memory 2048 --command "node dist/index.js gateway --port 3000 --bind lan" -y
install/fly.md:502:- Signal requires Java + signal-cli; use a custom image and keep memory at 2GB+.
install/migrating-hermes.md:4: - You are coming from Hermes and want to keep your model config, prompts, memory, and skills
sessions
platforms/android.md:168:The Android Chat tab supports session selection (default main, plus other existing sessions):
platforms/linux.md:105:sessions and channel connections. OpenClaw therefore biases transient child
platforms/mac/menu-bar.md:13:- Health status is hidden while work is active; it returns when all sessions are idle.
platforms/mac/menu-bar.md:14:- A root “Context” submenu contains recent sessions instead of expanding them directly in the root menu.
platforms/mac/menu-bar.md:90:- Health row reappears once all sessions idle.
platforms/mac/webchat.md:10:agent (with a session switcher for other sessions).
platforms/mac/webchat.md:40: global). The UI can switch between sessions.
platforms/mac/webchat.md:49:- The UI is optimized for chat sessions (not a full browser sandbox).
platforms/mac/voice-overlay.md:19:- Overlay sessions now carry a token per capture (wake-word or push-to-talk). Partial/final/send/dismiss/level updates are dropped when the token doesn’t match, avoiding stale callbacks.
platforms/mac/voice-overlay.md:57:2. Refactor VoiceWakeRuntime to create/update/end sessions instead of touching VoiceWakeOverlayController directly.
platforms/mac/voice-overlay.md:58:3. Refactor VoicePushToTalk to adopt existing sessions and call endCapture on release; apply runtime cooldown.
platforms/mac/voicewake.md:20:- Hard stop: 120s to prevent runaway sessions.
platforms/mac/voicewake.md:21:- Debounce between sessions: 350ms.
platforms/macos.md:150:sessions and credentials.
tools/slash-commands.md:173: - /acp spawn|cancel|steer|close|sessions|status|set-mode|set|cwd|permissions|timeout|model|reset-options|doctor|install|help manages ACP sessions and runtime options.
tools/slash-commands.md:444: - Native commands use isolated sessions:
tools/plugin.md:380:- For proof of the effective session model, use openclaw sessions or the
tools/thinking.md:125:- Picking another level writes the session override immediately via sessions.patch; it does not wait for the next send and it is not a one-shot thinkingOnce override.
tools/browser.md:128:- Prefer profile="user" when existing logged-in sessions matter and the user
tools/browser.md:212:- tabCleanup is best-effort cleanup for tabs opened by primary-agent browser sessions. Subagent, cron, and ACP lifecycle cleanup still closes their explicit tracked tabs at session end; primary sessions keep active tabs reusable, then close idle or excess tracked tabs in the background.
tools/browser.md:754: - In sandboxed sessions, target: "host" requires agents.defaults.sandbox.browser.allowHostControl=true.
tools/browser.md:755: - If target is omitted: sandboxed sessions default to sandbox, non-sandbox sessions default to host.
tools/acp-agents.md:5: - Setting up conversation-bound ACP sessions on messaging channels
tools/acp-agents.md:13:[Agent Client Protocol (ACP)](https://agentclientprotocol.com/) sessions
tools/acp-agents.md:24:/acp ... controls and sessions_spawn({ runtime: "acp" }) sessions.
tools/acp-agents.md:36:| Run Claude Code, Gemini CLI, explicit Codex ACP, or another external harness _through_ OpenClaw | This page | Chat-bound sessions, /acp spawn, sessions_spawn({ runtime: "acp" }), background tasks, runtime controls |
tools/acp-agents.md:56:sessions_spawn ACP guidance stay hidden so the agent does not suggest
tools/acp-agents.md:82: - Permission mode matches the work. Non-interactive sessions cannot click native permission prompts, so write/exec-heavy coding runs usually need an ACPX permission profile that can proceed headlessly.
tools/acp-agents.md:95:or sessions_spawn({ runtime: "acp", agentId: "<id>" }) targets:
tools/acp-agents.md:151: - Parent-owned ACP sessions are treated as background work even when the runtime session is persistent; completion and cross-surface delivery go through the parent task notifier rather than acting like a normal user-facing chat session.
tools/acp-agents.md:152: - Task maintenance closes terminal or orphaned parent-owned one-shot ACP sessions. Persistent ACP sessions are preserved while an active conversation binding remains; stale persistent sessions without an active binding are closed so they cannot be silently resumed after the owning task is done or its task record is gone.
tools/acp-agents.md:157: - Idle runtime workers are eligible for cleanup after acp.runtime.ttlMinutes; stored session metadata remains available for /acp sessions.
tools/acp-agents.md:204: For sessions_spawn, runtime: "acp" is advertised only when ACP
tools/acp-agents.md:208: sessions_spawn({ runtime: "acp" }) calls. It targets ACP harness ids such as codex,
tools/acp-agents.md:231:| Spawn tool | sessions_spawn with runtime:"acp" | sessions_spawn (default runtime) |
tools/acp-agents.md:252:- Want /acp spawn, bindable sessions, runtime controls, or persistent harness work? Use ACP.
tools/acp-agents.md:255:## Bound sessions
tools/acp-agents.md:292: <Accordion title="Thread-bound sessions">
tools/acp-agents.md:304: - acp.dispatch.enabled is on by default (set false to pause automatic ACP thread dispatch; explicit sessions_spawn({ runtime: "acp" }) calls still work).
tools/acp-agents.md:367:Override precedence for ACP bound sessions:
recovery
platforms/raspberry-pi.md:254:How Restart= policies help automated recovery:
platforms/raspberry-pi.md:255:[systemd can automate service recovery](https://www.redhat.com/en/blog/systemd-automate-recovery).
platforms/mac/signing.md:34:When signing with SIGN_IDENTITY="-" (ad-hoc), the script automatically disables the Hardened Runtime (--options runtime). This is necessary to prevent crashes when the app attempts to load embedded frameworks (like Sparkle) that do not share the same Team ID. Ad-hoc signatures also break TCC permission persistence; see [macOS permissions](/platforms/mac/permissions) for recovery steps.
tools/clawhub.md:148:| Owner recovery dashboard | Publishers can see scan-held owned content from /dashboard. |
tools/clawhub.md:149:| Owner-requested rescans | Owners can request limited rescans for false-positive recovery. |
tools/plugin.md:99:openclaw doctor --fix. The only recovery exception is a narrow bundled-plugin
tools/browser.md:27: stable-tab, stale-ref, and manual-blocker recovery loop when the browser
tools/subagents.md:507:## Liveness and recovery
tools/subagents.md:517:orphan recovery flow, which sends a synthetic resume message before
tools/subagents.md:520:Automatic restart recovery is bounded per child session. If the same
tools/subagents.md:521:sub-agent child is accepted for orphan recovery repeatedly inside the
tools/subagents.md:522:rapid re-wedge window, OpenClaw persists a recovery tombstone on that
tools/subagents.md:525:openclaw doctor --fix to clear stale aborted recovery flags on
install/updating.md:84:To pin the recovery to a specific version or dist-tag, add --version:
install/updating.md:165:For downgrade or incident recovery, set OPENCLAW_NO_AUTO_UPDATE=1 in the gateway environment to block automatic applies even when update.auto.enabled is configured. Startup update hints can still run unless update.checkOnStart is also disabled.
install/hetzner.md:269:This approach complements the Docker setup above with reproducible deployments, version-controlled infrastructure, and automated disaster recovery.
install/migrating.md:130:- [Matrix migration](/channels/matrix-migration): encrypted-state recovery limits, automatic snapshot behavior, and manual recovery commands.
vps.md:128:How Restart= policies help automated recovery:
vps.md:129:[systemd can automate service recovery](https://www.redhat.com/en/blog/systemd-automate-recovery).
nodes/troubleshooting.md:99:## Fast recovery loop
plugins/sdk-setup.md:191: allowInvalidConfigRecovery is not a general bypass for broken configs. It is for narrow bundled-plugin recovery only, so reinstall/setup can repair known upgrade leftovers like a missing bundled plugin path or stale channels.<id> entry for that same plugin. If config is broken for unrelated reasons, install still fails closed and tells the operator to run openclaw doctor --fix.
plugins/manifest.md:1173:| openclaw.install.allowInvalidConfigRecovery | Allows a narrow bundled-plugin reinstall recovery path when config is invalid. |
plugins/architecture-internals.md:288:| 29 | buildMissingAuthMessage | Replacement for the generic missing-auth recovery message | Provider needs a provider-specific missing-auth recovery hint |
web/dashboard.md:90:- For token drift repair steps, follow [Token drift recovery checklist](/cli/devices#token-drift-recovery-checklist).
web/webchat.md:31:- Workspace startup files and pending BOOTSTRAP.md instructions are supplied through the agent system prompt's Project Context, not copied into the WebChat user message. Bootstrap truncation only adds a concise system-prompt recovery notice; detailed counts and config knobs stay on diagnostic surfaces.
providers/openai.md:321: ### Catalog recovery
cli/doctor.md:51:- Doctor cleans legacy plugin dependency staging state created by older OpenClaw versions. It also repairs missing downloadable plugins that are referenced by config, such as plugins.entries, configured channels, configured provider/search settings, or configured agent runtimes. During package updates, doctor skips package-manager plugin repair until the package swap is complete; rerun openclaw doctor --fix afterward if a configured plugin still needs recovery. If the download fails, doctor reports the install error and preserves the configured plugin entry for the next repair attempt.
cli/devices.md:158:## Token drift recovery checklist
cli/devices.md:193:- Trusted AUTH_TOKEN_MISMATCH recovery can temporarily send both the shared token and the stored device token together for the one bounded retry.
cli/config.md:444:Whole-file recovery is reserved for doctor repair. Plugin schema changes or minHostVersion skew stay loud instead of rolling back unrelated user settings such as models, providers, auth profiles, channels, gateway exposure, tools, memory, browser, or cron config.
cli/plugins.md:110: If config is invalid during install, plugins install normally fails closed and tells you to run openclaw doctor --fix first. During Gateway startup and hot reload, invalid plugin config fails closed like any other invalid config; openclaw doctor --fix can quarantine the invalid plugin entry. The only documented install-time exception is a narrow bundled-plugin recovery path for plugins that explicitly opt into openclaw.install.allowInvalidConfigRecovery.
cli/plugins.md:393:OPENCLAW_DISABLE_PERSISTED_PLUGIN_REGISTRY=1 is a deprecated break-glass compatibility switch for registry read failures. Prefer plugins registry --refresh or openclaw doctor --fix; the env fallback is only for emergency startup recovery while the migration rolls out.
cli/update.md:122:job directly, so update recovery does not immediately kickstart -k the newly
cli/backup.md:65:openclaw backup intentionally bypasses the normal config preflight so it can still help during recovery. Because workspace discovery depends on a valid config, openclaw backup create now fails fast when the config file exists but is invalid and workspace backup is still enabled.
concepts/qa-matrix.md:74:| e2ee-deep | Exhaustive E2EE state-loss, backup, key, and recovery scenarios. |
concepts/qa-matrix.md:92:- E2EE — matrix-e2ee-* (basic reply, thread follow-up, bootstrap, recovery key lifecycle, state-loss variants, server backup behavior, device hygiene, SAS / QR / DM verification, restart, artifact redaction)
concepts/qa-matrix.md:93:- E2EE CLI — matrix-e2ee-cli-* (encryption setup, idempotent setup, bootstrap failure, recovery-key lifecycle, multi-account, gateway-reply round-trip, self-verification)
concepts/qa-matrix.md:104:| OPENCLAW_QA_MATRIX_CLEANUP_TIMEOUT_MS | 90000 | Bound for Docker teardown. Failure surfaces include the recovery docker compose ... down --remove-orphans command. |
concepts/qa-matrix.md:125:- Cleanup error: look for the printed recovery command (a docker compose ... down --remove-orphans invocation) and run it manually to release the homeserver port.
concepts/context-engine.md:233: The engine owns compaction behavior. OpenClaw disables Pi's built-in auto-compaction for that run, and the engine's compact() implementation is responsible for /compact, overflow recovery compaction, and any proactive compaction it wants to do in afterTurn(). OpenClaw may still run the pre-prompt overflow safeguard; when it predicts the full transcript will overflow, the recovery path calls the active engine's compact() before submitting another prompt.
security
platforms/oracle.md:183:This setup often removes the _need_ for extra host-based firewall rules purely to stop Internet-wide SSH brute force — but you should still keep the OS updated, run openclaw security audit, and verify you aren’t accidentally listening on public interfaces.
platforms/oracle.md:199:- Security audit: openclaw security audit
platforms/oracle.md:203:### Verify security posture
platforms/mac/dev-setup.md:40:> Note: Ad-hoc signed apps may trigger security prompts. If the app crashes immediately with "Abort trap 6", see the [Troubleshooting](#troubleshooting) section.
platforms/mac/remote.md:73:- See [Security](/gateway/security) and [Tailscale](/gateway/tailscale).
platforms/macos.md:90: "security": "deny",
platforms/macos.md:95: "security": "allowlist",
network.md:2:summary: "Network hub: gateway surfaces, pairing, discovery, and security"
network.md:4: - You need the network architecture + security overview
network.md:66:- [Security overview](/gateway/security)
tools/slash-commands.md:144: - /exec host=<auto|sandbox|gateway|node> security=<deny|allowlist|full> ask=<off|on-miss|always> node=<id> shows or sets exec defaults.
tools/clawhub.md:161: ClawHub runs automated security checks on published skills and plugin
tools/exec-approvals.md:87: "security": "deny",
tools/exec-approvals.md:94: "security": "allowlist",
tools/exec-approvals.md:116:### exec.security
tools/exec-approvals.md:118:<ParamField path="security" type='"deny" | "allowlist" | "full"'>
tools/exec-approvals.md:179:| tools.exec.security | full on gateway/node |
tools/exec-approvals.md:187:- YOLO chooses how host exec is approved: security=full plus ask=off.
tools/exec-approvals.md:210: openclaw config set tools.exec.security full
tools/exec-approvals.md:221: security: "full",
tools/exec-approvals.md:239:- Local tools.exec.host/security/ask.
tools/exec-approvals.md:255: security: "full",
tools/exec-approvals.md:274:- /exec security=full ask=off changes only the current session.
tools/exec-approvals.md:395:- /exec security=full is a session-level convenience for authorized operators and skips approvals by design. To hard-block host exec, set approvals security to deny or deny the exec tool via tool policy.
tools/exec-approvals.md:412: <Card title="Security" href="/gateway/security" icon="lock">
tools/plugin.md:137:security pins that protect the packaged host also apply to hoisted external
tools/exec-approvals-advanced.md:119:- openclaw security audit warns with tools.exec.safe_bins_interpreter_unprofiled when interpreter/runtime bins appear in safeBins without explicit profiles.
tools/browser-wsl2-windows-remote-cdp-troubleshooting.md:207:The setup is usually viable. The hard part is that browser transport, Control UI origin security, and token/pairing can each fail independently while looking similar from the user side.
tools/browser.md:764:- [Security](/gateway/security) — browser control risks and hardening
tools/skills.md:145:ClawHub skill pages expose the latest security scan state before install,
tools/skills.md:164:For a broader threat model and checklists, see [Security](/gateway/security).
tools/skills.md:432:system.run allowed (Exec approvals security not set to deny),
tools/index.md:100:The tool also refuses to change tools.exec.ask or tools.exec.security;
tools/diffs.md:341:<ParamField path="security.allowRemoteViewer" type="boolean" default="false">
tools/diffs.md:352: security: {
tools/diffs.md:472: - intentionally enable security.allowRemoteViewer and set plugin viewerBaseUrl or pass a proxy/public baseUrl when you need a shareable viewer URL
tools/diffs.md:473: - Enable security.allowRemoteViewer only when you intend external viewer access.
tools/browser-control.md:377:- [Browser](/tools/browser) — overview, configuration, profiles, security
tools/exec.md:47:<ParamField path="security" type="'deny' | 'allowlist' | 'full'">
tools/exec.md:60:Request elevated mode — escape the sandbox onto the configured host path. security=full is forced only when elevated resolves to full.
standing
tools/plugin.md:5: - Understanding plugin discovery and load rules
tools/plugin.md:13:voice, media-understanding, image generation, video generation, web fetch, web
tools/plugin.md:655:| registerMediaUnderstandingProvider | Image/audio analysis |
tools/video-generation.md:6: - Understanding the video_generate tool parameters
tools/music-generation.md:6: - Understanding the music_generate tool parameters
tools/image-generation.md:6: - Understanding the image_generate tool parameters
tools/skills.md:6: - Understanding skill precedence and snapshot behavior
tools/index.md:41: realtime voice, media understanding, image generation, video generation,
tools/web.md:395:| enable_image_understanding | Let xAI inspect images attached to matching posts |
tools/web.md:396:| enable_video_understanding | Let xAI inspect videos attached to matching posts |
tools/elevated.md:5: - Understanding how sandboxed agents can access the host
tools/media-overview.md:2:summary: "Image, video, music, speech, and media-understanding capabilities at a glance"
tools/media-overview.md:6: - Understanding how async media generation works
tools/media-overview.md:36: <Card title="Media understanding" href="/nodes/media-understanding" icon="eye">
tools/media-overview.md:38: providers and dedicated media-understanding plugins.
tools/media-overview.md:48:| Provider | Image | Video | Music | TTS | STT | Realtime voice | Media understanding |
tools/media-overview.md:74:Media understanding uses any vision-capable or audio-capable model registered
tools/media-overview.md:76:media-understanding support; most multimodal LLM providers (Anthropic, Google,
tools/media-overview.md:104:media-understanding pass reuses that transcript instead of making a second
tools/media-overview.md:116: media-understanding surfaces.
tools/media-overview.md:124: batch STT, image media understanding, and memory-embedding surfaces.
tools/media-overview.md:143:- [Media understanding](/nodes/media-understanding)
tools/reactions.md:5: - Understanding how emoji reactions differ across platforms
install/gcp.md:407:See [https://cloud.google.com/iam/docs/understanding-roles](https://cloud.google.com/iam/docs/understanding-roles) for IAM role details.
install/render.mdx:29:## Understanding the Blueprint
nodes/images.md:48:- Media understanding (if configured via tools.media.* or shared tools.media.models) runs before templating and can insert [Image], [Audio], and [Video] blocks into Body.
nodes/images.md:62:Media understanding caps (transcription/description)
nodes/images.md:67:- Oversize media skips understanding, but replies still go through with the original body.
nodes/images.md:78:- [Media understanding](/nodes/media-understanding)
nodes/camera.md:165:- [Media understanding](/nodes/media-understanding)
nodes/audio.md:12:- Media understanding (audio): If audio understanding is enabled (or auto‑detected), OpenClaw:
nodes/audio.md:26:1. Active reply model when its provider supports audio understanding.
nodes/audio.md:211:- Preflight transcription only processes the first audio attachment for mention detection. Additional audio is processed during the main media understanding phase.
nodes/audio.md:215:- [Media understanding](/nodes/media-understanding)
nodes/talk.md:117:- [Media understanding](/nodes/media-understanding)
nodes/voicewake.md:93:- [Media understanding](/nodes/media-understanding)
nodes/media-understanding.md:2:summary: "Inbound image/audio/video understanding (optional) with provider + CLI fallbacks"
nodes/media-understanding.md:4: - Designing or refactoring media understanding
nodes/media-understanding.md:6:title: "Media understanding"
nodes/media-understanding.md:7:sidebarTitle: "Media understanding"