OpenClaw v2026.6.6 Stable Release Lands with Major Security Hardening

OpenClaw v2026.6.6 landed June 12 as a stable release with significant breaking changes focused on security. Key improvements include substantially tighter security boundaries across transcripts, sandbox binds, host environment inheritance, MCP stdio connections, Codex HTTP access, native search policy, and elevated sender checks.

On the reliability side, the release improves agent and Gateway recovery across interrupted tool calls, stale session bindings, compaction handoffs, and media delivery retries. Channels and mobile delivery are steadier across Telegram, WhatsApp, iMessage, Slack, Discord, Microsoft Teams, Google Chat, Google Meet, and iOS realtime Talk.

Provider and plugin requests now have bounded timers and retries across OAuth/device-code lifetimes, media downloads, local service probes, and generated-content polling paths — preventing hangs on hot paths.

Beta releases v2026.6.7-beta.1 and v2026.6.8-beta.1 followed on June 13, adding richer Telegram structured content (tables, lists, expandable blockquotes), WhatsApp ACP binding support, expanded model coverage including GLM-5.2 and Claude Haiku 4.5, and UI improvements for workspace file collapse, WebChat backscroll, and session picker behavior.