NEW OpenClaw Update is HUGE!
Video summary
Companion notes
OpenClaw 2.26 is a cron-job fix dump, not a feature release — and that matters.
The four cron bugs are (mostly) gone
The creator's top pain point: cron jobs firing twice, blocking each other when run in parallel, hanging forever on manual trigger, and slowly drifting off schedule after 2–3 weeks. The 2.26 patch lands queue drain reliability (no more silent failures on restart), raises the safety timeout past the old 10-minute cap, and fixes /stop so Discord backlogs don't bleed into the wrong session — the creator says his news channel was contaminating his trading channel.
External secrets management is the headline
API keys in plain text config files are now a solvable problem. Four new commands: audit (scan exposed secrets), configure (set references), apply (activate at runtime), reload (hot reload without restarting the gateway). If you run OpenClaw on a VPS or shared server, this is the change that actually moves the needle on your attack surface.
ACP threadbound agents + memory fix for non-English users
Discord and Telegram get proper agent lifecycle handling — startup, cleanup, reconnections, coalesced thread replies. Memory embeddings add Mistral as a provider, fixing semantic search for Spanish, Portuguese, Japanese, Korean, and Arabic. The creator is openly skeptical and wants users to test whether QMD search actually works outside English.
Smaller fixes and one breaking change to watch
Config get now redacts sensitive values (no more API keys in screenshots), voice endpoints get rate limiting, and the typing-indicator ghost bug — agent showing typing… after it already replied — is fixed. Tool failure replies now hide raw errors unless you pass /verbose — that's your breaking change to watch.
Platform notes
Synology NAS gets a native plugin (no more Docker), Android gets device status notifications, and a new opt-in auto-updater ships with stable channel delayed + jittered rollouts. Creator's call: keep it off in production, fine for dev.
Migration warnings
If you're on multi-sender DM scope or device auth v1, read the migration docs before updating — the v1 path is removed entirely.
Watch on YouTube
Prefer the native player? Open it on YouTube: https://www.youtube.com/watch?v=xGFzVdp3Ch0
