Update openclaw to version v2026.2.15 (#4776)

openclaw/docker-compose.yml

@@ -6,7 +6,7 @@ services:
       APP_PORT: 18789
 
   gateway:
-    image: ghcr.io/getumbrel/openclaw-umbrel:2026.2.12@sha256:0f5d69627686c0f0428b3d98f892fdc1e04283281c566ca2e234b80fad23ab4d
+    image: ghcr.io/getumbrel/openclaw-umbrel:2026.2.15@sha256:72dee9df4e86b8b498e4de17041da4ade76c1a753e62859209ba13968ac07657
     user: "1000:1000"
     init: true
     restart: on-failure

openclaw/hooks/pre-start

@@ -0,0 +1,34 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# OpenClaw uses a Chromium-based browser profile under app data.
+# After unclean shutdowns or app restarts, Chromium singleton files can remain
+# and block the next browser startup. We remove those stale files here.
+
+APP_DIR="$(readlink -f "$(dirname "${BASH_SOURCE[0]}")/..")"
+APP_DATA_DIR="${APP_DIR}/data"
+
+FILES_TO_REMOVE=(
+  "${APP_DATA_DIR}/.openclaw/browser/openclaw/user-data/SingletonLock"
+  "${APP_DATA_DIR}/.openclaw/browser/openclaw/user-data/SingletonCookie"
+  "${APP_DATA_DIR}/.openclaw/browser/openclaw/user-data/SingletonSocket"
+  "${APP_DATA_DIR}/.openclaw/browser/openclaw/user-data/Default/SingletonLock"
+  "${APP_DATA_DIR}/.openclaw/browser/openclaw/user-data/Default/SingletonCookie"
+  "${APP_DATA_DIR}/.openclaw/browser/openclaw/user-data/Default/SingletonSocket"
+)
+
+removed_count=0
+
+for file in "${FILES_TO_REMOVE[@]}"; do
+  if [[ -e "${file}" || -L "${file}" ]]; then
+    rm -f "${file}"
+    echo "OpenClaw: Removed stale Chromium singleton file: ${file}"
+    ((removed_count+=1))
+  fi
+done
+
+if [[ "${removed_count}" -eq 0 ]]; then
+  echo "OpenClaw: No stale Chromium singleton files found."
+fi
+
+exit 0

openclaw/umbrel-app.yml

@@ -1,9 +1,9 @@
-manifestVersion: 1
+manifestVersion: 1.1
 id: openclaw
 name: OpenClaw
 tagline: The AI that actually does things
 category: ai
-version: "2026.2.12"
+version: "2026.2.15"
 port: 18789
 path: ""
 description: >-
@@ -39,14 +39,15 @@ gallery:
   - 2.jpg
   - 3.jpg
 releaseNotes: >-
-  This release focuses on security hardening, messaging platform improvements, and reliability fixes:
-    - Enhanced security across webhook authentication, browser control, session handling, and content processing
-    - Improved Telegram support with better blockquote rendering and reaction handling
-    - WhatsApp formatting improvements for bold and strikethrough text
-    - Better cron job reliability with fixes for scheduling, duplicate execution prevention, and error isolation
-    - Expanded AI provider support including Z.AI and updated MiniMax models
-    - Gateway improvements for message handling, authentication, and asset serving
-    - CLI enhancements with local timezone support for log viewing
+  This release brings Discord interactive components, nested sub-agents, and comprehensive security hardening:
+    - Discord now supports rich interactive prompts with buttons, selects, modals, and file attachments for native interaction
+    - Nested sub-agents allow sub-agents to spawn their own children with configurable depth limits
+    - Major security improvements across webhook authentication, browser control, session handling, sandbox configuration, and content processing
+    - Enhanced messaging platform support including Telegram streaming fixes, WhatsApp media handling, and LINE webhook security
+    - Memory system improvements with better QMD collection management and Unicode-aware search
+    - Gateway and agent reliability fixes for session routing, context window handling, and compaction timeouts
+    - CLI and TUI improvements including better ANSI handling, multiline paste support, and token wrapping
+    - Fixed issue with the browser not coming up after a restart
 
 
   Full release notes can be found at https://github.com/openclaw/openclaw/releases