OpenClaw 2026.4.14 brings forward-compatibility for GPT-5.4 Pro, human-readable Telegram forum topics, and a wave of security hardening across the platform.
What’s New
🧠GPT-5.4 Pro Forward Compatibility
OpenClaw now supports GPT-5.4 Pro including Codex pricing/limits and list/status visibility before the upstream catalog catches up.
💬 Telegram Forum Topics
Telegram forum topics now surface human topic names in agent context, prompt metadata, and plugin hook metadata — learned from Telegram forum service messages. No more guessing which topic ID maps to which conversation.
🔒 Security Hardening
This release includes significant security improvements:
- Gateway tool guardrails —
config.patchandconfig.applycalls are now blocked from enabling dangerous flags likedangerouslyDisableDeviceAuth - Slack interaction security — Global
allowFromowner allowlist now applies to block-action and modal interactive events - Media attachment safety — Fails closed when local attachment paths can’t be resolved
- ReDoS fix — Replaced marked.js with markdown-it in the Control UI to prevent malicious markdown from freezing the dashboard
🔧 Provider Fixes
- Ollama streaming now reports real usage instead of bogus token counts
- Google image generation no longer 404s with OpenAI-compatible endpoints
- Memory embeddings preserve non-OpenAI provider prefixes
How to Update
npm install -g openclaw@latest
openclaw gateway restart
