Ai

OpenClaw v2026.4.21 Improves Image Generation Defaults and Command Security

OpenClaw v2026.4.21 Improves Image Generation Defaults and Command Security

OpenClaw v2026.4.21 is a focused product update that sharpens image-generation defaults while closing several important reliability and security gaps. The headline change is a move to gpt-image-2 as the default bundled image provider, alongside updated 2K and 4K generation hints. Just as important, this release tightens owner-only command enforcement, improves packaged dependency recovery, and fixes several runtime edge cases across Slack, browser automation, and npm installs.

What Changed

The most visible upgrade in this release is in media generation. OpenClaw now defaults its bundled OpenAI image-generation provider and live media smoke tests to gpt-image-2. Documentation and tool metadata were also updated to advertise newer 2K and 4K size hints, making higher-resolution generation paths clearer for users and integrators.

On the platform reliability side, the bundled plugin doctor flow now repairs plugin runtime dependencies from doctor paths more accurately. This matters for packaged installs, where missing channel or provider dependencies can now be recovered without requiring broad core dependency installs.

Image-generation fallback behavior also became more transparent. When a provider or model candidate fails, OpenClaw now logs that failed candidate at warn level before falling back automatically. That means OpenAI image failures will remain visible in gateway logs even if another provider succeeds later, improving troubleshooting and observability.

Security enforcement was also tightened in command handling. Owner-enforced commands now require an actual owner identity match or internal operator.admin status. This closes a permissive fallback path where non-owner senders could previously reach owner-only commands if wildcard allowFrom rules or empty owner-candidate lists were present while enforceOwnerForCommands=true and commands.ownerAllowFrom was unset.

Several runtime fixes round out the release. Slack outbound sends now preserve thread aliases when threadTs is supplied, helping generic runtime sends stay inside the correct Slack thread. Browser automation now rejects invalid ax<N> accessibility refs immediately instead of waiting for a timeout. And npm install behavior is improved by mirroring the node-domexception alias into root package.json overrides.

Why It Matters

This release is less about flashy new surface area and more about making OpenClaw safer, clearer, and easier to operate in production. The switch to gpt-image-2 aligns the default media stack with newer OpenAI capabilities and makes high-resolution generation more discoverable.

The command-auth fix is especially meaningful for operators running owner-restricted environments. It reduces the chance of policy bypass through permissive fallback conditions, which is critical for administrative command safety.

Meanwhile, the dependency repair, warning-level fallback logs, Slack thread preservation, and faster browser ref rejection all improve day-to-day operational reliability. Together, these are the kinds of fixes that reduce hidden failure modes, shorten debugging time, and make packaged deployments behave more predictably.

Official Source: https://github.com/openclaw/openclaw/releases/tag/v2026.4.21