$git log --oneline
2026.3.12MINORβ BREAKINGReleased: 2026-03-12
Dashboard v2 + Fast Mode + Kubernetes + 15 CVE Patches
/** Complete UI refresh, speed optimization toggles, K8s support, and critical security hardening. */
#Dashboard#FastMode#K8s#Security#CVE#Plugins
whats_new.md
β¨ What's New
Control UI / Dashboard v2
Complete gateway dashboard refresh with modular overview, chat, config, agent, and session views. New command palette and mobile bottom tabs. Richer chat tools integration.
Fast Mode
Configurable session-level fast toggles for OpenAI/GPT-5.4 and Anthropic/Claude. Per-model config defaults and request shaping for speed optimization.
Kubernetes Support
Starter Kubernetes install path with raw manifests and deployment documentation. Production-ready K8s deployment for enterprise users.
Provider Plugin Architecture
Ollama, vLLM, and SGLang moved onto a provider-plugin architecture for more modular core provider wiring.
security_fixes.md
π Security (15+ CVE Patches)
π‘15+ critical CVEs patched addressing remote execution and unauthorized access exploits
π‘Implicit workspace plugin auto-loads completely disabled to prevent unauthorized code execution from cloned repos
π‘Internal chat commands (/config, /debug) restricted to owner-level accounts
π‘Strict enforcement of cryptographic signatures for all incoming webhooks
π‘Slack and Microsoft Teams now require stable channel and team IDs for message delivery
breaking_changes.md
β οΈ Breaking Changes
β Implicit workspace plugin autoloads are disabled β explicit trust required for execution
β /config and /debug commands restricted to owner-level accounts only
β All incoming webhooks now require cryptographic signature verification β migrate encryption keys
β Slack and Microsoft Teams require stable channel and team IDs for message delivery
upgrade.sh
π¦ Upgrade to 2026.3.12
# npm global install
$ npm install -g openclaw@2026.3.12
# or update existing install
$ openclaw update