OpenClaw v2026.2.25 ships with polished Android chat delivery, a clearer heartbeat configuration model, and the largest batch of security fixes in a single release this month.
Android Chat Improvements
This release brings enhanced streaming delivery and improved markdown rendering to the Android app, including better GitHub-flavored markdown support. Startup performance gets a boost with deferred foreground-service initialization, and a new stacked compose button layout improves usability on small screens.
Heartbeat Policy Changes
The previous heartbeat DM toggle has been replaced with agents.defaults.heartbeat.directPolicy, offering clearer delivery semantics. The default has been reset to allow — users who previously relied on the blocking behavior should explicitly set block in their config.
Security Hardening
Over 15 security issues were addressed in this release:
- Gateway auth hardening — origin checks and password-auth throttling to slow brute-force attempts.
- Workspace symlink escape prevention — blocks path traversal through crafted symbolic links.
- Channel authorization enforcement — reactions and interactions across Slack, Discord, Signal, and Telegram now require proper authorization.
- IPv6 multicast SSRF classification — closes a gap in SSRF protections.
- Microsoft Teams file consent binding — prevents unauthorized file access.
Bug Fixes
Notable fixes include a subagent delivery state machine refactor addressing channel plugin resolution failures, Telegram webhook processing improvements preventing request hangs, and Slack session thread context overflow handling with configurable token limits.
Branding
This release also standardizes identifiers across Apple surfaces from bot.molt to ai.openclaw, completing the rebranding from the Moltbot era.
OpenClaw Launch instances will receive this update automatically.