/breaking

Prevented worker rejections from breaking the TUI process.

Core Bugfixes: Dynamically added MCP servers now disconnect cleanly when removed.

Core Bugfixes: Dynamically added MCP servers now disconnect cleanly when removed.

Safer release and network boundaries: SSH tunnel preflight is loopback-scoped, device-backed node pairings are removed, volatile SQLite state is su... | Apps and platform support: iOS notification cleanup, the single-target Watch migration, Android intent grouping, native macOS file panels, and expl... | Security and bounded input handling: SSH tunnel checks stay on loopback, unsafe chat/tool/package/response lengths are rejected, device-backed pair... | Provider, auth, and migration repair: CLI-owned transports skip the wrong auth gate, compaction aliases resolve canonically, legacy Codex routes ar... | PR #94746 fix(note): prevent clack from re-breaking copy-sensitive tokens. Related #94730. Thanks @xzh-icenter and @berkgungor.

Storage and migrations: avoid SQLite WAL on network filesystems, clean reindex artifacts, keep setup state out of workspace dot-directories, and im... | PR #92954 fix(memory): accept local default model path migration. Thanks @mushuiyu886 and @vincentkoc. | PR #93118 fix(gateway): guard fast-path startup migrations. Related #93032. Thanks @openperf and @Haderach-Ram. | PR #89260 fix(doctor): separate platform-incompatible skills from missing requirements. Related #89232. Thanks @Alix-007 and @CameronWeller. | PR #93880 fix(macos): preserve approvals migration data. Thanks @vincentkoc.

Removed the agent-callable send_message tool; coding-context posture across CLI/TUI/desktop/ACP; read_file extracts .ipynb/.docx/.xlsx to text (#47...

Storage and migrations: avoid SQLite WAL on network filesystems, clean reindex artifacts, keep setup state out of workspace dot-directories, and im... | PR #92954 fix(memory): accept local default model path migration. Thanks @mushuiyu886 and @vincentkoc. | PR #93118 fix(gateway): guard fast-path startup migrations. Related #93032. Thanks @openperf and @Haderach-Ram. | PR #89260 fix(doctor): separate platform-incompatible skills from missing requirements. Related #89232. Thanks @Alix-007 and @CameronWeller. | PR #93880 fix(macos): preserve approvals migration data. Thanks @vincentkoc.

Added a warning when the requested model is deprecated or automatically updated to a newer model, shown on stderr in print mode (-p) and now also c... | Removed the startup "setup issues" line under the logo — run /doctor to see configuration issues or use --debug

#11238 fb2db2e - Allow reasoning to be removed from custom provider models after it has been enabled.

Fixed a repeating "an image in the conversation could not be processed and was removed" error when the conversation contained multiple images

Deprecated reference config entries continue to load under the newer references config key.

Added /cd command to move a session to a new working directory without breaking the prompt cache mid-session

Removed (redundant / dead): spotify (→ Spotify plugin's 7 native tools), linear (→ hermes mcp install linear), kanban-codex-lane, debugging-hermes-...

Agents/Codex/providers/models: release session write locks when prompt-release fence reads fail, retire abandoned Codex app-server startups, keep s... | Plugins/auth: keep Hermes migration reports pointed at SQLite auth-profile stores.

Fixed cross-session messaging (SendMessage) silently breaking when CLAUDE_CODE_TMPDIR or $TMPDIR points at a deep directory | Removed the "Claude in Chrome enabled" and "marketplace installed" startup messages; model auto-updates and the team-onboarding tip now show as qui...

Plugins: clarify plugin loader failure guidance and treat soft plugin repair warnings as nonfatal so missing or incompatible plugin packages point ... | Cron: keep SQLite cron migrations compatible with legacy run-log tables, archived job stores, diagnostic cron names, single-job run-history names, ... | Providers: resolve Google defaults to google-generative-ai, register Vertex static catalog rows and gemini-3.1-flash-lite, align Foundry reasoning ... | PR #89281 fix: repeat doctor state migration repairs. Thanks @RomneyDa.

Plugins: clarify plugin loader failure guidance and treat soft plugin repair warnings as nonfatal so missing or incompatible plugin packages point ... | Cron: keep SQLite cron migrations compatible with legacy run-log tables, archived job stores, diagnostic cron names, single-job run-history names, ... | Providers: resolve Google defaults to google-generative-ai, register Vertex static catalog rows and gemini-3.1-flash-lite, align Foundry reasoning ... | PR #89281 fix: repeat doctor state migration repairs. Thanks @RomneyDa.

Removed CLAUDE_CODE_OPUS_4_6_FAST_MODE_OVERRIDE; the environment variable is now a no-op | Removed the JetBrains plugin install suggestion from startup

Plugins: clarify plugin loader failure guidance and treat soft plugin repair warnings as nonfatal so missing or incompatible plugin packages point ... | Cron: keep SQLite cron migrations compatible with legacy run-log tables, archived job stores, diagnostic cron names, single-job run-history names, ... | Providers: resolve Google defaults to google-generative-ai, register Vertex static catalog rows and gemini-3.1-flash-lite, align Foundry reasoning ... | PR #89281 fix: repeat doctor state migration repairs. Thanks @RomneyDa.

Plugins: clarify plugin loader failure guidance and treat soft plugin repair warnings as nonfatal so missing or incompatible plugin packages point ... | Cron: keep SQLite cron migrations compatible with legacy run-log tables, archived job stores, diagnostic cron names, single-job run-history names, ... | Providers: resolve Google defaults to google-generative-ai, register Vertex static catalog rows and gemini-3.1-flash-lite, align Foundry reasoning ... | PR #89281 fix: repeat doctor state migration repairs. Thanks @RomneyDa.

CLI/auth/doctor/providers: reject malformed numeric/timeout/subcommand-version inputs, ignore workspace dotenv provider credentials, wait for respa... | Docker/release/QA: package runtime workspace templates, stream cross-OS served artifacts, preserve sparse Crabbox run artifacts, isolate npm plugin...

Removed the "bash commands will be sandboxed" startup banner — sandbox status still shows in /status and when a command is blocked | Removed the "/ide for …" startup hint toast

Dynamically added MCP servers now disconnect cleanly when removed.

Provider rename — Alibaba Cloud → Qwen Cloud — The Alibaba Cloud provider is renamed to Qwen Cloud in the picker and config to match what the rest ... | Codex-runtime: skip unavailable plugins during migration (#25437)

docs(app): stale reference to removed multi-edit tool (#27579)

Let invalid small_model config values fall back cleanly instead of breaking small-model selection.

Index tool_name + tool_calls in FTS5, with repair + migration (salvages #16866) (#16914) | Hardened OpenClaw import — plan-first apply, redaction, pre-migration backup (#16911) | FTS5 search — tool_name + tool_calls indexing with repair + migration (#16914) | Hooks tutorial — build a BOOT.md startup checklist (replaces the removed built-in hook) (#17202) | BOOT.md built-in hook removed (#17093); the hooks tutorial (#17202) shows how to build the same workflow yourself with a shell hook

/steer — mid-run agent nudges — /steer <prompt> injects a note that the running agent sees after its next tool call, without interrupting the turn ... | Website removed Discussions link from README

Unnecessary members intent removed on startup + token lock leak fix (#5302) | Doctor diagnostics — sync provider checks, config migration, WAL and mem0 diagnostics (#5077) | Stale test skips removed, regex backtracking, file search bug, and test flakiness (#4969) | browser_close tool removed — auto-cleanup handles it (#5792)

Non-deprecated HTTP transport — switched from sse_client to streamable_http_client (#3646) | OpenClaw migration model config overwrite — migration no longer overwrites model config dict with a string (#3924) — @0xbyt4 | OpenClaw migration expanded — covers full data footprint including sessions, cron, memory (#3869) | Comprehensive OpenClaw migration guide — step-by-step guide for migrating from OpenClaw/Claw3D to Hermes Agent (#3864, #3900) | @0xbyt4 — 1 PR: OpenClaw migration model config fix (#3924)

Supply chain hardening — Removed compromised litellm dependency, pinned all dependency version ranges, regenerated uv.lock with hashes, added CI wo... | Removed /model slash command from CLI and gateway in favor of hermes model subcommand (#3080) | OpenClaw migration overwrites defaults and setup wizard skips imported sections — fixed (#3282) | G0DM0D3 godmode jailbreaking skill + docs (#3157) | OpenClaw migration v2 — 17 new modules, terminal recap for migrating from OpenClaw to Hermes (#2906)

Fix: resolve merge conflict markers in cli.py breaking startup (#2347) | @rovle (Lovre Pešut) — Daytona sandbox API migration (#2063)

OpenClaw migration during first-time setup — by @kshitijk4poor (#981) | hermes claw migrate command + migration docs (#1059) | Terminal subprocesses inheriting OPENAI_BASE_URL breaking external tools (Issue #1002, #1399) | @kshitijk4poor (1 PR) — OpenClaw migration during setup wizard