feat(compat): bump openclaw from 2026.3.11 to 2026.4.2

[ericksoa]

Summary

Bumps OpenClaw from 2026.3.11 to 2026.4.2.

• Dockerfile.base: openclaw@2026.3.11 → openclaw@2026.4.2
• Dockerfile.base: add flows/ and logs/ writable symlinks (new directories introduced since 3.11)
• blueprint.yaml: min_openclaw_version → 2026.4.2
• Test: update hardcoded version expectation

Static analysis

• Plugin registration API: only additive changes, no breaking signatures
• CLI commands (openclaw doctor --fix, openclaw plugins install, openclaw gateway run): all work
• openclaw.json config format: unchanged
• Plugin build: passes
• All 199 plugin unit tests: pass

Risks needing E2E validation

1. flows/ and logs/ symlinks — new dirs added here. Watch for EACCES errors if the gateway writes to paths not yet covered.
2. ProviderPlugin.models type shape — NemoClaw passes a non-standard shape via duck-typing. Verify inference still works end-to-end.
3. ProviderAuthMethod shape — auth is handled externally by OpenShell. Verify gateway-routed inference succeeds.

Test plan

• Build sandbox image locally with nemoclaw onboard
• openclaw tui launches and accepts input
• openclaw agent --agent main --local -m "hello" returns a response
• Gateway logs show no EACCES on .openclaw/flows or .openclaw/logs
• nemoclaw <name> policy-list works
• nemoclaw <name> connect drops into sandbox shell
• Nightly E2E passes on this branch
• If anything fails, document the failure here

Summary by CodeRabbit

• New Features

  • Exposes a writable flows directory via a runtime-accessible symlink for workflows and state.

• Chores

  • Upgrades OpenClaw CLI to 2026.4.2.
  • Raises the minimum required OpenClaw version to 2026.4.2.

• Tests

  • Updates preflight test expectation to match the new OpenClaw CLI version.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Docker base image now creates a writable /sandbox/.openclaw-data/flows directory and exposes it via a symlink at /sandbox/.openclaw/flows. The globally installed openclaw npm package and the blueprint minimum OpenClaw version were bumped to 2026.4.2. (50 words)

Changes

Cohort / File(s)	Summary
Docker Configuration Dockerfile.base	Pre-create writable /sandbox/.openclaw-data/flows and add symlink /sandbox/.openclaw/flows. Upgrade globally installed openclaw npm package from 2026.3.11 → 2026.4.2.
Blueprint Manifest nemoclaw-blueprint/blueprint.yaml	Increase min_openclaw_version from 2026.3.0 → 2026.4.2.
Tests test/install-preflight.test.js	Update test expectation for fallback OpenClaw version from 2026.3.11 → 2026.4.2.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Poem

🐇 I hopped through layers, made a cozy flow,
A folder planted where the data can grow,
Version nudged forward, tidy and spry,
Symlinks and footsteps beneath the sky.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The pull request title clearly and specifically summarizes the main change: bumping the OpenClaw version from 2026.3.11 to 2026.4.2.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/openclaw-bump-2026.4.2

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[cv]

I merged the latest main into this branch and resolved the conflicts by keeping the new ARG-based OpenClaw install flow from main while bumping the default OPENCLAW_VERSION to 2026.4.2.

I also updated the installer test to derive the expected version from Dockerfile.base instead of keeping a hardcoded literal.

Local validation run:

• npm test -- --run test/install-preflight.test.ts

That passed. CI is rerunning now.

[cv]

I merged the latest main again and resolved the blueprint conflict by keeping the new pinned digest fields from main while still bumping min_openclaw_version to 2026.4.2.

That means the branch now preserves the current pinned sandbox image hashes:

• top-level digest: sha256:b3d832b596ab6b7184a9dcb4ae93337ca32851a4f93b00765cc12de26baa3a9a
• components.sandbox.image: ghcr.io/nvidia/openshell-community/sandboxes/openclaw@sha256:b3d832b596ab6b7184a9dcb4ae93337ca32851a4f93b00765cc12de26baa3a9a

Focused local validation:

• npm test -- --run test/install-preflight.test.ts test/validate-blueprint.test.ts

That passed. CI is rerunning on the updated branch.