惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
T
Troy Hunt's Blog
Scott Helme
Scott Helme
T
Threat Research - Cisco Blogs
T
Tenable Blog
L
LINUX DO - 热门话题
V
Visual Studio Blog
I
Intezer
Blog — PlanetScale
Blog — PlanetScale
Cisco Talos Blog
Cisco Talos Blog
A
Arctic Wolf
C
Cyber Attacks, Cyber Crime and Cyber Security
F
Fortinet All Blogs
aimingoo的专栏
aimingoo的专栏
Know Your Adversary
Know Your Adversary
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
N
Netflix TechBlog - Medium
SecWiki News
SecWiki News
I
InfoQ
Microsoft Security Blog
Microsoft Security Blog
Project Zero
Project Zero
W
WeLiveSecurity
Microsoft Azure Blog
Microsoft Azure Blog
A
About on SuperTechFans
Recorded Future
Recorded Future
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Vercel News
Vercel News
S
Securelist
Spread Privacy
Spread Privacy
L
LangChain Blog
云风的 BLOG
云风的 BLOG
G
Google Developers Blog
MongoDB | Blog
MongoDB | Blog
Google DeepMind News
Google DeepMind News
Recent Commits to openclaw:main
Recent Commits to openclaw:main
D
Darknet – Hacking Tools, Hacker News & Cyber Security
C
CERT Recently Published Vulnerability Notes
罗磊的独立博客
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
The Last Watchdog
The Last Watchdog
Attack and Defense Labs
Attack and Defense Labs
博客园 - 司徒正美
Help Net Security
Help Net Security
L
Lohrmann on Cybersecurity
人人都是产品经理
人人都是产品经理
Forbes - Security
Forbes - Security
Hacker News - Newest:
Hacker News - Newest: "LLM"
PCI Perspectives
PCI Perspectives
博客园 - 【当耐特】
T
Tor Project blog

Recent Commits to openclaw:main

test: merge chat side-result checks · openclaw/openclaw@ddd2c2a test: merge cron history checks · openclaw/openclaw@f7eb746 test: merge responsive navigation shell checks · openclaw/openclaw@c2e4b47 docs(changelog): add codex oauth fixes · openclaw/openclaw@628e6cd test: merge navigation routing cases · openclaw/openclaw@5d8cecb Tests: mock channel registry bundled fallback · openclaw/openclaw@2b08233 Secrets: avoid broad web search discovery for single plugin config · openclaw/openclaw@a464f59 test: merge config view browser checks · openclaw/openclaw@20cf511 fix(status): align oauth health with runtime · openclaw/openclaw@eed7116 feat: add macOS screen snapshots for monitor preview (#67954) thanks … · openclaw/openclaw@f377db1 fix: report shared auth scopes in hello-ok (#67810) thanks @BunsDev · openclaw/openclaw@0b6c39b Auto-reply: avoid eager bundled route fallback · openclaw/openclaw@3ea1bf4 Tests: narrow session binding contract setup · openclaw/openclaw@54e4e16 fix(macOS): enable undo/redo in webchat composer text input (#34962) · openclaw/openclaw@00951dc Tests: speed up channel setup promotion · openclaw/openclaw@82b529a Docs: refresh agent instructions · openclaw/openclaw@5775fe2 fix(auth): serialize OAuth refresh across agents to fix #26322 (#67876) · openclaw/openclaw@8e79080 test: allow ollama public surface boundary test · openclaw/openclaw@7d4f1a6 Docs: add test performance guardrails · openclaw/openclaw@89706d3 Tests: restore context-engine usage proof · openclaw/openclaw@e4c4f95 Tests: slim context engine runtime coverage · openclaw/openclaw@74c198f ci: retry failed custom checkouts · openclaw/openclaw@0ee5baf test: trim duplicate provider auth onboarding cases · openclaw/openclaw@1ffc02e matrix: fix sessions_spawn --thread subagent session spawning (#67643) · openclaw/openclaw@1ce2596 test: reduce auth choice fixture churn · openclaw/openclaw@857b9cd test: mock health status config boundaries · openclaw/openclaw@9d5ab4a test: mock onboard config io boundary · openclaw/openclaw@299694d test: mock legacy state plugin boundaries · openclaw/openclaw@2713089 test: mock channel install boundaries · openclaw/openclaw@b945248 test: mock doctor preview channel boundaries · openclaw/openclaw@b1a3ad4 test: trim doctor command hotspots · openclaw/openclaw@c66f16a test: isolate agent auth and spawn hotspots · openclaw/openclaw@9285935 test: stabilize MCP startup disposal race · openclaw/openclaw@dd9d2eb test: merge browser contract server suites · openclaw/openclaw@5817a76 test: narrow ollama provider discovery setup · openclaw/openclaw@a0d9598 build: declare qa-lab aimock runtime dependency · openclaw/openclaw@24431e5 test: speed up safe-bins exec harness · openclaw/openclaw@ee856ab test: preserve tool helpers in embedded runner mocks · openclaw/openclaw@acd86a0 refactor: move memory embeddings into provider plugins · openclaw/openclaw@77e6e4c test: reuse system-run temp fixtures · openclaw/openclaw@7e9ff0f test: trim hotspot wait overhead · openclaw/openclaw@12a59b0 Check: avoid duplicate boundary prep · openclaw/openclaw@baf11b8 test: reduce hotspot fixture overhead · openclaw/openclaw@3a59edd feat(ui): overhaul settings and slash command UX (#67819) thanks @Bun… · openclaw/openclaw@2cfb660 QA Matrix: exit cleanly on failure · openclaw/openclaw@42805d2 QA Matrix: isolate scenario coverage · openclaw/openclaw@7e659e1 Matrix: refresh crypto bootstrap state · openclaw/openclaw@94081d8 QA Lab: add provider registry · openclaw/openclaw@bb7e982 Matrix: add plugin changelog · openclaw/openclaw@4acab55 test: trim more hotspot overhead · openclaw/openclaw@f485311 test: trim remaining hotspot tests · openclaw/openclaw@6ba8626 test: narrow hotspot mocks · openclaw/openclaw@dbc8179 test: isolate gemini embedding request helpers · openclaw/openclaw@cd330f5 test: trim memory and mcp hotspots · openclaw/openclaw@fd48dfa test: slim provider registry mocks · openclaw/openclaw@2e08c77 test: harden Parallels update smoke · openclaw/openclaw@1a98090 feat: default Anthropic to Opus 4.7 · openclaw/openclaw@628b454 fix: harden node-host shell payload mutability checks · openclaw/openclaw@75c551e fix: land node-host approval binding for native binaries (#66731) (th… · openclaw/openclaw@29919bb CI: add daily schedule to CodeQL workflow (#67645) · openclaw/openclaw@69d25f5 fix(gateway): capture config hash after plugin auto-enable to prevent… · openclaw/openclaw@8c11210 fix: repair sanitized replay tool results before send (#67620) (thank… · openclaw/openclaw@c3c7a99 fix: restrict HTML timeout short-circuit to transient statuses · openclaw/openclaw@de129a6 fix: keep TUI watchdog bound to active run (#67401) (thanks @xantorres) · openclaw/openclaw@3525273 Gateway/skills: dedupe skills prefix-match + drop dead fallback on log · openclaw/openclaw@d7f489f Extensions/lmstudio: back off inference preload after consecutive fai… · openclaw/openclaw@b555214 TUI/streaming: add watchdog that resets the activity indicator after … · openclaw/openclaw@f44ab20 Agents/tool-loop: enable unknown-tool stream guard by default · openclaw/openclaw@36ed367 Gateway/skills: invalidate session skills snapshot on config write · openclaw/openclaw@b23d59a fix: classify HTML provider error pages correctly (#67642) (thanks @s… · openclaw/openclaw@e588e90 fix(skills): remove unused model-usage import (#67641) · openclaw/openclaw@55f05df docs(changelog): credit codex fix superseded PRs · openclaw/openclaw@e485f24 fix(openai-codex): normalize stale transport metadata in resolution a… · openclaw/openclaw@90801ba CI: pin Docker-related GitHub Actions (#67632) · openclaw/openclaw@f697b01 Android: modernize WebView and discovery API usage (#67627) · openclaw/openclaw@44a6e50 fix(deps): bump hono to 4.12.14 and @hono/node-server to 1.19.14 (GHS… · openclaw/openclaw@fbccc18 fix(deps): bump dompurify to 3.4.0 (#67614) · openclaw/openclaw@2c2dc00 CI: add explicit permissions to all workflow jobs (fixes code-scannin… · openclaw/openclaw@01b7516 fix: register bundled TTS providers and route overrides correctly (#6… · openclaw/openclaw@6ea3cdd fix: align host tilde paths with OS home (#62804) (thanks @stainlu) · openclaw/openclaw@ecfaf64 fix: flush creds queue before reconnect socket open (#67464) (thanks … · openclaw/openclaw@405c63f fix: strip standalone <function> tool call tags from visible text (#6… · openclaw/openclaw@78df859 fix(agents): preserve cli session metadata before transcript persist … · openclaw/openclaw@898fd04 docs(changelog): move cli transcript entry · openclaw/openclaw@c1817c6 fix(agents): normalize cli transcript api field · openclaw/openclaw@3a3fae0 docs(changelog): note cli transcript persistence · openclaw/openclaw@6c343f1 fix(agents): persist cli transcript turns · openclaw/openclaw@b8ef507 fix(msteams): harden security-sensitive flows (#65841) · openclaw/openclaw@c56b56e [Dashboard] Fix exec approval modal overflow for long command content… · openclaw/openclaw@053c5b0 Docs: remove QA changelog entry · openclaw/openclaw@7fd5771 QA: fix private runtime source loading (#67428) · openclaw/openclaw@d5933af docs(gateway): correct protocol.md schema path, hello-ok example, aut… · openclaw/openclaw@489404d CI: pin Node 22 runners to 22.18.0 · openclaw/openclaw@4ffa621 models.authStatus: normalize provider ids + tighten env-backed escape… · openclaw/openclaw@f2fdb9d Update CHANGELOG.md · openclaw/openclaw@7694a92 test(parallels): clean up npm update guard jobs · openclaw/openclaw@045ea7b Plugins: prefer scanDir override paths · openclaw/openclaw@b2974da fix(dreaming): default storage.mode to "separate" so phase blocks sto… · openclaw/openclaw@8c392f0 fix(memory-core): skip dreaming transcript ingestion via session stor… · openclaw/openclaw@a1b01f0 fix: dedupe replayed exec.finished node events (#67281) · openclaw/openclaw@5dcf526
fix(voice): reuse preflight transcripts across channels · openclaw/openclaw@6a67f65
steipete · 2026-04-26 · via Recent Commits to openclaw:main
Original file line numberDiff line numberDiff line change

@@ -96,6 +96,14 @@ Docs: https://docs.openclaw.ai

9696

before agent dispatch and keep raw Feishu `file_key` payloads out of message

9797

text. Fixes #67120 and #61876.

9898

- Tasks: terminalize async Gateway agent task records from the Gateway run result while preserving aborted, failed, and cancelled outcomes instead of leaving completed runs stuck as active or lost. (#71905) Thanks @likewen-tech.

99+

- WhatsApp: let authorized group voice-note transcripts satisfy mention gating

100+

before reply dispatch, while keeping unmentioned transcripts in pending group

101+

history. Fixes #44908.

102+

- Media understanding: carry channel voice-note preflight state into attachment

103+

selection so WhatsApp, Feishu, Telegram, and Discord do not transcribe the

104+

same inbound audio twice. Fixes #70580.

105+

- TTS/BlueBubbles: deliver compatible auto-TTS audio as iMessage voice memo

106+

bubbles instead of plain MP3/CAF file attachments. Fixes #16848.

99107

- ACP: send subagent and async-task completion wakes to external ACP harnesses as

100108

plain prompts instead of OpenClaw internal runtime-context envelopes, while

101109

keeping those envelopes out of ACP transcripts.

Original file line numberDiff line numberDiff line change

@@ -21,6 +21,8 @@ need a separate `openclaw plugins install` step.

2121

- OpenClaw talks to it through its REST API (`GET /api/v1/ping`, `POST /message/text`, `POST /chat/:id/*`).

2222

- Incoming messages arrive via webhooks; outgoing replies, typing indicators, read receipts, and tapbacks are REST calls.

2323

- Attachments and stickers are ingested as inbound media (and surfaced to the agent when possible).

24+

- Auto-TTS replies that synthesize MP3 or CAF audio are delivered as iMessage

25+

voice memo bubbles instead of plain file attachments.

2426

- Pairing/allowlist works the same way as other channels (`/channels/pairing` etc) with `channels.bluebubbles.allowFrom` + pairing codes.

2527

- Reactions are surfaced as system events just like Slack/Telegram so agents can "mention" them before replying.

2628

- Advanced features: edit, unsend, reply threading, message effects, group management.

Original file line numberDiff line numberDiff line change

@@ -244,6 +244,7 @@ content and identifiers.

244244
245245

- explicit WhatsApp mentions of the bot identity

246246

- configured mention regex patterns (`agents.list[].groupChat.mentionPatterns`, fallback `messages.groupChat.mentionPatterns`)

247+

- inbound voice-note transcripts for authorized group messages

247248

- implicit reply-to-bot detection (reply sender matches bot identity)

248249
249250

Security note:

@@ -296,6 +297,11 @@ When the linked self number is also present in `allowFrom`, WhatsApp self-chat s

296297

- `<media:document>`

297298

- `<media:sticker>`

298299
300+

Authorized group voice notes are transcribed before mention gating when the

301+

body is only `<media:audio>`, so saying the bot mention in the voice note can

302+

trigger the reply. If the transcript still does not mention the bot, the

303+

transcript is kept in pending group history instead of the raw placeholder.

304+
299305

Location bodies use terse coordinate text. Location labels/comments and contact/vCard details are rendered as fenced untrusted metadata, not inline prompt text.

300306
301307

</Accordion>

Original file line numberDiff line numberDiff line change

@@ -58,6 +58,10 @@ Video and music generation run as background tasks because provider processing t

5858
5959

Deepgram, ElevenLabs, Mistral, OpenAI, SenseAudio, and xAI can all transcribe

6060

inbound audio through the batch `tools.media.audio` path when configured.

61+

Channel plugins that preflight a voice note for mention gating or command

62+

parsing mark the transcribed attachment on the inbound context, so the shared

63+

media-understanding pass reuses that transcript instead of making a second STT

64+

call for the same audio.

6165

Deepgram, ElevenLabs, Mistral, OpenAI, and xAI also register Voice Call

6266

streaming STT providers, so live phone audio can be forwarded to the selected

6367

vendor without waiting for a completed recording.

Original file line numberDiff line numberDiff line change

@@ -330,7 +330,7 @@ export const bluebubblesPlugin: ChannelPlugin<ResolvedBlueBubblesAccount, BlueBu

330330

},

331331

sendMedia: async (ctx) => {

332332

const runtime = await loadBlueBubblesChannelRuntime();

333-

const { cfg, to, text, mediaUrl, accountId, replyToId } = ctx;

333+

const { cfg, to, text, mediaUrl, accountId, replyToId, audioAsVoice } = ctx;

334334

const { mediaPath, mediaBuffer, contentType, filename, caption } = ctx as {

335335

mediaPath?: string;

336336

mediaBuffer?: Uint8Array;

@@ -349,6 +349,7 @@ export const bluebubblesPlugin: ChannelPlugin<ResolvedBlueBubblesAccount, BlueBu

349349

caption: caption ?? text ?? undefined,

350350

replyToId: replyToId ?? null,

351351

accountId: accountId ?? undefined,

352+

asVoice: audioAsVoice === true,

352353

});

353354

},

354355

},

Original file line numberDiff line numberDiff line change

@@ -323,4 +323,27 @@ describe("sendBlueBubblesMedia local-path hardening", () => {

323323

);

324324

expect(sendBlueBubblesAttachmentMock).toHaveBeenCalledTimes(1);

325325

});

326+
327+

it("passes asVoice through to attachment delivery", async () => {

328+

runtimeMocks.fetchRemoteMedia.mockResolvedValueOnce({

329+

buffer: new Uint8Array([1, 2, 3]),

330+

contentType: "audio/mpeg",

331+

fileName: "voice.mp3",

332+

});

333+
334+

await sendBlueBubblesMedia({

335+

cfg: createConfig(),

336+

to: "chat:123",

337+

mediaUrl: "https://example.com/voice.mp3",

338+

asVoice: true,

339+

});

340+
341+

expect(sendBlueBubblesAttachmentMock).toHaveBeenCalledWith(

342+

expect.objectContaining({

343+

asVoice: true,

344+

contentType: "audio/mpeg",

345+

filename: "voice.mp3",

346+

}),

347+

);

348+

});

326349

});

Original file line numberDiff line numberDiff line change

@@ -1686,6 +1686,7 @@ async function processMessageAfterDedupe(

16861686

caption: caption ?? undefined,

16871687

replyToId: replyToMessageGuid || null,

16881688

accountId: account.accountId,

1689+

asVoice: payload.audioAsVoice === true,

16891690

});

16901691

} catch (err) {

16911692

forgetPendingOutboundMessageId(pendingId);

Original file line numberDiff line numberDiff line change

@@ -405,6 +405,7 @@ describe("preflightDiscordMessage", () => {

405405

);

406406

expect(result).not.toBeNull();

407407

expect(result?.isDirectMessage).toBe(true);

408+

expect(result?.preflightAudioTranscript).toBe("hello openclaw from dm audio");

408409

});

409410
410411

it("falls back to the default discord account for omitted-account dm authorization", async () => {

@@ -1096,6 +1097,7 @@ describe("preflightDiscordMessage", () => {

10961097

);

10971098

expect(result).not.toBeNull();

10981099

expect(result?.wasMentioned).toBe(true);

1100+

expect(result?.preflightAudioTranscript).toBe("hey openclaw");

10991101

});

11001102
11011103

it("does not transcribe guild audio from unauthorized members", async () => {

Original file line numberDiff line numberDiff line change

@@ -1112,6 +1112,7 @@ export async function preflightDiscordMessage(

11121112

commandAuthorized,

11131113

baseText,

11141114

messageText,

1115+

...(preflightTranscript !== undefined ? { preflightAudioTranscript: preflightTranscript } : {}),

11151116

wasMentioned,

11161117

route: effectiveRoute,

11171118

threadBinding,

Original file line numberDiff line numberDiff line change

@@ -56,6 +56,7 @@ export type DiscordMessagePreflightContext = DiscordMessagePreflightSharedFields

5656

commandAuthorized: boolean;

5757

baseText: string;

5858

messageText: string;

59+

preflightAudioTranscript?: string;

5960

wasMentioned: boolean;

6061
6162

route: ReturnType<typeof resolveAgentRoute>;