chore(openclaw): 升级 OpenClaw 至 2026.4.9

[xzq-xu]

OpenClaw 版本更新

项目	值
当前版本	2026.4.8
最新版本	2026.4.9
Release	https://github.com/openclaw/openclaw/releases/tag/v2026.4.9

CHANGELOG 摘要

展开查看

Changes

• Memory/dreaming: add a grounded REM backfill lane with historical rem-harness --path, diary commit/reset flows, cleaner durable-fact extraction, and live short-term promotion integration so old daily notes can replay into Dreams and durable memory without a second memory stack. Thanks @mbelinky.
• Control UI/dreaming: add a structured diary view with timeline navigation, backfill/reset controls, traceable dreaming summaries, and a grounded Scene lane with promotion hints plus a safe clear-grounded action for staged backfill signals. (#63395) Thanks @mbelinky.
• QA/lab: add character-vibes evaluation reports with model selection and parallel runs so live QA can compare candidate behavior faster.
• Plugins/provider-auth: let provider manifests declare providerAuthAliases so provider variants can share env vars, auth profiles, config-backed auth, and API-key onboarding choices without core-specific wiring.
• iOS: pin release versioning to an explicit CalVer in apps/ios/version.json, keep TestFlight iteration on the same short version until maintainers intentionally promote the next gateway version, and add the documented pnpm ios:version:pin -- --from-gateway workflow for release trains. (#63001) Thanks @ngutman.

Fixes

• Browser/security: re-run blocked-destination safety checks after interaction-driven main-frame navigations from click, evaluate, hook-triggered click, and batched action flows, so browser interactions cannot bypass the SSRF quarantine when they land on forbidden URLs. (#63226) Thanks @eleqtrizit.
• Security/dotenv: block runtime-control env vars plus browser-control override and skip-server env vars from untrusted workspace .env files, and reject unsafe URL-style browser control override specifiers before lazy loading. (#62660, #62663) Thanks @eleqtrizit.
• Gateway/node exec events: mark remote node exec.started, exec.finished, and exec.denied summaries as untrusted system events and sanitize node-provided command/o

集成面检查清单

对照 ee/docs/OpenClaw集成面清单.md，逐项确认新版本兼容性：

• 配置 Schema — openclaw.json Zod strict schema 是否接受我们写入的全部字段
• 文件系统路径 — /root/.openclaw/ 目录结构是否变更
• Session 文件格式 — sessions.json / .jsonl 结构是否变更
• Channel Plugin SDK — openclaw/plugin-sdk API 是否有 breaking change
• Gateway 协议 — 端口 (18789/9721)、/healthz、认证方式是否变更
• CLI 行为 — openclaw gateway 参数是否变更
• Gene/Skill 注入 — SKILL.md 格式、extraDirs 机制是否变更
• 安全管道 — tools.exec.* 配置项、Security WebSocket 协议是否变更
• 镜像验证 — ./verify.sh <image:tag> 全部 PASS

---

此 PR 由 GitHub Actions 自动创建。

合并后请：

1. 构建新镜像：./build.sh openclaw --version 2026.4.9
2. 运行验证：./verify.sh <image:tag>
3. 在引擎版本管理中发布新版本

[xzq-xu]

这条自动升级 PR 当前不建议继续作为候选合并项。

原因有两点：

1. 它已经被更高版本的 #202 / #203 覆盖，继续保留 2026.4.9 会增加误合并旧版本的风险。
2. 该 PR 只有 Dockerfile 版本号变更，没有附带 nodeskclaw-artifacts/build.sh / nodeskclaw-artifacts/verify.sh 的验证结果，也没有集成面检查完成记录。

建议直接关闭该 PR，避免升级队列里同时挂多个过期版本。

[Xy718]

Superseded by #246, which tracks the latest OpenClaw target version (2026.5.7). Closing this older upgrade PR to keep the queue focused.