v1.1.0

Highlights

What's New

• Kubernetes-Native Architecture — HiClaw now runs on a Kubernetes-native control plane. The hiclaw-controller replaces the legacy single-container model with a proper controller-reconciler architecture: a lightweight embedded kube-apiserver + kine backs CRD storage, and the controller reconciles Worker/Team/Manager/Human CRs into containers, Matrix rooms, and gateway routes. In embedded mode (hiclaw-controller container + separate hiclaw-manager container), no external Kubernetes cluster is required. For enterprise deployments, the same controller runs inside a real Kubernetes cluster via the official Helm chart (helm/hiclaw/), with leader election for HA, RBAC, PVC-backed storage, and pod-template overlays for nodeSelector/tolerations/imagePullSecrets.

• Hermes Worker Runtime (Autonomous Coding Agent) — HiClaw now supports hermes-agent as a first-class Worker runtime for autonomous coding tasks. Hermes Workers bring the full power of a self-directed coding agent: terminal sandbox execution, multi-file code generation, debugging, vision-based analysis, and native mautrix Matrix integration — all running inside an isolated container. Unlike the agent (Node.js) and QwenPaw (Python) runtimes that handle conversation and tool calls, Hermes operates as an autonomous coding agent that can independently plan, execute, and iterate on complex software tasks. The installer offers all three runtimes interactively, and workers can switch runtime in place via hiclaw update worker --runtime hermes (container is recreated; Matrix account, rooms, credentials, and MinIO data are preserved). Multi-agent collaboration is fully supported — Hermes Workers participate in team projects alongside agent and QwenPaw Workers, with cross-runtime m.mentions message delivery and autonomous YOLO mode for unattended execution.

• Enterprise-Grade Kubernetes Deployment (Helm Chart) — First-class Helm chart for deploying HiClaw on production Kubernetes clusters. The chart provisions Tuwunel (Matrix homeserver), MinIO (object storage), Element Web (IM client), and the hiclaw-controller as separate Deployments/StatefulSets with proper Service, RBAC, and Secret resources. Key enterprise features:

  • Leader Election: Controller supports multi-replica HA with lease-based leader election — only one instance reconciles at a time, failover is automatic.
  • Agent Pod Template: Inject cluster-specific concerns (nodeSelectors, tolerations, imagePullSecrets, annotations, sysctls) into agent Pods via a ConfigMap overlay, without modifying controller code.
  • Multi-Tenancy: Pluggable credential provider sidecar (hiclaw-credential-provider) for gateway and storage backends. Per-worker accessEntries in CRDs scope object-storage paths, supporting tenant isolation.
  • CRD-Based Resource Management: kubectl / hiclaw CLI interchangeable — Workers, Teams, Humans, and Managers are all standard CRDs with short names (wk, tm, hm, mgr), kubectl get workers works natively.

• Pluggable Gateway & Storage Providers — The controller now delegates gateway (Higress) and storage (MinIO/OSS) operations through provider interfaces, with a new hiclaw-credential-provider sidecar that handles STS token issuance, secret rotation, and per-worker access-policy enforcement. Deployments can plug in Alibaba Cloud OSS, AWS S3, or any S3-compatible backend without changing controller code.

• Multi-Container Architecture — The Manager image no longer bundles Higress, Tuwunel, MinIO, or Element Web. Infrastructure services run exclusively in the hiclaw-embedded image (controller container), and the Manager is a lightweight agent-only container (~1.7 GB smaller). This enables independent scaling, restart isolation, and clean separation of concerns.

• OpenClaw 2026.4.x Upgrade & 1.7 GB Image Shrink — Upgraded the bundled OpenClaw engine to hiclaw-2026.4.14, bringing Matrix private-network SSRF fixes, structured Matrix debug logging (HICLAW_MATRIX_DEBUG=1), and the gateway Control UI port unification. The openclaw-base image was rebased from higress/all-in-one (~1.79 GB) onto higress/ubuntu:24.04 (~103 MB), shrinking every downstream image (manager, worker, copaw-worker, hermes-worker) by approximately 1.7 GB. Key compatibility fixes included: pinning gateway.bind = "lan" for cross-container access, autoJoin = "always" for reliable Matrix room joins, and dangerouslyAllowPrivateNetwork = true for the embedded homeserver's FQDN-over-loopback setup.

• Auto-Migrate from v1.0.9 — Upgrading from v1.0.9 automatically migrates workers-registry.json data to CRD resources. Worker runtime, model, skills, MCP servers, and team membership are all preserved. The controller detects legacy state on first boot and creates matching Worker/Team CRs.

• hiclaw CLI in Controller Container — The hiclaw CLI is pre-installed and auto-authenticated inside the controller container. Admins can docker exec -it hiclaw-controller hiclaw get workers to inspect or manage resources without going through the Manager Agent. Supports create, get, update, delete, apply, worker wake/sleep/status, status, and version commands.

• Declarative Worker Lifecycle (spec.state) — Workers now support spec.state: running | stopped in their CRD. Setting state: stopped (or hiclaw worker sleep) gracefully stops the container while preserving all state; setting state: running (or hiclaw worker wake) restarts it. The Manager uses this for idle-timeout auto-sleep and on-demand wake.

• First-Boot Welcome Prompt — Fresh installs now deliver a welcome/onboarding prompt to the Admin DM automatically, even in embedded mode. The controller gates delivery on both Matrix room membership and LLM auth readiness (end-to-end probe), so the Manager never receives a message it cannot answer. The installer blocks until the welcome is delivered, providing a seamless first-run experience.

• Installer Improvements — Interactive Hermes runtime selection, masked secret input, version selection, uninstall subcommand (hiclaw-install.sh uninstall), and fail-fast on missing embedded image (no more silent fallback to broken legacy path).

Bug Fixes

• Fixed controller rotating Matrix access tokens and gateway secrets on every 5-minute reconcile, which triggered agent gateway restarts and dropped in-flight messages. Tokens are now persisted and reused across reconciles.

• Fixed YOLO mode not propagating across the controller→manager boundary in embedded mode, causing multi-worker project creation to stall waiting for unreachable admin confirmation.

• Fixed hiclaw create worker / hiclaw apply worker ignoring the admin's install-time default model (HICLAW_DEFAULT_MODEL), silently overriding it with qwen3.5-plus for every spawned Worker.

• Fixed HICLAW_DEFAULT_WORKER_RUNTIME being dead code — CRD schema-level defaults caused the API server to fill spec.runtime=openclaw before the controller ever saw the empty value. Removed CRD defaults and introduced proper env-var fallback resolution.

• Fixed CoPaw Manager's create-worker DM reply blocking for >5 minutes due to runtime-aware post-creation flow. CoPaw now uses --no-wait + deferred heartbeat drain for reliable acknowledgment.

• Fixed Hermes workers not joining their Matrix room — the controller now issues a server-side JoinRoom after room creation, independent of runtime-specific auto-accept behavior.

• Fixed hiclaw apply worker --zip ignoring the worker runtime from manifest.json, always defaulting to openclaw.

• Fixed AI-route allowedConsumers being wiped on controller restart, transiently locking Manager/Workers out with 403s.

• Fixed stale AGENTS.md / SOUL.md / HEARTBEAT.md being re-pushed by the mirror during reconcile, overwriting correctly-merged versions. These files are now excluded from the mirror and managed by their dedicated authoritative writers.

• Fixed Higress WASM plugin-server not starting, causing LLM requests to return 404 from the backend.

• Fixed OpenClaw Control UI inaccessible at port 18888 after the openclaw 2026.4.x upgrade (port unification, bind exposure, and browser auth gate changes).

• Fixed openclaw matrix channel restart race when groupAllowFrom was updated concurrently with outbound sends (e.g., during worker provisioning).

• Fixed matrix.autoJoin defaulting to "off" in openclaw 2026.4.x, causing agents to sit in invite state forever and never process room events.

• Fixed uninstall not removing the hiclaw-controller container, leaving the Docker volume occupied and old state persisting across reinstalls.

• Fixed team workers losing their runtime during v1.0.9→CR migration, silently restarting as openclaw regardless of original runtime.

• Fixed Hermes worker multi-agent collaboration: outbound m.mentions.user_ids for cross-runtime message delivery, HERMES_YOLO_MODE=1 for autonomous container execution, and MATRIX_HOME_CHANNEL=disabled to suppress noise.

• Fixed Manager openclaw.json using userId=@default instead of userId=@manager, silently dropping all admin DM messages.

• Fixed Manager image size by rebasing openclaw-base from higress/all-in-one:2.2.1 (~1.79 GB) to higress/ubuntu:24.04 (~103 MB), shrinking all downstream images by ~1.7 GB.

新增功能

• Kubernetes 原生架构 — HiClaw 现在运行在 Kubernetes 原生控制平面之上。hiclaw-controller 取代了旧版单容器模式，采用标准的 Controller-Reconciler 架构：内嵌轻量级 kube-apiserver + kine 存储 CRD 数据，Controller 将 Worker/Team/Manager/Human CR 协调为容器、Matrix 房间和网关路由。在 Embedded 模式下（hiclaw-controller 容器 + 独立 hiclaw-manager 容器），无需外部 Kubernetes 集群。对于企业级部署，同一 Controller 可通过官方 Helm Chart（helm/hiclaw/）运行在真正的 Kubernetes 集群中，支持 Leader Election 高可用、RBAC、PVC 持久化存储以及 Pod 模板叠加。
• Hermes Worker 运行时（自主编程 Agent） — HiClaw 现在支持将 hermes-agent 作为一等公民的 Worker 运行时，用于自主编程任务。Hermes Worker 具备完整的自主编程 Agent 能力：终端沙箱执行、多文件代码...

v1.1.0-rc.1

What's Changed

• fix(copaw): download file attachments in group room history by @maplefeng-a in #540
• refactor(copaw-manager): simplify _apply_mention to match worker by @maplefeng-a in #544
• docs: hiclaw-controller 重构与 K8s 部署设计方案 || docs: hiclaw-controller reconstruction and K8s deployment design plan by @johnlanni in #551
• fix(crd): move subresources.status to correct level in teams CRD by @googs1025 in #573
• fix(tuwunel): set default cache_capacity_modifier to prevent CPU thrashing by @Jing-ze in #578
• Revise README with enhanced project overview by @max-wc in #583
• Revise HiClaw description and architecture details by @max-wc in #582
• fix(install): set JVM_ARGS to fix Higress Console on Apple Silicon by @xcaspar in #585
• fix(find-skills): use canonical install paths by @luoxiner in #587
• docs: DebugWorker 基于标准 Worker 构建 || docs: DebugWorker is built based on standard Worker by @johnlanni in #589
• Hiclaw controller refactor by @johnlanni in #616
• fix: DeployToMinIO Phase 2 should respect excludeMemory flag by @johnlanni in #619
• docs: add K8s-native multi-agent collaboration blog and LF introduction by @johnlanni in #624
• feat: declarative worker lifecycle with spec.state by @johnlanni in #620
• refactor: Helm config cleanup, CI pipelines & unified token auth by @Jing-ze in #625
• feat: auto-migrate v1.0.9 registry data to CR resources by @johnlanni in #621
• refactor: unified admin credentials, image build deps & Helm cleanup by @Jing-ze in #629
• refactor: declarative convergence rewrite for Worker Reconciler with integration tests by @Jing-ze in #632
• refactor: replace update-worker-model.sh script with hiclaw CLI command by @Jing-ze in #633
• ci: run openclaw and copaw runtime integration tests in parallel by @johnlanni in #636
• fix(ci): use falsy check for inputs.worker_runtime to fix non-dispatch triggers by @johnlanni in #641
• feat: add leader election support for hiclaw controller HA by @Jing-ze in #640
• fix: restore manager-workspace from MinIO on k8s mode pod restart by @Jing-ze in #637
• refactor: modularize Manager reconciler with phase-based lifecycle and integration tests by @Jing-ze in #635
• chore(controller): drop istiod debug push workaround for Higress embedded mode by @johnlanni in #648
• fix(test): de-flake TestLeaderElection_TwoInstances_OnlyOneReconciles by @johnlanni in #649
• feat: CoPaw runtime upgrade, team leader improvements, and build simplification by @maplefeng-a in #643
• fix: stop AGENTS/SOUL/HEARTBEAT.md sync races between controller and worker by @johnlanni in #651
• fix: make OpenClaw repo URL configurable via build arg (#617) by @vincent067 in #647
• ci(test-integration): rebuild openclaw-base from PR source when changed by @johnlanni in #655
• fix(manager): worker post-creation DM + send-worker-greeting helper (#652) by @maplefeng-a in #653
• chore: upgrade openclaw to hiclaw-2026.4.14 and fix Manager Matrix userId by @johnlanni in #654
• fix(controller): make hiclaw apply worker --zip honor the worker runtime by @johnlanni in #656
• ci(test-integration): split matrix runtime into manager_runtime + worker_runtime by @johnlanni in #660
• fix: remove dead HICLAW_CONTROLLER_API_KEY code by @Jing-ze in #662
• fix(manager): add hiclaw create worker --no-wait, ban raw curl to controller by @johnlanni in #663
• fix(controller): honor HICLAW_DEFAULT_WORKER_RUNTIME by removing CRD default by @johnlanni in #665
• docs: sync CRD docs, k8s-native overview, blog layout, README News by @johnlanni in #667
• fix(tests): correct metrics collection paths and surface unsupported runtimes by @johnlanni in #664
• ci(test-integration): fix integration-tests skipped when build-openclaw-base is skipped by @Jing-ze in #669
• fix(copaw): emit Element-style visible mentions in MatrixChannel by @maplefeng-a in #673
• Fix DingTalk link and update WeChat group image by @max-wc in #671
• feat(hermes): integrate hermes-agent as a third worker runtime by @johnlanni in #659
• fix(controller): replace Synapse DeactivateUser with Tuwunel room management for agent deletion by @Jing-ze in #668
• fix(copaw): adapt bridge to CoPaw's config.json + agent.json split by @maplefeng-a in #670
• fix(controller): TeamReconciler directly manages member lifecycle without Worker CRs by @Jing-ze in #666
• fix(controller,tests): make hermes workers join their own Matrix room by @johnlanni in #674
• fix(controller): propagate runtime to team workers in v1.0.9 migration by @johnlanni in #676
• feat(manager): teach worker-management skill to switch a Worker's runtime by @johnlanni in #677
• fix(install): always pull all worker runtime images and sync ps1 with sh by @johnlanni in #678
• feat: pluggable gateway/storage providers via hiclaw-credential-provider sidecar, with multi-tenancy, agent pod template, and access control by @Jing-ze in #675
• feat(install): add uninstall subcommand to hiclaw-install.sh and hiclaw-install.ps1 by @cr7258 in #599
• feat(install): show masked asterisks when typing secret input by @cr7258 in #601
• fix: pass HICLAW_CONTROLLER_IMAGE build arg to worker image targets by @johnlanni in #679
• chore(base): pin openclaw-base image tag to 20260423-8359cbc by @johnlanni in #684
• fix(manager): unblock CoPaw create-worker DM ack + capture CoPaw debug-log sessions by @johnlanni in #683
• feat(install): add Hermes to worker runtime picker, drop label suffixes, rename CoPaw->QwenPaw in installer UI by @johnlanni in #686
• fix(controller): respect HICLAW_DEFAULT_MODEL in hiclaw create/apply worker by @johnlanni in #689
• test(test-02): tolerate progressive Manager DM acks before 'alice' is named by @johnlanni in #691
• ci(helm): manual dispatch input, bump higress 2.2.1, document Helm install by @johnlanni in #693
• feat(controller): send first-boot Manager welcome prompt in embedded/k8s mode by @johnlanni in #692
• fix(controller): preserve AI-route allowedConsumers across controller restart by @Jing-ze in #681
• feat(controller): align cloud-mode STS defaults with embedded MinIO and add team member accessEntries by @Jing-ze in #682
• refactor(controller): restructure HumanReconciler with service layer + lazy Matrix login by @Jing-ze in #685
• refactor(controller): stamp CR-to-Pod controller OwnerReference instead of inheriting from controller Pod by @Jing-ze in #688
• docs: rewrite FAQ for new multi-container architecture (v1.1.0+) by @johnlanni in #695

New Contributors

• @xcaspar made their first contribution in #585
• @vincent067 made their first contribution in #647
• @cr7258 made their first contribution in #599

Full Changelog: v1.0.9...v1.1.0-rc.1

v1.0.9

Highlights

What's New

• Declarative Resource Management (hiclaw-controller) — Introduced hiclaw-controller for Kubernetes-style declarative resource management. Define Workers, Teams, and Humans as YAML resources and apply them with hiclaw apply. The controller watches for changes and reconciles state automatically — create a YAML, apply it, and the corresponding Docker containers, Matrix rooms, and gateway routes are provisioned without manual intervention. Three CRD types are supported:

  • Worker: Full agent lifecycle (create, update, delete) with package imports, inline identity/soul/agents fields, and channelPolicy for fine-grained communication control.
  • Team: Groups Workers under a Team Leader agent with shared goals, isolated storage, and automatic onboarding/offboarding.
  • Human: Binds a Matrix user to specific Workers for direct human-agent interaction.

• Worker Template Marketplace — New template-driven Worker creation flow via hiclaw-find-worker Manager skill. Instead of manually configuring Workers from scratch, the Manager searches a Nacos-backed template registry (default: market.hiclaw.io), recommends matching templates based on requirements, and imports them after admin confirmation. Supports package shorthand syntax, URL-encoded paths, and consistent behavior across market and registry sources. Workers can be bootstrapped from templates in one step: hiclaw apply -f my-worker.yaml with a package reference.

• MCP Direct Proxy — Building on the API-to-MCP gateway introduced in v1.0.6, this release adds MCP direct proxy support for connecting existing MCP servers through the Higress gateway. While v1.0.6 converts HTTP APIs into MCP tools (API→MCP), MCP direct proxy allows proxying already-MCP-compatible servers (e.g., Sentry, Notion, Asana MCP servers) with auto-generated auth schemes and SSE/StreamableHTTP transport handling. Workers access proxied MCP tools through the same credential-zero-trust security model — real tokens never leave the gateway.

• Team Leader Agent with DAG Orchestration — Introduced a dedicated Team Leader agent that coordinates Workers within a Team. The Team Leader manages hierarchical task delegation, project-based work organization, and DAG (Directed Acyclic Graph) execution — complex multi-step tasks are decomposed into dependency graphs and executed in parallel where possible. Each Team gets isolated storage and its own communication channels, enabling multi-team isolation.

• Service Publishing via Worker Expose — Workers can now expose HTTP services through the Higress gateway using the expose field in Worker/Team CRDs. The controller auto-generates domain names (e.g., worker-alice-8080-local.hiclaw.io) and configures gateway routing, making worker-hosted web apps and APIs externally accessible without manual networking configuration.

• CoPaw Runtime for Manager — Manager container now supports the CoPaw (Python-based) runtime as an alternative to the Node.js OpenClaw runtime, extending the multi-runtime strategy to the Manager role.

• Default Embedding Model — Added default embedding model (text-embedding-v4) support for Manager and Worker, with OpenClaw→CoPaw bridge for cross-runtime compatibility.

• Unified Skill Registry — Reworked Worker find-skills discovery with a unified hiclaw-find-skill wrapper supporting both skills.sh (HTTPS) and Nacos backends. The backend is auto-inferred from HICLAW_SKILLS_API_URL, with Nacos as the new default (nacos://market.hiclaw.io/public). Installed @nacos-group/cli in Worker images for direct Nacos workflows.

• OpenClaw CMS Plugin Integration — Manager now integrates openclaw-cms-plugin install and runtime wiring, extending the agent's content management capabilities.

• Docker Network Aliases — Replaced ExtraHosts IP injection with Docker network aliases, simplifying container networking and improving reliability across restarts.

• hiclawMode Gateway Config — Switched from mergeConsecutiveMessages to hiclawMode in Higress gateway init config, providing a unified HiClaw-specific configuration mode.

• MiniMax M2.7 Default Model — Upgraded MiniMax default model to M2.7 for improved performance.

• Interactive Version Selection — Install scripts now prompt users to select a specific version during installation.

• Post-Install Verification — New verification script runs after installation to confirm all components are healthy.

• Multi-Phase Collaboration Protocol — Added multi-phase collaboration protocol to task-lifecycle, improving coordination between Manager and Workers on complex tasks.

Bug Fixes

• Fixed stale local declarative config after delete in embedded mode — start-mc-mirror.sh now mirrors hiclaw-config/ with --remove, so deleting a resource removes the corresponding local watched YAML.

• Fixed hiclaw apply silently ignoring all resources — loadResources() parsing bug where trimmed lines could never match indented name prefix.

• Fixed stuck Phase="Pending" resources after failed package resolution — refresh object before error-path status updates and treat pending-with-error as retriable.

• Fixed concurrent route authorization in gateway — added optimistic locking retry for simultaneous Worker route registrations.

• Fixed cloud worker OSS access security — STS inline policy restricts tokens to agents/{worker}/* and shared/* prefixes.

• Fixed Docker container escape risk — added hiclaw-docker-proxy to restrict container access to Docker daemon.

• Fixed create-worker.sh robustness — added Matrix room dedup check and failure notification.

• Fixed state.json registration — enforce registration for all task types, add idle-stop safety.

• Fixed Element Web CSP violation — external JS file instead of inline script.

• Fixed auto-refresh STS credentials for all mc invocations via mc-wrapper.sh.

• Fixed CoPaw STS credential refresh in Python sync loops.

• Fixed cloud runtime detection — explicit HICLAW_RUNTIME=aliyun in Dockerfile.aliyun.

• Fixed reliable welcome message delivery with proper runtime detection.

• Fixed Worker import: deploy cron jobs from zip, add install hints, update CLI usage.

• Fixed reinstall bug in PowerShell script; clean up docker-proxy and hiclaw-net on reinstall.

• Fixed Worker containers not added to hiclaw-net network.

• Fixed install UX: friendly labels instead of env var names in upgrade prompts.

• Fixed unused openclaw hooks config causing startup failure.

• Fixed shell script safety in Manager init scripts.

• Fixed explicit Matrix room join with retry before sending welcome message.

• Fixed worker template package path encoding (URL-encoding).

• Fixed controller preflight with lightweight agentspec checks.

• Fixed hiclaw-find-worker reading local ~/.nacos-cli/default.conf overriding defaults.

新增功能

• 声明式资源管理 (hiclaw-controller) — 引入 Kubernetes 风格的声明式资源管理。通过 YAML 定义 Worker、Team 和 Human 资源，使用 hiclaw apply 一键应用。Controller 自动监听变更并协调状态 — 创建 YAML、apply 之后，对应的 Docker 容器、Matrix 房间和网关路由自动就绪，无需手动干预。支持三种 CRD 类型：

  • Worker：完整的 Agent 生命周期管理，支持包导入、内联 identity/soul/agents 字段、channelPolicy 通信策略。
  • Team：将 Worker 组织在 Team Leader 下，共享目标、隔离存储、自动成员管理。
  • Human：将 Matrix 用户绑定到特定 Worker，实现人与 Agent 的直接交互。

• Worker 模板市场 — 新增基于模板的 Worker 创建流程。Manager 通过 hiclaw-find-worker 技能搜索 Nacos 模板注册中心（默认：market.hiclaw.io），根据需求推荐匹配模板，经管理员确认后一键导入。支持包简写语法、URL 编码路径，market 和 registry 场景使用一致的导入方式。通过 YAML 中的 package 引用即可从模板引导 Worker：hiclaw apply -f my-worker.yaml。

• MCP 直接代理 — 在 v1.0.6 的 API→MCP 转换能力基础上，新增 MCP 直接代理支持。v1.0.6 将 HTTP API 转换为 MCP 工具（API→MCP），而 MCP 直接代理则允许代理已有的 MCP 服务器（如 Sentry、Notion、Asana 的 MCP 服务），自动处理认证方案和 SSE/StreamableHTTP 传输协议。Worker 通过相同的凭证零信任安全模型访问代理后的 MCP 工具 — 真实 Token 永远不会离开网关。

• Team Leader Agent 与 DAG 编排 — 引入专门的 Team Leader Agent 协调 Team 内的 Worker。Team Leader 管理层级化任务委派、基于项目的工作组织，以及 DAG（有向无环图）执行 — 复杂的多步骤任务被分解为依赖图并在可能时并行执行。每个 Team 拥有隔离的存储和独立的通信通道，实现多团队隔离。

• Worker 服务发布 (Expose) — Worker 现在可通过 Worker/Team CRD 的 expose 字段将 HTTP 服务通过 Higress 网关对外暴露。Controller 自动生成域名（如 worker-alice-8080-local.hiclaw.io）并配置网关路由，无需手动网络配置即可将 Worker 托管的 Web 应用和 API 对外发布。

• Manager CoPaw 运行时 — Manager 容器现在支持 CoPaw（Python）运行时作为 Node.js OpenClaw 运行时的替代方案。

• 默认 Embedding 模型 — 为 Manager 和 Worker 新增默认 embedding 模型（text-embedding-v4）支持，包含 OpenClaw→CoPaw 跨运行时桥接。

• 统一技能注册中心 — 重构 Worker find-skills 发现链路，引入统一的 hiclaw-find-skill wrapper，支持 skills.sh（HTTPS）和 Nacos 双后端，默认使用 Nacos（nacos://market.hiclaw.io/public）。在 Worker 镜像中安装 @nacos-group/cli 支持直接 Nacos 工作流。

• OpenClaw CMS 插件集成 — Manager 现在集成 openclaw-cms-plugin 的安装和运行时接入。

• Docker 网络别名 — 用 Docker 网络别名替代 ExtraHosts IP 注入，简化容器网络配置。

• hiclawMode 网关配置 — Higress 网关从 mergeConsecutiveMessages 切换为 hiclawMode 统一配置。

• MiniMax M2.7 默认模型 — MiniMax 默认模型升级至 M2.7。

• 交互式版本选择 — 安装脚本支持选择特定版本。

• 安装后验证 — 新增验证脚本确认所有组件健康。

• 多阶段协作协议 — 在 task-lifecycle 中新增多阶段协作协议。

Bug 修复

• 修复 embedded 模式删除后本地声明式配置残留问题。
• 修复 hiclaw apply 静默忽略所有资源的解析 bug。
• 修复包解析失败后资源卡在 Phase="Pending" 状态。
• 修复网关并发路由授权竞态条件。
• 修复云端 Worker OSS 访问安全 — STS 内联策略限制令牌权限范围。
• 修复 Docker 容器逃逸风险 — 新增 hiclaw-docker-proxy。
• 修复 create-worker.sh 健壮性 — Matrix 房间去重和失败通知。
• 修复 state.json 注册 — 强制所有任务类型注册，空闲停止安全检查。
• 修复 Element Web CSP 违规 — 外部 JS 文件替代内联脚本。
• 修复 mc 调用 STS 凭证自动刷新。
• 修复 CoPaw Python 同步循环 STS 凭证刷新。
• 修复云端运行时检测 — 显式设置 HICLAW_RUNTIME=aliyun。
• 修复云端部署欢迎消息可靠投递。
• 修复 Worker 导入：cron job 部署、安装提示、CLI 用法。
• 修复 PowerShell 重装 bug；重装时清理 docker-proxy 和 hiclaw-net。
• 修复 Worker 容器未加入 hiclaw-net 网络。
• 修复安装体验：友好标签替代环境变量名。
• 修复未使用的 openclaw hooks 配置导致启动失败。
• 修复 Manager 初始化脚本 shell 安全问题。
• 修复 Matrix 房间加入重试防止竞态条件。
• 修复 Worker 模板包路径 URL 编码。
• 修复 hiclaw-find-worker 本地 Nacos profile 覆盖默认...

v1.0.8

Highlights

What's New

• OpenClaw Upgrade to v2026.3.8 — Upgraded the bundled OpenClaw to v2026.3.8, widely regarded as the most stable release by the community. This brings improved reliability and performance to the underlying agent runtime.

• Alibaba Cloud Native Deployment — Added Alibaba Cloud native deployment support with a unified cloud/local abstraction layer, including CoPaw worker support for cloud deployment. Manager Dockerfile.aliyun now sets ENV HOME=/root/manager-workspace so the agent writes workspace files to the correct directory.

• Env Var Placeholder Rendering — SKILL.md and AGENTS.md now render ${VAR} placeholders at startup via envsubst, so AI agents read plain text instead of raw environment variable references.

• Unified AI Gateway URL — Refactored all scripts to use a single HICLAW_AI_GATEWAY_SERVER env var in hiclaw-env.sh, removing duplicated cloud/local branching from create-worker, generate-worker-config, and model-switch scripts.

• Control UI Token Security — Control UI now uses URL hash redirect for token injection, and Manager generates a distinct hooks.token on first boot with proper base64 encoding (-w 0) to prevent JSON parse errors.

• Worker Import System — New hiclaw-import.sh / hiclaw-import.ps1 scripts and migration skill allow importing Workers from external sources, with automated analysis and zip generation for seamless migration.

• Agent Docs Progressive Disclosure — Restructured SKILL.md and AGENTS.md into a references/ directory structure for progressive disclosure, reducing token consumption. Added GitHub bug report template.

• Debug Log Export Tool — New export-debug-log.py helps diagnose why an Agent's behavior doesn't meet expectations. It exports Matrix messages and agent session logs (OpenClaw / CoPaw) in one command, letting you trace the full conversation context, tool calls, and decision flow that led to an unexpected outcome. Supports time range (--range 1h/1d), container/room filtering, and built-in PII auto-redaction for safe sharing in bug reports.

• Install Step-Back Navigation — Install scripts (sh/ps1) now support step-back navigation, allowing users to go back to previous steps during installation instead of restarting.

• Docker Layer Optimization — Reordered Dockerfile layer ordering for Manager, Worker, and CoPaw images to maximize cache hits and speed up upgrade pulls.

• Worker Security Hardening — Added mirror loop safeguard and security hardening for Workers, preventing agents from entering infinite mirror loops.

• Higress mergeConsecutiveMessages — Enabled mergeConsecutiveMessages for all LLM providers in Higress gateway config, improving compatibility with models that reject consecutive same-role messages.

• Infinite Task Loop Prevention — Improved error guidance in task-management and model-switch skills to prevent agents from entering infinite task loops.

Bug Fixes

• Fixed GPT-5 model LLM connectivity tests — use max_completion_tokens instead of max_tokens for GPT-5 models; also removed max_tokens=1 from LLM connectivity tests across install scripts.

• Fixed Worker name handling in create-worker.sh — normalize worker name to lowercase to match Tuwunel's username storage behavior, fixing invite failures when names contain uppercase letters; added validation to reject invalid characters before Matrix registration.

• Fixed welcome message readiness in Aliyun deployment — use gateway health check instead of Matrix room member polling, with timeout increased to 300s.

• Fixed skill removal cleanup — Manager's --remove-skill now deletes MinIO files and notifies worker; worker prunes stale skill dirs while preserving builtins.

新增功能

• OpenClaw 升级至 v2026.3.8 — 将内置 OpenClaw 升级至 v2026.3.8，这是社区评价最稳定的新版本，带来了更好的可靠性和性能。

• 阿里云原生部署 — 新增阿里云原生部署支持，提供统一的云/本地抽象层，包括 CoPaw Worker 的云端部署支持。Manager Dockerfile.aliyun 现在设置 ENV HOME=/root/manager-workspace，确保 Agent 将工作区文件写入正确目录。

• 环境变量占位符渲染 — SKILL.md 和 AGENTS.md 现在在启动时通过 envsubst 渲染 ${VAR} 占位符，AI Agent 读取的是纯文本而非原始环境变量引用。

• 统一 AI Gateway URL — 重构所有脚本使用统一的 HICLAW_AI_GATEWAY_SERVER 环境变量，移除 create-worker、generate-worker-config 和 model-switch 脚本中重复的云/本地分支逻辑。

• Control UI Token 安全增强 — Control UI 现在使用 URL hash 重定向注入 token，Manager 首次启动时生成独立的 hooks.token，并使用 base64 -w 0 编码防止 JSON 解析错误。

• Worker 导入系统 — 新增 hiclaw-import.sh / hiclaw-import.ps1 脚本和 migration skill，支持从外部导入 Worker，提供自动化分析和 zip 生成实现无缝迁移。

• Agent 文档渐进式披露 — 将 SKILL.md 和 AGENTS.md 重构为 references/ 目录结构实现渐进式披露，降低 token 消耗。新增 GitHub bug report 模板。

• Debug Log 导出工具 — 新增 export-debug-log.py，帮助诊断 Agent 行为不达预期的原因。一条命令即可导出 Matrix 消息和 Agent 会话日志（OpenClaw / CoPaw），让你追溯完整的对话上下文、工具调用和决策流程，定位问题根因。支持时间范围过滤（--range 1h/1d）、容器/房间过滤，内置 PII 自动脱敏，可安全用于 bug report 分享。

• 安装脚本回退导航 — 安装脚本（sh/ps1）现在支持回退导航，用户可以在安装过程中返回上一步而无需重新开始。

• Docker 镜像层优化 — 重排 Manager、Worker 和 CoPaw 的 Dockerfile 层顺序，最大化缓存命中率，加速升级拉取。

• Worker 安全加固 — 新增 mirror loop 防护和安全硬化，防止 Agent 进入无限镜像循环。

• Higress 消息合并 — 为 Higress 网关所有 LLM provider 启用 mergeConsecutiveMessages，提升对拒绝连续同角色消息的模型的兼容性。

• 无限任务循环防护 — 改进 task-management 和 model-switch skill 的错误引导，防止 Agent 陷入无限任务循环。

Bug 修复

• 修复 GPT-5 模型 LLM 连通性测试 — 对 GPT-5 模型使用 max_completion_tokens 替代 max_tokens；同时移除安装脚本中 LLM 连通性测试的 max_tokens=1。

• 修复 create-worker.sh 中 Worker 名称处理 — 将 Worker 名称规范化为小写以匹配 Tuwunel 的用户名存储行为，修复名称含大写字母时的邀请失败问题；新增验证逻辑拒绝无效字符。

• 修复阿里云部署中欢迎消息就绪检测 — 使用网关健康检查替代 Matrix 房间成员轮询，超时时间增加至 300 秒。

• 修复技能移除清理 — Manager 的 --remove-skill 现在删除 MinIO 文件并通知 Worker；Worker 清理过时技能目录同时保留内置技能。

• feat: upgrade openclaw to v2026.3.8 (7dea227)

• feat(cloud): add Alibaba Cloud native deployment support with unified cloud/local abstraction layer (b98dcc8)

• feat(cloud): add CoPaw worker support for cloud deployment (58a012f)

• feat(agent): render env var placeholders in SKILL.md/AGENTS.md at startup via envsubst (7d18776)

• refactor(manager): unify AI Gateway URL into HICLAW_AI_GATEWAY_SERVER in hiclaw-env.sh (4046019)

• fix(manager): use distinct hooks.token on first boot (ac731a7)

• fix(manager): use base64 -w 0 for hooks.token to prevent JSON parse error (d8ac9e8)

• fix: use URL hash redirect for Control UI token injection (b3df8fe)

• fix(manager): use max_completion_tokens for GPT-5 models in LLM connectivity tests (f3c6529)

• fix: remove max_tokens=1 from LLM connectivity tests (4fc97bd)

• fix(install): remove max_tokens=1 from LLM connectivity test in ps1 (7ff5182)

• fix(manager): normalize worker name to lowercase in create-worker.sh (0bd2f58)

• fix(manager): add worker name validation and set HOME in Dockerfile.aliyun (d800790)

• fix(manager): use gateway health check for welcome message readiness in Aliyun deployment (ca83687)

• fix(sync): clean up removed skills from MinIO, worker local, and active_skills (67ddcb6)

• feat: add Worker import system and migration skill (f7c9e55)

• feat: optimize agent docs, add debug log export and bug report template (4abd8cc)

• feat(install): add step-back navigation support (9938330)

• perf(docker): optimize layer ordering for faster upgrade pulls (c82c2af)

• feat(agent): add mirror loop safeguard and security hardening for workers (ba60e95)

• feat(higress): enable mergeConsecutiveMessages for all LLM providers (8c44c5b)

• fix(manager): improve error guidance and prevent infinite task loops (586ff51)

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.8

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.8

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/alibaba/hiclaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; =New-Object Net.WebClient; .Encoding=[Text.Encoding]::UTF8; iex .DownloadString('https://higress.ai/hiclaw/install.ps1')

Documentation

For more details, see the installation guide.

v1.0.7

What's New

• Worker Availability & Auto-Recovery — New find-worker.sh consolidates worker availability checks (registry + state + lifecycle + SOUL.md) into a single call. New ensure-ready action in lifecycle-worker.sh auto-starts stopped or auto-recreates missing Workers before sending messages. HEARTBEAT Steps 2/3/4 now call ensure-ready before contacting Workers, preventing messages sent to stopped containers.

• Delegation-First Principle — Manager now explicitly prioritizes assigning tasks to Workers over self-execution. Task-management SKILL.md Step 0 decision flow marks Worker delegation as preferred and self-execution as last resort.

• Finite vs Infinite Task Management — Task-management SKILL.md adds a decision guide for finite vs infinite tasks. Idle detection now considers infinite tasks as active — Workers with active infinite tasks are no longer auto-stopped. HEARTBEAT Steps 5/6 updated accordingly.

• Admin Notification Unification — New resolve-notify-channel.sh unifies admin notification channel resolution (primary-channel → Matrix DM fallback). New manage-primary-channel.sh provides validated, atomic primary-channel.json operations (confirm/reset/show). HEARTBEAT and channel-management SKILL.md now use these scripts instead of inline logic.

• Known Models & Hot-Switch — All known models are pre-configured in openclaw.json templates, so switching between them is a hot-reload (no restart). New known-models.json and upgrade-path merge ensures existing deployments get missing models on Manager restart. Model-switch scripts detect known vs unknown models via the models array instead of overwriting models[0].

• Model Alias Support — All known models get agents.defaults.models alias entries (e.g. "hiclaw-gateway/claude-sonnet-4-6": {"alias": "claude-sonnet-4-6"}). Templates, upgrade merge, and model-switch scripts all generate aliases. Worker upgrade merge is now unconditional and idempotent (diff-based push).

• CoPaw E2EE Support — Full end-to-end encryption for CoPaw Matrix channels: bridge encryption flag from openclaw.json, create matrix-nio client with crypto store, handle encrypted media events (Image/Audio/Video/File), auto-upload E2E keys, auto-query device keys on sync, ignore unverified devices for bot use case. Dependency upgraded to matrix-nio[e2e].

• CoPaw Markdown Rendering — Matrix messages now render Markdown as HTML using markdown-it-py (same engine as OpenClaw) with linkify, breaks, strikethrough, and table support.

• Configurable Worker Idle Timeout — New HICLAW_WORKER_IDLE_TIMEOUT env var (default: 720 minutes = 12 hours) controls Worker idle auto-stop timeout, configurable via install script and persisted in hiclaw-manager.env.

Bug Fixes

• Fixed hiclaw-sync: Permission denied after upgrade — replaced symlink with /bin/sh wrapper so execution does not depend on +x permission bit (MinIO does not preserve Unix permissions); added chmod +x in hiclaw-sync.sh and entrypoint fallback sync to restore script permissions after pull.

• Fixed upgrade pulling both openclaw and copaw worker images when the other runtime's image exists locally, ensuring all worker containers get updated regardless of the selected default runtime.

• Fixed Worker builtin-upgrade notification spam — added cooldown (default 1h) to prevent repeated Matrix messages wasting Worker tokens when Manager crash-loops.

• Fixed CoPaw duplicate skills after upgrade — removes stale customized_skills/ copies when a newer CoPaw version ships the same skill as a builtin.

• Fixed Worker AGENTS.md @mention protocol — require @mention when replying to Manager progress inquiries; changed phase completion to task-only completion notification (TASK_COMPLETED format).

• Fixed CoPaw skill sync — now mirrors entire skill directory (including scripts/ and references/) instead of only pulling SKILL.md, matching OpenClaw worker's mc mirror behavior; restores +x on .sh files after pull.

• Fixed Worker AGENTS.md upgrade — now uses builtin-section merge instead of mc cp overwrite, preserving Worker's custom content after <!-- hiclaw-builtin-end --> marker; legacy files without markers are overwritten and gain marker protection on first upgrade.

• Fixed CoPaw inner config sync — .copaw/AGENTS.md and .copaw/SOUL.md changes now sync back to outer layer before MinIO push (previously Agent modifications were silently lost on restart or re-bridge).

• Fixed CoPaw _sync_skills — now mirrors full skill directories (SKILL.md + scripts/ + references/) from outer skills/ to inner .copaw/active_skills/.

• Fixed Worker/CoPaw E2EE re-login on restart — Workers now call m.login.password on startup to get a fresh access token and device ID, preventing Element Web from rejecting key distribution when the identity key changes after crypto storage cleanup. Manager writes Matrix password directly to MinIO, Workers read it via mc cat at startup; includes migration for existing workers.

• Fixed .openclaw/matrix/** and .openclaw/canvas/** excluded from MinIO sync — Matrix crypto SQLite corrupts when synced via object storage (no POSIX file locks); canvas is regenerated on startup.

• Fixed Manager/Worker .openclaw/matrix cleanup on startup — prevents "database disk image is malformed" errors after unclean shutdown; E2EE sessions are automatically re-negotiated.

• Fixed manage-state.sh executed action no longer errors when infinite task is missing from active_tasks (backward compat with legacy tasks).

• Fixed CoPaw slash commands in group rooms — skip history prepend when message starts with / so command parser recognises the command; strip @mention prefix before slash command detection.

• Fixed CoPaw E2EE key maintenance in sync loop — keys_claim and send_to_device_messages were missing, preventing Olm session establishment; also fixed catch-up sync not actually suppressing callbacks.

• Fixed CoPaw sync token persistence — persist Matrix sync token to disk and restore on restart, preventing replaying old messages after container restart.

• Fixed Worker openclaw.json upgrade now adds missing encryption field for existing workers (previously only new workers got it from template).

• Fixed TOOLS.md channel-management first-contact trigger corrected from "first time" to "channel mismatch", added show command.

• Fixed TOOLS.md clarification of copaw runtime vs deployment mode (copaw ≠ remote), added Deployment column to runtime table.

---

新增功能

• Worker 可用性检查与自动恢复 — 新增 find-worker.sh 将 Worker 可用性检查（注册表 + 状态 + 生命周期 + SOUL.md）整合为单次调用。lifecycle-worker.sh 新增 ensure-ready 动作，在发送消息前自动启动已停止或自动重建缺失的 Worker。HEARTBEAT 步骤 2/3/4 现在在联系 Worker 前调用 ensure-ready，避免向已停止的容器发送消息。

• 委派优先原则 — Manager 现在明确优先将任务分配给 Worker 而非自行执行。task-management SKILL.md 步骤 0 决策流将 Worker 委派标记为首选，自行执行作为最后手段。

• 有限/无限任务管理 — task-management SKILL.md 新增有限任务与无限任务的决策指南。空闲检测现在将无限任务视为活跃状态 — 有活跃无限任务的 Worker 不再被自动停止。HEARTBEAT 步骤 5/6 相应更新。

• 管理员通知统一 — 新增 resolve-notify-channel.sh 统一管理员通知频道解析（primary-channel → Matrix DM 回退）。新增 manage-primary-channel.sh 提供经过验证的原子化 primary-channel.json 操作（confirm/reset/show）。HEARTBEAT 和 channel-management SKILL.md 现在使用这些脚本替代内联逻辑。

• 已知模型与热切换 — 所有已知模型预配置在 openclaw.json 模板中，切换已知模型无需重启（热加载）。新增 known-models.json 和升级路径合并，确保现有部署在 Manager 重启时获得缺失的模型。模型切换脚本通过 models 数组检测已知/未知模型，而非覆盖 models[0]。

• 模型别名支持 — 所有已知模型获得 agents.defaults.models 别名条目（如 "hiclaw-gateway/claude-sonnet-4-6": {"alias": "claude-sonnet-4-6"}）。模板、升级合并和模型切换脚本均生成别名。Worker 升级合并现在是无条件且幂等的（基于 diff 推送）。

• CoPaw E2EE 支持 — CoPaw Matrix 频道全面支持端到端加密：从 openclaw.json 桥接 encryption 标志，启用时创建带 crypto store 的 matrix-nio 客户端，处理加密媒体事件（图片/音频/视频/文件），自动上传 E2E 密钥，同步时自动查询设备密钥，对 bot 场景忽略未验证设备。依赖升级至 matrix-nio[e2e]。

• CoPaw Markdown 渲染 — Matrix 消息现在使用 markdown-it-py（与 OpenClaw 相同引擎）将 Markdown 渲染为 HTML，支持 linkify、换行、删除线和表格。

• 可配置 Worker 空闲超时 — 新增 HICLAW_WORKER_IDLE_TIMEOUT 环境变量（默认：720 分钟 = 12 小时）控制 Worker 空闲自动停止超时，可通过安装脚本配置并持久化到 hiclaw-manager.env。

Bug 修复

• 修复升级后 hiclaw-sync: Permission denied — 用 /bin/sh 包装器替代符号链接，使执行不依赖 +x 权限位（MinIO 不保留 Unix 权限）；在 hiclaw-sync.sh 和入口点回退同步中添加 chmod +x 恢复脚本权限。

• 修复升级时同时拉取 openclaw 和 copaw worker 镜像的问题 — 当另一运行时的镜像本地存在时，确保所有 worker 容器都能更新。

• 修复 Worker 内置升级通知刷屏 — 添加冷却时间（默认 1 小时），防止 Manager 崩溃循环时重复发送 Matrix 消息浪费 Worker token。

• 修复 CoPaw 升级后技能重复 — 当新版 CoPaw 将同一技能作为内置技能发布时，移除过时的 customized_skills/ 副本。

• 修复 Worker AGENTS.md @mention 协议 — 回复 Manager 进度询问时要求 @mention；阶段完成改为仅任务完成通知（TASK_COMPLETED 格式）。

• 修复 CoPaw 技能同步 — 现在镜像整个技能目录（包括 scripts/ 和 references/）而非仅拉取 SKILL.md，与 OpenClaw worker 的 mc mirror 行为一致；拉取后恢复 .sh 文件的 +x 权限。

• 修复 Worker AGENTS.md 升级 — 现在使用 builtin-section 合并替代 mc cp 覆盖，保留 <!-- hiclaw-builtin-end --> 标记后的 Worker 自定义内容；无标记的旧文件在首次升级时被覆盖并获得标记保护。

• 修复 CoPaw 内部配置同步 — .copaw/AGENTS.md 和 .copaw/SOUL.md 的修改现在在 MinIO 推送前同步回外层（此前 Agent 对这些文件的修改在重启或重新桥接后会静默丢失）。

• 修复 CoPaw _sync_skills — 现在从外层 skills/ 到内层 .copaw/active_skills/ 镜像完整技能目录（SKILL.md + scripts/ + references/）。

• 修复 Worker/CoPaw 重启时 E2EE 重新登录 — Worker 启动时调用 m.login.password 获取新的 access token 和 device ID，防止 Element Web 在 crypto 存储清理后因 identity key 变化拒绝密钥分发。Manager 将 Matrix 密码直接写入 MinIO，Worker 启动时通过 mc cat 读取；包含现有 worker 的迁移。

• 修复 .openclaw/matrix/** 和 .openclaw/canvas/** 从 MinIO 同步中排除 — Matrix crypto SQLite 通过对象存储同步会损坏（无 POSIX 文件锁）；canvas 在启动时重新生成。

• 修复 Manager/Worker 启动时清理 .openclaw/matrix — 防止非正常关闭后出现 "database disk image is malformed" 错误；E2EE 会话自动重新协商。

• 修复 manage-state.sh executed 动作在 active_tasks 中缺少无限任务时不再报错（向后兼容旧任务）。

• 修复 CoPaw 群聊中的斜杠命令 — 消息以 / 开头时跳过历史前置，使命令解析器能识别命令；在斜杠命令检测前去除 @mention 前缀。

• 修复 CoPaw E2EE 同步循环中的密钥维护 — 此前缺少 keys_claim 和 send_to_device_messages，导致无法建立 Olm 会话；同时修复 catch-up 同步未实际抑制回调的问题。

• 修复 CoPaw 同步令牌持久化 — 将 Matrix 同步令牌持久化到磁盘并在重启时恢复，防止容器重启后重放旧消息。

• 修复 Worker openclaw.json 升级现在为现有 worker 添加缺失的 encryption 字段（此前仅新 worker 从模板获得）。

• 修复...

v1.0.6

What's Changed

What's New

• MCP Server Management Skill Enhancement — Manager now has a unified setup-mcp-server.sh script for runtime MCP server creation/update (GitHub as a special case with DNS service source). Manager can use mcporter CLI to list servers, view schemas, and call tools directly. Workers get an independent mcporter skill with MCP tool discovery and automatic SKILL generation — similar to the built-in github MCP tool, all calls are proxied through the AI gateway so Workers never see real credentials but can still use tools via SKILL. Config unified to ./config/mcporter.json (mcporter default path, no --config flag needed).

• Slash Command Cross-Scenario Control — You can now @claw /reset in DM or group chat to reset context (fixes bugs or misconfig issues). @claw /stop interrupts long-running agent tasks — useful when a claw is stuck, allowing you to ask about progress and provide guidance. Manager can also use /stop to actively intervene Workers.

• Optimized file sync design principle — unified to "writer pushes and notifies, receiver pulls on demand", with 5-min periodic pull as fallback only. Manager adds on-demand mc mirror pull in task/project completion flows to ensure reading fresh Worker results.

• Added --no-reasoning flag to model-switch and worker-model-switch scripts to disable reasoning mode, patching the reasoning field in openclaw.json.

Bug Fixes

• Fixed orphaned session write lock cleanup before OpenClaw startup — prevents "session file locked (timeout)" errors after SIGKILL or crash.

• Fixed Remote->Local sync logic — only pulls Manager-managed allowlist files to avoid overwriting Worker-generated content (e.g. .openclaw sessions, memory).

• Fixed Matrix room preset — switched back to trusted_private_chat so Workers auto-join without needing to accept invites.

• Fixed mcporter config path compatibility — new path config/mcporter.json, old path mcporter-servers.json preserved as symlink for backward compatibility.

• Fixed CoPaw mcporter config sync — correctly pulls config/mcporter.json from MinIO and copies to .copaw/config/mcporter.json.

• Fixed *.lock file sync exclusion — Local->Remote sync excludes lock files to prevent stale session locks from being pushed to MinIO.

• Fixed ELOOP symlink loop in Worker skills directory on container restart.

• Fixed PowerShell window closing on error when run via double-click.

---

新增功能

• MCP Server 管理技能完善 — Manager 新增统一的 setup-mcp-server.sh 脚本，支持运行时创建/更新任意 MCP Server（GitHub 为特殊 case 带 DNS 服务源配置）。Manager 可通过 mcporter CLI 列出服务器、查看 schema、直接调用工具。Worker 获得独立的 mcporter skill，支持 MCP 工具发现和自动生成 SKILL 文件，类似内置的 github MCP 工具：通过 AI 网关代理 MCP 调用，Worker 无法获取真实凭证，但可以基于 SKILL 安全使用。配置统一迁移到 ./config/mcporter.json（mcporter 默认路径）。

• Slash Command 跨场景操控 — 现在可以在 DM（私聊）或 Group（群聊）中 @claw /reset 重置上下文（解决 bug 或误配置导致的问题），@claw /stop 打断 claw 的 agent 执行流程（当处理时间过长时可干预并追问进展）。Manager 可以利用 /stop 主动打断 Worker 进行指导干预。

• 优化文件同步设计原则 — 统一为"写入者推送并通知，接收者按需拉取"，5 分钟定时拉取仅作为 fallback。Manager 在 task/project 完成流程中增加按需 mc mirror 拉取，确保读取 Worker 最新结果。

• 新增 model-switch 和 worker-model-switch 的 --no-reasoning 标志，支持禁用 reasoning 模式。

Bug 修复

• 修复 OpenClaw 启动前的孤立 session write lock 清理 — 防止 SIGKILL 或崩溃后出现 "session file locked (timeout)" 错误。

• 修复 Remote->Local 同步逻辑 — 只拉取 Manager 管理的白名单文件，避免覆盖 Worker 生成的内容（如 .openclaw sessions、memory）。

• 修复 Matrix room preset — 改回 trusted_private_chat，让 Worker 自动加入无需手动接受邀请。

• 修复 mcporter 配置路径兼容性 — 新路径 config/mcporter.json，旧路径 mcporter-servers.json 保留软链接向后兼容。

• 修复 CoPaw mcporter 配置同步 — 正确从 MinIO 拉取 config/mcporter.json 并复制到 .copaw/config/mcporter.json。

• 修复 *.lock 文件同步排除 — Local->Remote 同步排除 lock 文件，防止过期 session lock 被推送到 MinIO。

• 修复 Worker 容器重启时 skills 目录的 ELOOP 符号链接循环问题。

• 修复 PowerShell 双击运行时出错窗口直接关闭的问题。

---

• fix(worker): fix ELOOP symlink loop in skills directory on container restart (#262) (340bbce)
• fix(install): persist HICLAW_LOCAL_ONLY and fix HOST_SHARE_DIR ordering in env file (#261) (1ced4dd)
• fix(install): fix PS1 quickstart skipping network access mode prompt (#265) (9fba9cb)
• fix(copaw_worker): render newlines as in Matrix HTML messages (#263) (ea25fbf)
• fix(worker,copaw): Remote->Local sync allowlist for Manager-managed files only (#266) (05c5d05)
• fix(manager): clean orphaned session write locks before starting OpenClaw (#267) (6a516c1)
• feat(manager): add worker unresponsiveness policy and agent doc updates (#268) (5cc5929)
• fix(manager): switch Matrix room preset back to trusted_private_chat for auto-join (da92852)
• feat(manager): add --no-reasoning flag to model switch scripts (80073a7)
• feat(manager): add unified setup-mcp-server.sh and rewrite mcp-server-management SKILL.md (7bf6883)
• feat(manager): setup-mcp-server.sh generates Manager/Worker mcporter configs and notifies Workers (4060d04)
• fix(manager,worker): push Worker mcporter config to MinIO; always set MCPORTER_CONFIG (3d0787d)
• refactor: replace background Local->Remote sync with explicit push, unify file sync design principle (8732eaa)
• docs(manager): add MinIO file pull guidance to TOOLS.md (60fb968)
• docs(manager): add mcporter usage section to mcp-server-management SKILL.md (1792716)
• feat(manager): extract mcporter into standalone skill for Manager and Worker (9bbf15d)
• feat(worker,copaw): add mcporter skill as default built-in for OpenClaw and CoPaw workers (b3336b6)
• refactor(manager,worker): move mcporter config to ./config/mcporter.json (default path) (e778e7f)
• fix(copaw): pull config/mcporter.json from MinIO and copy into COPAW_WORKING_DIR (cde877d)
• fix(copaw): add backward-compat fallback in pull_all for legacy mcporter-servers.json path (68632ee)
• feat(manager): add mcporter to default Worker skills in create-worker.sh (11a5ed2)
• feat(manager): add mcporter as builtin skill for both worker runtimes; use runtime-specific agent source in upgrade-builtins (9f38b88)
• feat: support @mention + slash commands in group rooms (6185b50)
• fix(worker,copaw): clean stale session locks on startup and exclude .lock from sync (c1728cf)
• fix(copaw): fix mention-strip for slash commands in group rooms and DM (be855ee)
• fix(manager): remove gemini-cli, claude-code, qodercli dependencies from image build (2ce7d72)

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.6

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.6

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/alibaba/hiclaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://higress.ai/hiclaw/install.ps1'))

Documentation

For more details, see the installation guide.

v1.0.5

What's Changed

What's New

• Exposed OpenClaw Console at host port 18888 via nginx reverse proxy with automatic gateway token injection into localStorage — no manual token entry needed. Added a dedicated Higress route (console-local.hiclaw.io) with basic-auth protection using admin credentials. Fixed device-pairing chicken-and-egg problem by disabling device auth on the gateway side.
• Enforced explicit room targeting across all heartbeat and agent messaging — Heartbeat caches admin_dm_room_id in state.json and uses the message tool for all notifications; replaced the deprecated /hooks/agent webhook with the built-in message tool for primary channel messaging.
• Switched group session reset trigger from idle timeout (2880 min) to a fixed daily schedule at 04:00, matching DM session behavior; removed the keepalive mechanism (session-keepalive.sh, notify-admin-keepalive.sh, HEARTBEAT step 7).
• Reduced default context windows (qwen3.5-plus: 960k→200k, unknown models: 200k→150k) and added --context-window override support for unknown models in model-switch skills.
• Added state.json initialization and manage-state.sh atomic script (add-finite/add-infinite/complete/executed/list) — state.json is now created on first boot via upgrade-builtins.sh and lifecycle-worker.sh; each task entry includes a title field for quick identification.
• Unified agent behavioral guidelines ("Be Responsive but Not Noisy", "Incoming Message Format", task execution rules, progress tracking, project participation) across Manager, OpenClaw Worker, and CoPaw Worker AGENTS.md.

Bug Fixes

• Fixed worker container recreation on Manager upgrade — workers are now correctly stopped and removed when upgrading an existing installation.
• Fixed all ~/hiclaw-fs/ tilde-path expansions to use correct absolute paths (/root/hiclaw-fs/ for shared data) across AGENTS.md, TOOLS.md, all SKILL.md files, and scripts.
• Fixed .openclaw/ directory exclusion in file-sync so OpenClaw session and cron configurations are synced to MinIO.
• Fixed container_api_available check to work under strict mode (set -euo pipefail).
• Fixed mc mirror --watch background process cleanup on container shutdown.
• Fixed Matrix room power levels — Admin and Manager get level 100 (admin), Workers default to 0; switched from trusted_private_chat to private_chat preset with power_level_content_override.
• Fixed Tuwunel unstable room versions error (room version 11 compatibility).
• Fixed CoPaw Windows compatibility — NotImplementedError for signal handlers on ProactorEventLoop; mc.exe download on Windows; Path.as_posix() for MinIO object keys.
• Registered all Higress route domains via /v1/domains API (previously missing for Matrix Client, File System, AI Gateway, and Console routes).

新增功能

• 通过 nginx 反向代理在主机 18888 端口暴露 OpenClaw 控制台，自动向 localStorage 注入 gateway token（无需手动输入）。新增 Higress 路由（console-local.hiclaw.io）并以管理员凭据开启 basic-auth 保护。通过在 gateway 侧禁用设备认证，解决了设备配对的先有鸡还是先有蛋问题。
• 强化心跳和 Agent 消息的明确房间定向 — 心跳将 admin_dm_room_id 缓存到 state.json，所有通知改用 message 工具发送；废弃 /hooks/agent webhook，改用内置 message 工具用于主 channel 消息发送。
• 将 Group 会话重置触发方式从空闲超时（2880 分钟）改为每天 04:00 固定定时，与 DM 会话保持一致；移除 keepalive 机制（session-keepalive.sh、notify-admin-keepalive.sh、HEARTBEAT 第 7 步）。
• 降低默认上下文窗口（qwen3.5-plus：960k→200k，未知模型：200k→150k），并在模型切换 skill 中为未知模型新增 --context-window 覆盖支持。
• 新增 state.json 初始化和 manage-state.sh 原子操作脚本（add-finite/add-infinite/complete/executed/list）— state.json 现于首次启动时通过 upgrade-builtins.sh 和 lifecycle-worker.sh 自动创建；每条任务记录包含 title 字段便于快速识别。
• 统一了 Manager、OpenClaw Worker 和 CoPaw Worker AGENTS.md 中的 Agent 行为准则（"适度响应"、"消息格式"、任务执行规则、进度跟踪、项目参与等）。

Bug 修复

• 修复 Manager 升级时 Worker 容器重建问题 — 升级已有安装时 Worker 现在能被正确停止和删除。

• 修复所有 ~/hiclaw-fs/ tilde 路径，改为正确的绝对路径（/root/hiclaw-fs/），涉及 AGENTS.md、TOOLS.md、所有 SKILL.md 和脚本文件。

• 修复文件同步中 .openclaw/ 目录被排除的问题，使 OpenClaw 会话和 cron 配置能同步到 MinIO。

• 修复 container_api_available 检查在严格模式（set -euo pipefail）下报错的问题。

• 修复容器关闭时 mc mirror --watch 后台进程未被清理的问题。

• 修复 Matrix 房间权限等级设置 — 管理员和 Manager 获得 100 级（管理员），Worker 默认 0 级；改用 private_chat preset 并设置 power_level_content_override。

• 修复 Tuwunel 不稳定房间版本错误（room version 11 兼容性）。

• 修复 CoPaw Windows 兼容性 — ProactorEventLoop 信号处理器 NotImplementedError；Windows 下 mc.exe 下载；MinIO object key 使用 Path.as_posix()。

• 补全 Higress 路由的 /v1/domains 注册调用（此前 Matrix Client、文件系统、AI Gateway 和控制台路由均缺少域名创建步骤）。

• feat(manager): support openclaw gateway restart and expose openclaw console at port 18888 via nginx reverse proxy (d80c539)

• fix(manager): auto-inject gateway token into openclaw console via nginx sub_filter so Control UI auto-authenticates without manual token entry (8df7e7f)

• fix(manager): disable device pairing for openclaw console access from nginx proxy — set gateway.controlUi.dangerouslyDisableDeviceAuth=true to rely solely on the shared token (5a0df68)

• feat(manager): add OpenClaw Console Higress route (console-local.hiclaw.io) with service source, domain registration, and basic-auth plugin using HICLAW_ADMIN_USER/HICLAW_ADMIN_PASSWORD; register all route domains via /v1/domains API; add HICLAW_CONSOLE_DOMAIN and HICLAW_PORT_OPENCLAW_CONSOLE to install scripts (9f40f20)

• feat(manager,copaw,worker): enforce explicit room targeting in heartbeat — cache admin_dm_room_id in state.json, use message tool for all notifications, improve agent communication guidelines (7e364c8)

• refactor(manager): replace /hooks/agent webhook with built-in message tool for primary channel messaging (6dce243)

• feat(manager): switch group session reset from idle timeout (2880min) to daily at 04:00; remove keepalive mechanism (2422c98)

• feat(manager): reduce default context windows (qwen3.5-plus: 960k→200k, unknown models: 200k→150k) and support --context-window override for unknown models in model-switch skills (ed413cb)

• fix(manager,worker): fix ~/hiclaw-fs/ tilde-path resolution to absolute /root/hiclaw-fs/; add state.json initialization and manage-state.sh atomic script; move coding-cli and higress-gateway-management skills to skills-alpha/; set proper Matrix room power levels; unify AGENTS.md behavioral guidelines; fix project-management SKILL.md templates (142c716)

• fix(manager): fix worker container recreation on Manager upgrade (d4ca298)

• fix(worker): sync .openclaw/ directory to MinIO for session/cron persistence (4e5b702)

• fix: make container_api_available work in strict mode (set -euo pipefail) (eb4e73b)

• fix: add proper cleanup for mc mirror --watch background process (75e3ce9)

• fix(copaw): Windows compatibility — NotImplementedError for signal handlers on ProactorEventLoop; mc.exe download; Path.as_posix() for MinIO object keys (6e21acb)

• fix(manager): allow unstable room versions in Tuwunel to fix room version 11 error (4f4fde6)

• feat(copaw): buffer non-mentioned group messages as history context; download images for history when vision is enabled; bridge historyLimit config; strip leading $ from Matrix event IDs in media filenames; bump copaw-worker to 0.1.2 (7eec4a5)

• chore(manager,worker): update openclaw-base image tag to 20260313-5a0df68

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.5

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.5

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/alibaba/hiclaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://higress.ai/hiclaw/install.ps1'))

Documentation

For more details, see the installation guide.

v1.0.4

What's Changed

What's New

• Added CoPaw Worker container support — new copaw/Dockerfile, container lifecycle management (container_create_copaw_worker), random host port assignment with auto-retry on conflict, and on-demand web console toggle (enable-worker-console.sh).
• Added CoPaw Worker runtime package (copaw-worker CLI) that bridges openclaw.json → CoPaw config, implements MatrixChannel for Matrix communication, syncs config/skills from MinIO, and supports bidirectional file sync (remote→local + local→MinIO push loop).
• Added CoPaw remote deployment mode (--runtime copaw --remote) — installs the Worker directly on the user's local machine via pip, enabling tasks that require local environment access (e.g., opening a browser, running desktop apps, accessing local files). Remote copaw installs auto-include --console-port 8088 by default.
• Added worker runtime selection prompt to install scripts — users choose between OpenClaw and CoPaw during installation; default runtime stored in HICLAW_DEFAULT_WORKER_RUNTIME env var and used by create-worker.sh.
• Extracted worker model switch into standalone worker-model-switch skill.
• Added AI identity section to SOUL.md and User-Agent header (HiClaw/<version>) to AI route.

Bug Fixes

• Fixed CoPaw bridge.py path constants causing 401 AuthenticationError on LLM calls, and Podman container detection (/run/.containerenv) causing Matrix connection timeout.
• Fixed CoPaw MatrixChannel not mentioning sender in replies (manager ignored worker replies).
• Unified worker file-sync notification and task/project notification paths to work with both OpenClaw and CoPaw runtimes.
• Fixed model input field to be dynamic based on model vision capability instead of hardcoded.
• Fixed container timezone configuration from TZ env var.

新增功能

• CoPaw Worker 容器化支持 — 新增 copaw/Dockerfile、容器生命周期管理（container_create_copaw_worker）、随机 host port 分配与端口冲突自动重试、按需开关 Web 控制台（enable-worker-console.sh）。
• CoPaw Worker 运行时包（copaw-worker CLI）— 桥接 openclaw.json 到 CoPaw 配置、实现 MatrixChannel 通信、从 MinIO 同步配置和技能、支持双向文件同步（远程→本地 + 本地→MinIO 推送）。
• CoPaw 远程部署模式（--runtime copaw --remote）— 通过 pip 将 Worker 安装在用户本地机器上，支持需要访问本地环境的任务（如打开浏览器、运行桌面应用、访问本地文件）。远程 copaw 安装命令默认自带 --console-port 8088。
• 安装脚本新增 Worker 运行时选择提示 — 用户在安装时选择 OpenClaw 或 CoPaw，默认运行时存入 HICLAW_DEFAULT_WORKER_RUNTIME 环境变量，create-worker.sh 自动使用。
• Worker 模型切换拆分为独立 worker-model-switch skill。
• SOUL.md 新增 AI 身份声明，AI 路由新增 User-Agent 头（HiClaw/<version>）。

Bug 修复

• 修复 CoPaw bridge.py 路径常量导致 LLM 调用 401 认证错误，以及 Podman 容器环境检测（/run/.containerenv）导致 Matrix 连接超时。

• 修复 CoPaw MatrixChannel 回复未携带发送者信息（Manager 忽略 Worker 回复）。

• 统一 Worker 文件同步通知和任务/项目通知路径，兼容 OpenClaw 和 CoPaw 两种运行时。

• 修复模型 input 字段根据视觉能力动态设置，不再硬编码。

• 修复容器时区配置（通过 TZ 环境变量）。

• feat(manager): add AI identity section to Manager and Worker SOUL.md templates, ensuring agents understand they are AI not human and can work continuously (ecca010)

• fix: set container timezone from TZ env var in both Manager and Worker (install tzdata in base image, configure /etc/localtime and /etc/timezone at startup)

• feat(manager): add User-Agent header (HiClaw/) to default AI route via headerControl, and send it in LLM connectivity tests (3242d06)

• feat(openclaw-base): install cron package in base image, start crond in Manager (supervisord) and Worker (entrypoint)

• fix(manager): unify worker file-sync notification — replace runtime-specific hiclaw-sync command with generic "use your file-sync skill" message in lifecycle-worker.sh, push-worker-skills.sh, create-worker.sh, and start-manager-agent.sh; update worker-management/SKILL.md accordingly

• fix(manager): fix create-worker.sh to push runtime-specific AGENTS.md for copaw workers instead of always using openclaw's worker-agent/AGENTS.md

• feat(manager): add copaw-worker-agent/AGENTS.md describing copaw worker workspace layout and MinIO-based file access (no ~/hiclaw-fs/ mount)

• fix(manager): update task/project notification messages in task-management/SKILL.md and project-management/SKILL.md to use MinIO paths (hiclaw/hiclaw-storage/...) instead of local ~/hiclaw-fs/ paths, compatible with both openclaw and copaw workers

• fix(worker): update file-sync/SKILL.md to document MinIO→local path mapping so worker knows where to find files after hiclaw-sync

• fix(copaw): patch copaw module-level path constants (WORKING_DIR, SECRET_DIR, _PROVIDERS_JSON) at runtime in bridge.py so providers.json is written to and read from the correct worker-specific directory (fixes 401 AuthenticationError on LLM calls)

• feat(copaw): add copaw/ package — HiClaw's CoPaw Worker runtime (copaw-worker CLI) that bridges openclaw.json → CoPaw config, implements MatrixChannel, and syncs config from MinIO

• fix(manager): copaw install command now uses HICLAW_PORT_GATEWAY (external port) instead of internal :8080 so the command works on the host machine

• feat(copaw): add optional --console-port to copaw-worker; headless mode saves ~500MB RAM; startup prints memory tip in both cases; SKILL.md and create-worker.sh updated accordingly

• fix(copaw): fix MatrixChannel not mentioning sender in replies (missing sender_id in meta payload caused manager to ignore worker replies)

• feat(copaw): sync skills from MinIO on startup (_sync_skills)

• feat(copaw): rewrite sync.py to use mc CLI for all MinIO operations (mc cat, mc ls, mc alias set); remove httpx + AWS Signature V4 implementation

• feat(copaw): add CoPaw-specific file-sync skill (manager/agent/copaw-worker-agent/skills/file-sync/) with copaw-sync.py script for manual sync trigger; create-worker.sh selects runtime-specific file-sync skill from /opt/hiclaw/agent/copaw-worker-agent/ for copaw runtime

• feat(copaw): add local→MinIO change-triggered push loop (push_loop / push_local in sync.py); started alongside the existing remote→local sync loop in worker.py; mirrors openclaw worker entrypoint behavior (5s poll, excludes .copaw/ internals)

• fix(manager): add explicit runtime determination step (Step 0) to worker-management/SKILL.md so Manager auto-detects --runtime copaw from keywords like "copaw", "Python worker", "pip worker" in admin requests, preventing accidental openclaw container creation

• feat(manager): extract worker model switch into standalone worker-model-switch skill (SKILL.md + update-worker-model.sh); remove update-model action from lifecycle-worker.sh and model-related docs from worker-management/SKILL.md

• feat(copaw): seed CoPaw built-in skills (pdf, xlsx, docx, etc.) as base layer before overlaying Manager-pushed skills from MinIO in _sync_skills

• fix(manager): make model input field dynamic instead of hardcoded ["text", "image"] — deepseek, glm-5, MiniMax-M2.5, kimi-k2.5 and default models now correctly get ["text"] only; affects both json templates, model-switch scripts, and worker config generation

• feat(copaw): add copaw/Dockerfile and entrypoint for building hiclaw/copaw-worker container image; add container_create_copaw_worker in container-api.sh with random host port (10000-20000) and auto-retry on port conflict (810d21a)

• feat(manager): add enable-worker-console.sh to enable/disable CoPaw web console on demand by recreating the container (~500MB RAM saved when disabled) (810d21a)

• feat(manager): create-worker.sh defaults to HICLAW_DEFAULT_WORKER_RUNTIME env var; remote copaw installs auto-include --console-port 8088 (810d21a)

• feat(install): add worker runtime selection prompt (OpenClaw ~500MB vs CoPaw ~100MB) to both bash and PowerShell install scripts; write HICLAW_DEFAULT_WORKER_RUNTIME to env file (810d21a)

• fix(copaw): detect Podman containers via /run/.containerenv in bridge.py (fixes Matrix connection timeout in Podman deployments) (810d21a)

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.4

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.4

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/alibaba/hiclaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://higress.ai/hiclaw/install.ps1'))

Documentation

For more details, see the installation guide.

v1.0.3

What's Changed

• fix(manager): propagate Manager TZ env to Worker containers — container-api.sh (local socket mode), create-worker.sh (remote install command), and install_worker in hiclaw-install.sh all now pass TZ so Worker timezone matches Manager

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.3

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.3

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/higress-group/hiclaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://higress.ai/hiclaw/install.ps1'))

Documentation

For more details, see the installation guide.

v1.0.2

What's Changed

• fix(manager): wait for Tuwunel via /_tuwunel/server_version in start-manager-agent.sh; add explicit Matrix ready check in install scripts before sending welcome message
• feat(manager): add "Sending Files to Admin" constraint to TOOLS.md — upload to Matrix media server and reply with MEDIA: <mxc://...> format
• feat(manager): add "Upload a File (Media Upload)" section to matrix-server-management SKILL.md with full curl examples

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.2

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.2

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/higress-group/hiclaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; Invoke-Expression ((New-Object System.Net.WebClient).DownloadString('https://higress.ai/hiclaw/install.ps1'))

Documentation

For more details, see the installation guide.