👋 科技热点日报

🔧 Codex 更新 rust-v0.121.0 发布日期: 2026-04-16 ⚠️ 新版本发布 New Features Added codex marketplace add and app-server support for installing plugin marketplaces from GitHub, git URLs, local directories, and direct marketplace.json URLs (#17087, #17717, #17756). Added TUI prompt history improvements, including Ctrl+R reverse search and local recall for accepted slash commands (#17550, #17336). Added TUI and app-server controls for memory mode, memory reset/deletion, and memory-extension cleanup (#17632, #17626, #17913, #17937, #17844). Expanded MCP/plugin support with MCP Apps tool calls, namespaced MCP registration, parallel-call opt-in, and sandbox-state metadata for MCP servers (#17364, #17404, #17667, #17763). Added realtime and app-server APIs for output modality, transcript completion events, raw turn item injection, and symlink-aware filesystem metadata (#17701, #17703, #17719). Added a secure devcontainer profile with bubblewrap support, plus macOS sandbox allowlists for Unix sockets (#10431, #17547, #17654). Bug Fixes Fixed macOS sandbox/proxy handling for private DNS and removed the danger-full-access denylist-only network mode (#17370, #17732). Fixed Windows cwd/session matching so resume --last and thread/list work when paths use verbatim prefixes (#17414). Fixed rate-limit/account handling for prolite plans and made unknown WHAM plan values decodable (#17419). Made Guardian timeouts distinct from policy denials, with timeout-specific guidance and visible TUI history entries (#17381, #17486, #17521, #17557). Stabilized app-server behavior by avoiding premature thread unloads, tolerating failed trust persistence on startup, and skipping broken symlinks in fs/readDirectory (#17398, #17595, #17907). Fixed MCP/tool-call edge cases including flattened deferred tool names, elicitation timeout accounting, and empty namespace descriptions (#17556, #17566, #17946). Documentation Documented the secure devcontainer profile and its bubblewrap requirements (#10431, #17547). Added TUI composer documentation for history search behavior (#17550). Updated app-server docs for new MCP, marketplace, turn injection, memory reset, filesystem metadata, external-agent migration, and websocket token-hash APIs (#17364, #17717, #17703, #17913, #17719, #17855, #17871). Documented WSL1 bubblewrap limitations and WSL2 behavior (#17559). Added memory pipeline documentation for extension cleanup (#17844). Chores Hardened supply-chain and CI inputs by pinning GitHub Actions, cargo installs, git dependencies, V8 checksums, and cargo-deny source allowlists (#17471). Added Bazel release-build verification so release-only Rust code is compiled in PR CI (#17704, #17705). Introduced the codex-thread-store crate/interface and moved local thread listing behind it (#17659, #17824). Required reviewed pnpm dependency build scripts for workspace installs (#17558). Reduced Rust maintenance surface with broader absolute-path types and removal of unused helper APIs (#17407, #17792, #17146). Changelog #17087 Add marketplace command @xli-oai #17409 Fix Windows exec-server output test flake @etraut-openai #17381 representing guardian review timeouts in protocol types @won-openai #17399 TUI: enforce core boundary @etraut-openai #17370 fix: unblock private DNS in macOS sandbox @viyatb-oai #17396 update cloud requirements parse failure msg @alexsong-oai #17364 [mcp] Support MCP Apps part 3 - Add mcp tool call support. @mzeng-openai #17424 Stabilize marketplace add local source test @ningyi-oai #17414 Fix thread/list cwd filtering for Windows verbatim paths @etraut-openai #10431 feat(devcontainer): add separate secure customer profile @viyatb-oai #17314 Pass turn id with feedback uploads @ningyi-oai #17336 fix(tui): recall accepted slash commands locally @fcoury-oai 💡 深度点评 核心亮点 插件市场（Marketplace）生态扩展：新版本引入了 codex marketplace add 命令，支持从 GitHub、Git URL、本地目录及 marketplace.json 直接安装插件。这一变化标志着 Codex 从单一工具向平台化演进，大幅降低了第三方插件的分发与集成门槛。 交互式记忆管理（Memory Management）：新增了对“记忆模式”的全面控制，包括 TUI 和 API 层面的记忆重置、删除以及扩展清理功能。用户现在可以更精准地干预模型的长期上下文状态，解决了长期对话中信息冗余或偏差的痛点。 MCP 协议与插件架构成熟化：显著增强了 MCP（Model Context Protocol）支持，引入了工具调用的命名空间管理、并行调用（parallel-call）选择性开启以及沙箱状态元数据。这些底层改进提升了复杂任务下工具链执行的可靠性与并发效率。 值得注意的修复 沙箱与网络安全强化：修复了 macOS 沙箱下私有 DNS 的处理问题，并移除了风险较高的 danger-full-access 网络模式。同时，增加了对 Unix 域套接字的白名单支持，平衡了开发便利性与系统安全性。 Guardian 响应逻辑透明化：将 Guardian（安全防护）的“超时”与“策略拒绝”状态进行了明确区分，并在 TUI 中提供针对性的引导说明。这一改动提升了用户在触发安全规则时的排查效率。 跨平台兼容性优化：修复了 Windows 平台下因路径前缀处理不当导致 resume --last 和 thread/list 失效的 Bug，确保了 Windows 开发环境下会话恢复的一致性。 个人评价 Codex rust-v0.121.0 是一个侧重于“平台化升级”与“工程健壮性”的版本。通过开放插件市场和深化 MCP 支持，它正在构建更强大的扩展边界；而记忆管理功能的加入，则体现了对长程对话质量的精细化追求。此外，在沙箱安全和跨平台细节上的持续打磨，反映出该项目已进入从功能堆砌向专业化工具转型的稳定期。总体而言，这是一个让开发者对工具链拥有更高控制权的务实更新。 ...

🔧 Openclaw 更新 2026.4.15-beta.1 发布日期: 2026-04-16 ⚠️ 新版本发布 Changes Control UI/Overview: add a Model Auth status card showing OAuth token health and provider rate-limit pressure at a glance, with attention callouts when OAuth tokens are expiring or expired. Backed by a new models.authStatus gateway method that strips credentials and caches for 60s. (#66211) Thanks @omarshahine. Memory/LanceDB: add cloud storage support to memory-lancedb so durable memory indexes can run on remote object storage instead of local disk only. (#63502) Thanks @rugvedS07. GitHub Copilot/memory search: add a GitHub Copilot embedding provider for memory search, and expose a dedicated Copilot embedding host helper so plugins can reuse the transport while honoring remote overrides, token refresh, and safer payload validation. (#61718) Thanks @feiskyer and @vincentkoc. Agents/local models: add experimental agents.defaults.experimental.localModelLean: true to drop heavyweight default tools like browser, cron, and message, reducing prompt size for weaker local-model setups without changing the normal path. (#66495) Thanks @ImLukeF. Packaging/plugins: localize bundled plugin runtime deps to their owning extensions, trim the published docs payload, and tighten install/package-manager guardrails so published builds stay leaner and core stops carrying extension-owned runtime baggage. (#67099) Thanks @vincentkoc. Fixes Security/approvals: redact secrets in exec approval prompts so inline approval review can no longer leak credential material in rendered prompt content. (#61077, #64790) CLI/configure: re-read the persisted config hash after writes so config updates stop failing with stale-hash races. (#64188, #66528) CLI/update: prune stale packaged dist chunks after npm upgrades and keep downgrade/verify inventory checks compat-safe so global upgrades stop failing on stale chunk imports. (#66959) Thanks @obviyus. Onboarding/CLI: fix channel-selection crashes on globally installed CLI setups during onboarding. (#66736) Video generation/live tests: bound provider polling for live video smoke, default to the fast non-FAL text-to-video path, and use a one-second lobster prompt so release validation no longer waits indefinitely on slow provider queues. Memory-core/QMD memory_get: reject reads of arbitrary workspace markdown paths and only allow canonical memory files (MEMORY.md, memory.md, DREAMS.md, dreams.md, memory/**) plus exact paths of active indexed QMD workspace documents, so the QMD memory backend can no longer be used as a generic workspace-file read shim that bypasses read tool-policy denials. (#66026) Thanks @eleqtrizit. Cron/agents: forward embedded-run tool policy and internal event params into the attempt layer so --tools allowlists, cron-owned message-tool suppression, explicit message targeting, and command-path internal events all take effect at runtime again. (#62675) Thanks @hexsprite. Setup/providers: guard preferred-provider lookup during setup so malformed plugin metadata with a missing provider id no longer crashes the wizard with Cannot read properties of undefined (reading 'trim'). (#66649) Thanks @Tianworld. Matrix/security: normalize sandboxed profile avatar params, preserve mxc:// avatar URLs, and surface gmail watcher stop failures during reload. (#64701) Thanks @slepybear. Telegram/documents: drop leaked binary caption bytes from inbound Telegram text handling so document uploads like .mobi or .epub no longer explode prompt token counts. (#66663) Thanks @joelnishanth. Gateway/auth: resolve the active gateway bearer per-request on the HTTP server and the HTTP upgrade handler via getResolvedAuth(), mirroring the WebSocket path, so a secret rotated through secrets.reload or config hot-reload stops authenticating on /v1/*, /tools/invoke, plugin HTTP routes, and the canvas upgrade path immediately instead of remaining valid on HTTP until gateway restart. (#66651) Thanks @mmaps. Agents/compaction: cap the compaction reserve-token floor to the model context window so small-context local models (e.g. Ollama with 16K tokens) no longer trigger context-overflow errors or infinite compaction loops on every prompt. (#65671) Thanks @openperf. 💡 深度点评 openclaw 2026.4.15-beta.1 版本发布，这一版在内存架构、本地模型适配以及安全性上进行了深度优化。以下是本次更新的技术点评： ...

🤖 Claude Code 更新 v2.1.110 发布日期: 2026-04-16 ⚠️ 新版本发布 ✨ 新增功能 Added /tui command and tui setting — run /tui fullscreen to switch to flicker-free rendering in the same conversation Added push notification tool — Claude can send mobile push notifications when Remote Control and “Push when Claude decides” config are enabled Added autoScrollEnabled config to disable conversation auto-scroll in fullscreen mode Added option to show Claude’s last response as commented context in the Ctrl+G external editor (enable via /config) 🐛 重要修复 Fixed MCP tool calls hanging indefinitely when the server connection drops mid-response on SSE/HTTP transports Fixed non-streaming fallback retries causing multi-minute hangs when the API is unreachable Fixed session recap, local slash-command output, and other system status lines not appearing in focus mode Fixed high CPU usage in fullscreen when text is selected while a tool is running Fixed plugin install not honoring dependencies declared in plugin.json when the marketplace entry omits them; /plugin install now lists auto-installed dependencies Fixed skills with disable-model-invocation: true failing when invoked via /<skill> mid-message Fixed --resume sometimes showing the first prompt instead of the /rename name for sessions still running or exited uncleanly Fixed queued messages briefly appearing twice during multi-tool-call turns Fixed session cleanup not removing the full session directory including subagent transcripts Fixed dropped keystrokes after the CLI relaunches (e.g. /tui, provider setup wizards) ⚡ 优化改进 Improved /plugin Installed tab — items needing attention and favorites appear at the top, disabled items are hidden behind a fold, and f favorites the selected item Improved /doctor to warn when an MCP server is defined in multiple config scopes with different endpoints 💡 深度点评 核心亮点 交互体验重构：引入 /tui 命令及其全屏模式（fullscreen），实现了无闪烁的渲染效果；同时将 /focus 独立为命令，与 Ctrl+O 的详细转录切换分离，配合 autoScrollEnabled 配置，提供了更精准的界面控制。 远程协作增强：新增移动端推送通知功能，且 /autocompact、/context、/exit 等核心命令现已支持在远程控制（Remote Control）客户端执行，显著提升了跨设备任务的闭环能力。 协同编辑感知：Write 工具现在能主动识别用户在 IDE diff 界面中对预修改内容的直接编辑，并将此反馈给模型，优化了人机交替修改代码时的上下文同步。 值得注意的修复 MCP 稳定性提升：修复了 MCP 服务器连接在中途断开导致工具调用无限挂起的问题，并恢复了对 stdio 模式下非标准 JSON 行输出的容错处理。 性能与兼容性优化：解决了全屏模式下选中文本导致的 CPU 高占用问题，并修复了 macOS Terminal.app 等终端中常见的启动渲染花屏现象。 个人评价 v2.1.110 版本标志着 Claude Code 在交互完备性上迈出了重要一步。通过 /tui 和移动端通知功能的引入，开发者对长时运行任务的掌控感得到了加强。同时，针对分布式追踪（TRACEPARENT/TRACESTATE）的支持以及对 IDE diff 编辑行为的感知，体现了该工具在融入专业开发流水线与复杂协作场景上的深度思考。这是一个以提升操作确定性和交互平顺性为核心的稳健迭代版本。 ...

🤖 Claude Code 更新 v2.1.108 发布日期: 2026-04-15 ⚠️ 新版本发布 ✨ 新增功能 Added ENABLE_PROMPT_CACHING_1H env var to opt into 1-hour prompt cache TTL on API key, Bedrock, Vertex, and Foundry (ENABLE_PROMPT_CACHING_1H_BEDROCK is deprecated but still honored), and FORCE_PROMPT_CACHING_5M to force 5-minute TTL Added recap feature to provide context when returning to a session, configurable in /config and manually invocable with /recap; force with CLAUDE_CODE_ENABLE_AWAY_SUMMARY if telemetry disabled. Added “verbose” indicator when viewing the detailed transcript (Ctrl+O) Added a warning at startup when prompt caching is disabled via DISABLE_PROMPT_CACHING* environment variables 🐛 重要修复 Fixed paste not working in the /login code prompt (regression in 2.1.105) Fixed subscribers who set DISABLE_TELEMETRY falling back to 5-minute prompt cache TTL instead of 1 hour Fixed Agent tool prompting for permission in auto mode when the safety classifier’s transcript exceeded its context window Fixed Bash tool producing no output when CLAUDE_ENV_FILE (e.g. ~/.zprofile) ends with a # comment line Fixed claude --resume <session-id> losing the session’s custom name and color set via /rename Fixed session titles showing placeholder example text when the first message is a short greeting Fixed terminal escape codes appearing as garbage text in the prompt input after --teleport Fixed /feedback retry: pressing Enter to resubmit after a failure now works without first editing the description Fixed --teleport and --resume <id> precondition errors (e.g. dirty git tree, session not found) exiting silently instead of showing the error message Fixed Remote Control session titles set in the web UI being overwritten by auto-generated titles after the third message ⚡ 优化改进 Improved /model to warn before switching models mid-conversation, since the next response re-reads the full history uncached Improved /resume picker to default to sessions from the current directory; press Ctrl+A to show all projects Improved error messages: server rate limits are now distinguished from plan usage limits; 5xx/529 errors show a link to status.claude.com; unknown slash commands suggest the closest match 💡 深度点评 核心亮点 Prompt 缓存策略优化：新增 ENABLE_PROMPT_CACHING_1H 环境变量，允许用户手动开启长达 1 小时的 Prompt Cache TTL（支持 API key、Bedrock、Vertex 等），这对于降低长会话的重复计算成本具有直接价值。 会话上下文回顾（Recap）：引入 /recap 功能，在用户返回旧会话时提供上下文总结，有效降低了多任务切换时的认知负荷。 Agent 指令自发现：模型现在可以通过 Skill 工具发现并调用内置的斜杠命令（如 /init、/review、/security-review），提升了 Agent 在执行任务时的自主性。 值得注意的修复 缓存逻辑修正：修复了当用户设置 DISABLE_TELEMETRY 时，Prompt 缓存 TTL 会错误地从 1 小时回退至 5 分钟的问题，确保了订阅用户的权益。 Bash 工具稳定性：解决了当环境配置文件（如 ~/.zprofile）以 # 注释行结尾时，会导致 Bash 工具无法产生输出的边界案例错误。 个人评价 v2.1.108 版本是一个侧重于工程健壮性和成本优化的稳健更新。通过精细化 Prompt Caching 的 TTL 控制和引入 /recap 机制，Claude Code 在处理长周期、跨 session 的开发任务时表现得更加高效且经济。此外，按需加载语法高亮等底层优化减少了内存占用，体现了开发者在性能细节上的持续打磨。整体而言，这一版本进一步提升了工具在大型项目实战中的可靠性。 ...

🔧 Codex 更新 rust-v0.119.0 发布日期: 2026-04-11 ⚠️ 新版本发布 New Features Realtime voice sessions now default to the v2 WebRTC path, with configurable transport, voice selection, native TUI media support, and app-server coverage for the new flow (#16960, #17057, #17058, #17093, #17097, #17145, #17165, #17176, #17183, #17188). MCP Apps and custom MCP servers gained richer support, including resource reads, tool-call metadata, custom-server tool search, server-driven elicitations, file-parameter uploads, and more reliable plugin cache refreshes (#16082, #16465, #16944, #17043, #15197, #16191, #16947). Remote/app-server workflows now support egress websocket transport, remote --cd forwarding, runtime remote-control enablement, sandbox-aware filesystem APIs, and an experimental codex exec-server subcommand (#15951, #16700, #16973, #16751, #17059, #17142, #17162). The TUI can copy the latest agent response with Ctrl+O, including better clipboard behavior over SSH and across platforms (#16966). /resume can now jump directly to a session by ID or name from the TUI (#17222). TUI notifications are more configurable, including Warp OSC 9 support and an opt-in mode for notifications even while the terminal is focused (#17174, #17175). Bug Fixes The TUI starts faster by fetching rate limits asynchronously, and /status now refreshes stale limits instead of showing frozen or misleading quota information (#16201, #17039). Resume flows are more stable: the picker no longer flashes false empty states, uses fresher thread names, stabilizes timestamp labels, preserves resume hints on zero-token exits, and avoids crashing when resuming the current thread (#16591, #16601, #16822, #16987, #17086). Composer and chat behavior are smoother, including fixed paste teardown, CJK word navigation, stale /copy output, percent-decoded local file links, and clearer truncated exec-output hints (#16202, #16829, #16648, #16810, #17076). Fast Mode no longer stays stuck on after /fast off in app-server-backed TUI sessions (#16833). MCP status and startup are less noisy and faster: hyphenated server names list tools correctly, /mcp avoids slow full inventory probes, disabled servers skip auth probing, and residency headers are honored by codex mcp-server (#16674, #16831, #17098, #16952). Sandbox, network, and platform edge cases were tightened, including clearer read-only apply_patch errors, refreshed network proxy policy after sandbox changes, suppressed irrelevant bubblewrap warnings, a macOS HTTP-client sandbox panic fix, and Windows firewall address handling (#16885, #17040, #16667, #16670, #17053). Documentation The README now uses the current ChatGPT Business plan name (#16348). Developer guidance for argument_comment_lint was updated to favor getting CI started instead of blocking on slow local lint runs (#16375). Obsolete codex-cli README content was removed to avoid stale setup guidance (#17096). codex exec --help now shows clearer usage and approval-mode wording (#16881, #16888). Chores codex-core was slimmed down through major crate extractions for MCP, tools, config, model management, auth, feedback, protocol, and related ownership boundaries (#15919, #16379, #16508, #16523, #16962). Rust CI and workspace guardrails were simplified by blocking new crate features and dropping routine --all-features runs (#16455, #16473). Core compile times were reduced by removing expensive async-trait expansion from hot tool/task abstractions (#16630, #16631). Bazel diagnostics and dependency wiring improved with compact execution logs, repository-cache persistence, remote downloader support, and several platform-specific build fixes (#16577, #16926, #16928, #16634, #16744). Changelog #16308 fix: one shot end of turn @jif-oai #16238 fix: ma2 @jif-oai #16317 chore: clean wait v2 @jif-oai #16318 nit: update aborted line @jif-oai #15771 feat: fork pattern v2 @jif-oai #16322 fix: update fork boundaries computation @jif-oai #16325 feat: restrict spawn_agent v2 to messages @jif-oai #16324 chore: drop interrupt from send_message @jif-oai #16345 fix: fix clippy issue caught by cargo but not bazel @bolinfest #16184 Route TUI /feedback submission through the app server @etraut-openai #16330 feat: log db better maintenance @jif-oai #15690 [codex-analytics] thread events @rhan-oai 💡 深度点评 Opening authentication page in your browser. Do you want to continue? [Y/n]: ...

🤖 Claude Code 更新 v2.1.101 发布日期: 2026-04-11 ⚠️ 新版本发布 ✨ 新增功能 Added /team-onboarding command to generate a teammate ramp-up guide from your local Claude Code usage Added OS CA certificate store trust by default, so enterprise TLS proxies work without extra setup (set CLAUDE_CODE_CERT_STORE=bundled to use only bundled CAs) 🐛 重要修复 Fixed a command injection vulnerability in the POSIX which fallback used by LSP binary detection Fixed a memory leak where long sessions retained dozens of historical copies of the message list in the virtual scroller Fixed --resume/--continue losing conversation context on large sessions when the loader anchored on a dead-end branch instead of the live conversation Fixed --resume chain recovery bridging into an unrelated subagent conversation when a subagent message landed near a main-chain write gap Fixed a crash on --resume when a persisted Edit/Write tool result was missing its file_path Fixed a hardcoded 5-minute request timeout that aborted slow backends (local LLMs, extended thinking, slow gateways) regardless of API_TIMEOUT_MS Fixed permissions.deny rules not overriding a PreToolUse hook’s permissionDecision: "ask" — previously the hook could downgrade a deny into a prompt Fixed --setting-sources without user causing background cleanup to ignore cleanupPeriodDays and delete conversation history older than 30 days Fixed Bedrock SigV4 authentication failing with 403 when ANTHROPIC_AUTH_TOKEN, apiKeyHelper, or ANTHROPIC_CUSTOM_HEADERS set an Authorization header Fixed claude -w <name> failing with “already exists” after a previous session’s worktree cleanup left a stale directory ⚡ 优化改进 Improved brief mode to retry once when Claude responds with plain text instead of a structured message Improved focus mode: Claude now writes more self-contained summaries since it knows you only see its final message Improved tool-not-available errors to explain why and how to proceed when the model calls a tool that exists but isn’t available in the current context Improved rate-limit retry messages to show which limit was hit and when it resets instead of an opaque seconds countdown Improved refusal error messages to include the API-provided explanation when available Improved claude -p --resume <name> to accept session titles set via /rename or --name Improved settings resilience: an unrecognized hook event name in settings.json no longer causes the entire file to be ignored Improved plugin hooks from plugins force-enabled by managed settings to run when allowManagedHooksOnly is set Improved /plugin and claude plugin update to show a warning when the marketplace could not be refreshed, instead of silently reporting a stale version Improved plan mode to hide the “Refine with Ultraplan” option when the user’s org or auth setup can’t reach Claude Code on the web 💡 深度点评 Opening authentication page in your browser. Do you want to continue? [Y/n]: ...

🔧 Openclaw 更新 2026.4.9 发布日期: 2026-04-09 ⚠️ 新版本发布 Changes Memory/dreaming: add a grounded REM backfill lane with historical rem-harness --path, diary commit/reset flows, cleaner durable-fact extraction, and live short-term promotion integration so old daily notes can replay into Dreams and durable memory without a second memory stack. Thanks @mbelinky. Control UI/dreaming: add a structured diary view with timeline navigation, backfill/reset controls, traceable dreaming summaries, and a grounded Scene lane with promotion hints plus a safe clear-grounded action for staged backfill signals. (#63395) Thanks @mbelinky. QA/lab: add character-vibes evaluation reports with model selection and parallel runs so live QA can compare candidate behavior faster. Plugins/provider-auth: let provider manifests declare providerAuthAliases so provider variants can share env vars, auth profiles, config-backed auth, and API-key onboarding choices without core-specific wiring. iOS: pin release versioning to an explicit CalVer in apps/ios/version.json, keep TestFlight iteration on the same short version until maintainers intentionally promote the next gateway version, and add the documented pnpm ios:version:pin -- --from-gateway workflow for release trains. (#63001) Thanks @ngutman. Fixes Browser/security: re-run blocked-destination safety checks after interaction-driven main-frame navigations from click, evaluate, hook-triggered click, and batched action flows, so browser interactions cannot bypass the SSRF quarantine when they land on forbidden URLs. (#63226) Thanks @eleqtrizit. Security/dotenv: block runtime-control env vars plus browser-control override and skip-server env vars from untrusted workspace .env files, and reject unsafe URL-style browser control override specifiers before lazy loading. (#62660, #62663) Thanks @eleqtrizit. Gateway/node exec events: mark remote node exec.started, exec.finished, and exec.denied summaries as untrusted system events and sanitize node-provided command/output/reason text before enqueueing them, so remote node output cannot inject trusted System: content into later turns. (#62659) Thanks @eleqtrizit. Plugins/onboarding auth choices: prevent untrusted workspace plugins from colliding with bundled provider auth-choice ids during non-interactive onboarding, so bundled provider setup keeps operator secrets out of untrusted workspace plugin handlers unless those plugins are explicitly trusted. (#62368) Thanks @pgondhi987. Security/dependency audit: force basic-ftp to 5.2.1 for the CRLF command-injection fix and bump Hono plus @hono/node-server in production resolution paths. Android/pairing: clear stale setup-code auth on new QR scans, bootstrap operator and node sessions from fresh pairing, prefer stored device tokens after bootstrap handoff, and pause pairing auto-retry while the app is backgrounded so scan-once Android pairing recovers reliably again. (#63199) Thanks @obviyus. Matrix/gateway: wait for Matrix sync readiness before marking startup successful, keep Matrix background handler failures contained, and route fatal Matrix sync stops through channel-level restart handling instead of crashing the whole gateway. (#62779) Thanks @gumadeiras. Slack/media: preserve bearer auth across same-origin files.slack.com redirects while still stripping it on cross-origin Slack CDN hops, so url_private_download image attachments load again. (#62960) Thanks @vincentkoc. Reply/doctor: use the active runtime snapshot for queued reply runs, resolve reply-run SecretRefs before preflight helpers touch config, surface gateway OAuth reauth failures to users, and make openclaw doctor call out exact reauth commands. (#62693, #63217) Thanks @mbelinky. Control UI: guard stale session-history reloads during fast session switches so the selected session and rendered transcript stay in sync. (#62975) Thanks @scoootscooob. Gateway/chat: suppress exact and streamed ANNOUNCE_SKIP / REPLY_SKIP control replies across live chat updates and history sanitization so internal agent-to-agent control tokens no longer leak into user-facing gateway chat surfaces. (#51739) Thanks @Pinghuachiu. Auto-reply/NO_REPLY: strip glued leading NO_REPLY tokens before reply normalization and ACP-visible streaming so silent sentinel text no longer leaks into user-visible replies while preserving substantive NO_REPLY ... text. Thanks @frankekn. 💡 深度点评 作为开发者工具观察者，OpenClaw 在 2026.4.9 的更新中展现了其在「长效记忆架构」和「系统级安全防护」上的深度演进。以下是针对本次更新的技术点评： ...

🤖 Claude Code 更新 v2.1.97 发布日期: 2026-04-09 ⚠️ 新版本发布 ✨ 新增功能 Added focus view toggle (Ctrl+O) in NO_FLICKER mode showing prompt, one-line tool summary with edit diffstats, and final response Added refreshInterval status line setting to re-run the status line command every N seconds Added workspace.git_worktree to the status line JSON input, set when the current directory is inside a linked git worktree Added ● N running indicator in /agents next to agent types with live subagent instances Added syntax highlighting for Cedar policy files (.cedar, .cedarpolicy) 🐛 重要修复 Fixed --dangerously-skip-permissions being silently downgraded to accept-edits mode after approving a write to a protected path Fixed and hardened Bash tool permissions, tightening checks around env-var prefixes and network redirects, and reducing false prompts on common commands Fixed permission rules with names matching JavaScript prototype properties (e.g. toString) causing settings.json to be silently ignored Fixed managed-settings allow rules remaining active after an admin removed them until process restart Fixed permissions.additionalDirectories changes in settings not applying mid-session Fixed removing a directory from settings.permissions.additionalDirectories revoking access to the same directory passed via --add-dir Fixed MCP HTTP/SSE connections accumulating ~50 MB/hr of unreleased buffers when servers reconnect Fixed MCP OAuth oauth.authServerMetadataUrl not being honored on token refresh after restart, fixing ADFS and similar IdPs Fixed 429 retries burning all attempts in ~13 seconds when the server returns a small Retry-After — exponential backoff now applies as a minimum Fixed rate-limit upgrade options disappearing after context compaction ⚡ 优化改进 Improved Accept Edits mode to auto-approve filesystem commands prefixed with safe env vars or process wrappers (e.g. LANG=C rm foo, timeout 5 mkdir out) Improved auto mode and bypass-permissions mode to auto-approve sandbox network access prompts Improved sandbox: sandbox.network.allowMachLookup now takes effect on macOS Improved image handling: pasted and attached images are now compressed to the same token budget as images read via the Read tool Improved slash command and @-mention completion to trigger after CJK sentence punctuation, so Japanese/Chinese input no longer requires a space before / or @ Improved Bridge sessions to show the local git repo, branch, and working directory on the claude.ai session card Improved footer layout: indicators (Focus, notifications) now stay on the mode-indicator row instead of wrapping below Improved context-low warning to show as a transient footer notification instead of a persistent row Improved markdown blockquotes to show a continuous left bar across wrapped lines Improved session transcript size by skipping empty hook entries and capping stored pre-edit file copies 💡 深度点评 Opening authentication page in your browser. Do you want to continue? [Y/n]: ...

🤖 Claude Code 更新 v2.1.94 发布日期: 2026-04-08 ⚠️ 新版本发布 ✨ 新增功能 Added support for Amazon Bedrock powered by Mantle, set CLAUDE_CODE_USE_MANTLE=1 Added compact Slacked #channel header with a clickable channel link for Slack MCP send-message tool calls Added keep-coding-instructions frontmatter field support for plugin output styles Added hookSpecificOutput.sessionTitle to UserPromptSubmit hooks for setting the session title 🐛 重要修复 Fixed agents appearing stuck after a 429 rate-limit response with a long Retry-After header — the error now surfaces immediately instead of silently waiting Fixed Console login on macOS silently failing with “Not logged in” when the login keychain is locked or its password is out of sync — the error is now surfaced and claude doctor diagnoses the fix Fixed plugin skill hooks defined in YAML frontmatter being silently ignored Fixed plugin hooks failing with “No such file or directory” when CLAUDE_PLUGIN_ROOT was not set Fixed ${CLAUDE_PLUGIN_ROOT} resolving to the marketplace source directory instead of the installed cache for local-marketplace plugins on startup Fixed scrollback showing the same diff repeated and blank pages in long-running sessions Fixed multiline user prompts in the transcript indenting wrapped lines under the ❯ caret instead of under the text Fixed Shift+Space inserting the literal word “space” instead of a space character in search inputs Fixed hyperlinks opening two browser tabs when clicked inside tmux running in an xterm.js-based terminal (VS Code, Hyper, Tabby) Fixed an alt-screen rendering bug where content height changes mid-scroll could leave compounding ghost lines ⚡ 优化改进 Improved --resume to resume sessions from other worktrees of the same repo directly instead of printing a cd command [VSCode] Reduced cold-open subprocess work on starting a session [VSCode] Fixed dropdown menus selecting the wrong item when the mouse was over the list while typing or using arrow keys [VSCode] Added a warning banner when settings.json files fail to parse, so users know their permission rules are not being applied 💡 深度点评 核心亮点 扩展云端推理支持：新增通过 Mantle 接入 Amazon Bedrock 的支持（CLAUDE_CODE_USE_MANTLE=1），并同步修复了 Sonnet 3.5 v2 在 Bedrock 上的推理配置文件调用问题。 默认推理策略调整：针对 API-key、Bedrock、Vertex 以及企业版用户，将默认任务投入等级（Effort level）从 medium 提升至 high，旨在默认状态下提供更深度的逻辑推理能力。 插件系统规范化：插件技能（Plugin skills）现在优先使用 frontmatter 中的 name 字段作为调用名称，确保了技能在不同安装方式下的名称稳定性。 值得注意的修复 字符编码修复：解决了 CJK（中日韩）等多字节文本在流式传输时，因 chunk 边界切分 UTF-8 序列而导致的 U+FFFD 乱码问题。 异常反馈优化：修复了在触发 429 速率限制且包含长 Retry-After 头部时 Agent 表现为「卡死」的问题，错误现在会立即透传并显示。 个人评价 v2.1.94 版本是一个侧重于工程健壮性与全球化适配的迭代。通过提升默认推理投入等级和优化 429 错误处理，开发者在处理复杂任务和高并发调用时的反馈循环变得更加明确。对于中文用户而言，CJK 乱码问题的解决大幅提升了代码审查和文档生成的可读性。此外，插件系统命名逻辑的统一，也标志着其扩展生态正趋向于更标准化的管理。总体而言，该版本在不改变核心架构的前提下，显著优化了云端接入的稳定性与多语言环境下的使用体验。 ...

🔧 Openclaw 更新 2026.4.5 发布日期: 2026-04-07 ⚠️ 新版本发布 Breaking Config: remove legacy public config aliases such as talk.voiceId / talk.apiKey, agents.*.sandbox.perSession, browser.ssrfPolicy.allowPrivateNetwork, hooks.internal.handlers, and channel/group/room allow toggles in favor of the canonical public paths and enabled, while keeping load-time compatibility and openclaw doctor --fix migration support for existing configs. (#60726) Thanks @vincentkoc. Changes Agents/video generation: add the built-in video_generate tool so agents can create videos through configured providers and return the generated media directly in the reply. Agents/music generation: ignore unsupported optional hints such as durationSeconds with a warning instead of hard-failing requests on providers like Google Lyria. Providers/Arcee AI: add a bundled Arcee AI provider plugin with ARCEEAI_API_KEY onboarding, Trinity model catalog (mini, large-preview, large-thinking), OpenAI-compatible API support, and OpenRouter as an alternative auth path. (#62068) Thanks @arthurbr11. Providers/ComfyUI: add a bundled comfy workflow media plugin for local ComfyUI and Comfy Cloud workflows, including shared image_generate, video_generate, and workflow-backed music_generate support, with prompt injection, optional reference-image upload, live tests, and output download. Tools/music generation: add the built-in music_generate tool with bundled Google (Lyria) and MiniMax providers plus workflow-backed Comfy support, including async task tracking and follow-up delivery of finished audio. Providers: add bundled Qwen, Fireworks AI, and StepFun providers, plus MiniMax TTS, Ollama Web Search, and MiniMax Search integrations for chat, speech, and search workflows. (#60032, #55921, #59318, #54648) Providers/Amazon Bedrock: add bundled Mantle support plus inference-profile discovery and automatic request-region injection so Bedrock-hosted Claude, GPT-OSS, Qwen, Kimi, GLM, and similar routes work with less manual setup. (#61296, #61299) Thanks @wirjo. Control UI/multilingual: add localized control UI support for Simplified Chinese, Traditional Chinese, Brazilian Portuguese, German, Spanish, Japanese, Korean, French, Turkish, Indonesian, Polish, and Ukrainian. Thanks @vincentkoc. Plugins: add plugin-config TUI prompts to guided onboarding/setup flows, and add openclaw plugins install --force so existing plugin and hook-pack targets can be replaced without using the dangerous-code override flag. (#60590, #60544) Control UI/skills: add ClawHub search, detail, and install flows directly in the Skills panel. (#60134) Thanks @samzong. iOS/exec approvals: add generic APNs approval notifications that open an in-app exec approval modal, fetch command details only after authenticated operator reconnect, and clear stale notification state when the approval resolves. (#60239) Thanks @ngutman. Matrix/exec approvals: add Matrix-native exec approval prompts with account-scoped approvers, channel-or-DM delivery, and room-thread aware resolution handling. (#58635) Thanks @gumadeiras. Fixes Control UI/chat: show /tts and other local audio-only slash replies in webchat by embedding local audio in the assistant message and rendering <audio> controls instead of dropping empty-text finals. Fixes #61564. (#61598) Thanks @neeravmakwana. Security: preserve restrictive plugin-only tool allowlists, require owner access for /allowlist add and /allowlist remove, fail closed when before_tool_call hooks crash, block browser SSRF redirect bypasses earlier, and keep non-interactive auth-choice inference scoped to bundled and already-trusted plugins. (#58476, #59836, #59822, #58771, #59120) Thanks @eleqtrizit and @pgondhi987. Providers/OpenAI: make GPT-5 and Codex runs act sooner with lower-verbosity defaults, visible progress during tool work, and a one-shot retry when a turn only narrates the plan instead of taking action. Providers/OpenAI and reply delivery: preserve native reasoning.effort: "none" and strict schemas where supported, add GPT-5.4 assistant phase metadata across replay and the Gateway /v1/responses layer, and keep commentary buffered until final_answer so web chat, session previews, embedded replies, and Telegram partials stop leaking planning text. Fixes #59150, #59643, #61282. Telegram: fix current-model checks in the model picker, HTML-format non-default /model confirmations, explicit topic replies, persisted reaction ownership across restarts, caption-media placeholder and file_id preservation on download failure, and upgraded-install inbound image reads. (#60384, #60042, #59634, #59207, #59948, #59971) Thanks @sfuminya, @GitZhangChi, @dashhuang, @samzong, @v1p0r, and @neeravmakwana. Telegram: restore DM voice-note preflight transcription so direct-message audio stops arriving as raw <media:audio> placeholders. (#61008) Thanks @manueltarouca. Telegram/reasoning: only create a Telegram reasoning preview lane when the session is explicitly reasoning:stream, so hidden <think> traces from streamed replies stop surfacing as chat previews on normal sessions. Thanks @vincentkoc. Telegram/native command menu: trim long menu descriptions before dropping commands so sub-100 command sets can still fit Telegram’s payload budget and keep more / entries visible. (#61129) Thanks @neeravmakwana. Telegram/startup: bound deleteWebhook, getMe, and setWebhook startup requests while keeping the longer getUpdates poll timeout, so wedged Telegram control-plane calls stop hanging startup indefinitely. (#61601) Thanks @neeravmakwana. Agents/failover: classify Anthropic “extra usage” exhaustion as billing so same-turn model fallback still triggers when Claude blocks long-context requests on usage limits. (#61608) Thanks @neeravmakwana. Discord: keep REST, webhook, and monitor traffic on the configured proxy, preserve component-only media sends, honor @everyone and @here mention gates, keep ACK reactions on the active account, and split voice connect/playback timeouts so auto-join is more reliable. (#57465, #60361, #60345) Thanks @geekhuashan. Discord/reply tags: strip leaked [[reply_to_current]] control tags from preview text and honor explicit reply-tag threading during final delivery, so Discord replies stay attached to the triggering message instead of printing reply metadata into chat. 💡 深度点评 这是一篇关于 OpenClaw 2026.4.5 更新内容的深度点评： ...

🤖 Claude Code 更新 v2.1.92 发布日期: 2026-04-04 ⚠️ 新版本发布 ✨ 新增功能 Added forceRemoteSettingsRefresh policy setting: when set, the CLI blocks startup until remote managed settings are freshly fetched, and exits if the fetch fails (fail-closed) Added interactive Bedrock setup wizard accessible from the login screen when selecting “3rd-party platform” — guides you through AWS authentication, region configuration, credential verification, and model pinning Added per-model and cache-hit breakdown to /cost for subscription users 🐛 重要修复 Fixed subagent spawning permanently failing with “Could not determine pane count” after tmux windows are killed or renumbered during a long-running session Fixed prompt-type Stop hooks incorrectly failing when the small fast model returns ok:false, and restored preventContinuation:true semantics for non-Stop prompt-type hooks Fixed tool input validation failures when streaming emits array/object fields as JSON-encoded strings Fixed an API 400 error that could occur when extended thinking produced a whitespace-only text block alongside real content Fixed accidental feedback survey submissions from auto-pilot keypresses and consecutive-prompt digit collisions Fixed misleading “esc to interrupt” hint appearing alongside “esc to clear” when a text selection exists in fullscreen mode during processing Fixed Homebrew install update prompts to use the cask’s release channel (claude-code → stable, claude-code@latest → latest) Fixed ctrl+e jumping to the end of the next line when already at end of line in multiline prompts Fixed an issue where the same message could appear at two positions when scrolling up in fullscreen mode (iTerm2, Ghostty, and other terminals with DEC 2026 support) Fixed idle-return “/clear to save X tokens” hint showing cumulative session tokens instead of current context size ⚡ 优化改进 Improved Write tool diff computation speed for large files (60% faster on files with tabs/&/$) Removed /tag command Removed /vim command (toggle vim mode via /config → Editor mode) 💡 深度点评 核心亮点 交互式 Bedrock 配置向导：在登录界面选择第三方平台时，新增了完整的 Bedrock 引导流程，支持 AWS 身份验证、区域配置及模型固定，大幅简化了企业级环境的接入难度。 精细化 /cost 成本统计：针对订阅用户，/cost 命令现在支持按模型维度和缓存命中（cache-hit）情况进行费用拆解，提供了更透明的 Token 消耗反馈。 Write 工具性能优化：改进了大文件的 diff 计算逻辑，在处理包含制表符或特殊符号（如 &、$）的文件时，计算速度提升了约 60%。 值得注意的修复 Tmux 子智能体生成失效：修复了在 tmux 环境下，若窗口被销毁或重排导致“无法确定窗格数量”，进而造成子智能体（subagent）永久无法启动的问题。 MCP 服务连接阻塞：解决了当插件 MCP 服务与未授权的 claude.ai 连接器冲突时，导致服务卡死在“连接中”状态的异常。 个人评价 v2.1.92 版本标志着 Claude Code 进入了从功能扩张转向体验打磨的阶段。通过移除 /tag 和重构 /vim 指令（整合至配置项），工具链的逻辑变得更加清晰；而针对大文件 diff 速度的提升和 Bedrock 接入流程的完善，则直接回应了开发者在复杂工程场景下的核心诉求。整体而言，这是一个侧重于稳定性与工程化细节的务实更新，建议重度 CLI 用户及 AWS 环境开发者尽快升级。 ...

🔧 Openclaw 更新 2026.4.2 发布日期: 2026-04-02 ⚠️ 新版本发布 Changes Tasks/chat: add /tasks as a chat-native background task board for the current session, with recent task details and agent-local fallback counts when no linked tasks are visible. Related #54226. Thanks @vincentkoc. Web search/SearXNG: add the bundled SearXNG provider plugin for web_search with configurable host support. (#57317) Thanks @cgdusek. Amazon Bedrock/Guardrails: add Bedrock Guardrails support to the bundled provider. (#58588) Thanks @MikeORed. macOS/Voice Wake: add the Voice Wake option to trigger Talk Mode. (#58490) Thanks @SmoothExec. Feishu/comments: add a dedicated Drive comment-event flow with comment-thread context resolution, in-thread replies, and feishu_drive comment actions for document collaboration workflows. (#58497) Thanks @wittam-01. Gateway/webchat: make chat.history text truncation configurable with gateway.webchat.chatHistoryMaxChars and per-request maxChars, while preserving silent-reply filtering and existing default payload limits. (#58900) Agents/default params: add agents.defaults.params for global default provider parameters. (#58548) Thanks @lpender. Agents/failover: cap prompt-side and assistant-side same-provider auth-profile retries for rate-limit failures before cross-provider model fallback, add the auth.cooldowns.rateLimitedProfileRotations knob, and document the new fallback behavior. (#58707) Thanks @Forgely3D Cron/tools allowlist: add openclaw cron --tools for per-job tool allowlists. (#58504) Thanks @andyk-ms. Channels/session routing: move provider-specific session conversation grammar into plugin-owned session-key surfaces, preserving Telegram topic routing and Feishu scoped inheritance across bootstrap, model override, restart, and tool-policy paths. WhatsApp/reactions: add reactionLevel guidance for agent reactions. Thanks @mcaxtr. Telegram/errors: add configurable errorPolicy and errorCooldownMs controls so Telegram can suppress repeated delivery errors per account, chat, and topic without muting distinct failures. (#51914) Thanks @chinar-amrutkar Fixes Chat/error replies: stop leaking raw provider/runtime failures into external chat channels, return a friendly retry message instead, and add a specific /new hint for Bedrock toolResult/toolUse session mismatches. (#58831) Thanks @ImLukeF. Gateway/reload: ignore startup config writes by persisted hash in the config reloader so generated auth tokens and seeded Control UI origins do not trigger a restart loop, while real gateway.auth.* edits still require restart. (#58678) Thanks @yelog Tasks/gateway: keep the task registry maintenance sweep from stalling the gateway event loop under synchronous SQLite pressure, so upgraded gateways stop hanging about a minute after startup. (#58670) Thanks @openperf Tasks/status: hide stale completed background tasks from /status and session_status, prefer live task context, and show recent failures only when no active work remains. (#58661) Thanks @vincentkoc Tasks/gateway: re-check the current task record before maintenance marks runs lost or prunes them, so a task heartbeat or cleanup update that lands during a sweep no longer gets overwritten by stale snapshot state. Exec/approvals: honor exec-approvals.json security defaults when inline or configured tool policy is unset, and keep Slack and Discord native approval handling aligned with inferred approvers and real channel enablement so remote exec stops falling into false approval timeouts and disabled states. Thanks @scoootscooob and @vincentkoc. Exec/approvals: make allow-always persist as durable user-approved trust instead of behaving like allow-once, reuse exact-command trust on shell-wrapper paths that cannot safely persist an executable allowlist entry, keep static allowlist entries from silently bypassing ask:"always", and require explicit approval when Windows cannot build an allowlist execution plan instead of hard-dead-ending remote exec. Thanks @scoootscooob and @vincentkoc. Exec/cron: resolve isolated cron no-route approval dead-ends from the effective host fallback policy when trusted automation is allowed, and make openclaw doctor warn when tools.exec is broader than ~/.openclaw/exec-approvals.json so stricter host-policy conflicts are explicit. Thanks @scoootscooob and @vincentkoc. Sessions/model switching: keep /model changes queued behind busy runs instead of interrupting the active turn, and retarget queued followups so later work picks up the new model as soon as the current turn finishes. Gateway/HTTP: skip failing HTTP request stages so one broken facade no longer forces every HTTP endpoint to return 500. (#58746) Thanks @yelog Gateway/nodes: stop pinning live node commands to the approved node-pair record. Node pairing remains a trust/token flow, while per-node system.run policy stays in that node’s exec approvals config. Fixes #58824. WebChat/exec approvals: use native approval UI guidance in agent system prompts instead of telling agents to paste manual /approve commands in webchat sessions. Thanks @vincentkoc. 💡 深度点评 📝 个人评价 2026.4.2 包含多项变更，请查看上方详细列表。 ...

🤖 Claude Code 更新 v2.1.90 发布日期: 2026-04-02 ⚠️ 新版本发布 ✨ 新增功能 Added /powerup — interactive lessons teaching Claude Code features with animated demos Added CLAUDE_CODE_PLUGIN_KEEP_MARKETPLACE_ON_FAILURE env var to keep the existing marketplace cache when git pull fails, useful in offline environments Added .husky to protected directories (acceptEdits mode) 🐛 重要修复 Fixed an infinite loop where the rate-limit options dialog would repeatedly auto-open after hitting your usage limit, eventually crashing the session Fixed --resume causing a full prompt-cache miss on the first request for users with deferred tools, MCP servers, or custom agents (regression since v2.1.69) Fixed Edit/Write failing with “File content has changed” when a PostToolUse format-on-save hook rewrites the file between consecutive edits Fixed PreToolUse hooks that emit JSON to stdout and exit with code 2 not correctly blocking the tool call Fixed collapsed search/read summary badge appearing multiple times in fullscreen scrollback when a CLAUDE.md file auto-loads during a tool call Fixed auto mode not respecting explicit user boundaries (“don’t push”, “wait for X before Y”) even when the action would otherwise be allowed Fixed click-to-expand hover text being nearly invisible on light terminal themes Fixed UI crash when malformed tool input reached the permission dialog Fixed headers disappearing when scrolling /model, /config, and other selection screens ⚡ 优化改进 Improved performance: eliminated per-turn JSON.stringify of MCP tool schemas on cache-key lookup Improved performance: SSE transport now handles large streamed frames in linear time (was quadratic) Improved performance: SDK sessions with long conversations no longer slow down quadratically on transcript writes Improved /resume all-projects view to load project sessions in parallel, improving load times for users with many projects Removed Get-DnsClientCache and ipconfig /displaydns from auto-allow (DNS cache privacy) 💡 深度点评 核心亮点 /powerup 交互式教程：新增内置交互式课程，通过动画演示直观教学 Claude Code 的各项功能特性，降低了复杂指令的学习门槛。 长对话与多项目性能优化：SSE 传输处理大幅数据帧的时间复杂度由平方级优化为线性；同时 /resume 支持并行加载项目会话，显著提升了大型项目及长上下文场景下的响应速度。 PowerShell 权限校验加固：针对 Windows 环境进行了深度安全加固，修复了通过后台任务（&）绕过权限检查以及特定场景下的降级漏洞，增强了工具调用的安全性。 值得注意的修复 开发流冲突修复：解决了 PostToolUse 钩子（如 format-on-save）在连续编辑间隙改写文件导致 Edit/Write 报错“File content has changed”的竞争问题。 缓存逻辑修正：修复了自 v2.1.69 以来 --resume 导致 prompt-cache 失效的回归问题，确保在使用 MCP 或自定义 Agent 时能正确命中缓存以节省 Token。 个人评价 Claude Code v2.1.90 是一个以「稳定性」和「性能缩放」为核心的迭代版本。通过重构 SSE 传输机制和并行化加载逻辑，该版本解决了 AI 工具在处理超长对话时常见的性能衰减痛点。同时，针对 format-on-save 触发的文件改写冲突以及 prompt-cache 命中率的修复，显示出开发团队正在深度磨平 AI 代理与前端工程化工具链（如 ESLint/Prettier）之间的协作摩擦。整体来看，这使得 Claude Code 在处理复杂工程任务时更加可靠和高效。 ...

🔧 Codex 更新 rust-v0.118.0 发布日期: 2026-04-01 ⚠️ 新版本发布 New Features Windows sandbox runs can now enforce proxy-only networking with OS-level egress rules, instead of relying on environment variables alone. (#12220) App-server clients can now start ChatGPT sign-in with a device code flow, which helps when browser callback login is unreliable or unavailable. (#15525) codex exec now supports the prompt-plus-stdin workflow, so you can pipe input and still pass a separate prompt on the command line. (#15917) Custom model providers can now fetch and refresh short-lived bearer tokens dynamically, instead of being limited to static credentials from config or environment variables. (#16286, #16287, #16288) Bug Fixes Project-local .codex files are now protected even on first creation, closing a gap where the initial write could bypass normal approval checks. (#15067) Linux sandbox launches are more reliable because Codex once again finds a trusted system bwrap on normal multi-entry PATHs. (#15791, #15973) The app-server-backed TUI regained several missing workflows: hook notifications replay correctly, /copy and /resume <name> work again, /agent no longer shows stale threads, and the skills picker scrolls past the first page. (#16013, #16021, #16050, #16014, #16109, #16110) MCP startup is more robust: local servers get a longer startup window, and failed handshakes surface warnings in the TUI again instead of looking like clean startups. (#16080, #16041) On Windows, apply_patch is less likely to fail because it no longer adds redundant writable roots that could trigger unnecessary ACL churn. (#16030) Changelog #15891 [plugins] Polish tool suggest prompts. @mzeng-openai #15791 fix: resolve bwrap from trusted PATH entry @viyatb-oai #15900 skills: remove unused skill permission metadata @bolinfest #15811 app-server: Split transport module @euroelessar #15067 Protect first-time project .codex creation across Linux and macOS sandboxes @rreichel3-oai #15903 [codex] import token_data from codex-login directly @bolinfest #15897 sandboxing: use OsString for SandboxCommand.program @bolinfest #15910 docs: update AGENTS.md to discourage adding code to codex-core @bolinfest #15898 chore: move bwrap config helpers into dedicated module @viyatb-oai #15906 chore: remove skill metadata from command approval payloads @bolinfest #15909 fix(network-proxy): fail closed on network-proxy DNS lookup errors @viyatb-oai #14495 Preserve bazel repository cache in github actions @siggisim 💡 深度点评 核心亮点 安全沙箱强化（Windows）：Windows 平台的沙箱运行现在支持通过系统级出口规则（Egress Rules）强制执行仅代理网络，而非单纯依赖环境变量。这一改进显著提升了网络隔离的严密性，防止了潜在的绕过风险。 (#12220) 动态身份验证支持：自定义模型供应商现在可以动态获取并刷新短效 Bearer Token。相比此前仅支持配置文件或环境变量中的静态凭据，这一变化为集成企业级 IAM（身份访问管理）和更安全的认证流提供了可能。 (#16286, #16288) CLI 流水线能力增强：codex exec 现已支持“Prompt + Stdin”工作流。开发者可以通过管道（pipe）输入数据的同时，在命令行直接传递独立的 Prompt，大幅提升了 Codex 在自动化脚本中的灵活性。 (#15917) 值得注意的修复 首创配置文件安全保护：修复了项目本地 .codex 文件在首次创建时可能绕过审批检查的漏洞，确保从文件诞生起就受沙箱策略保护。 (#15067) MCP 启动鲁棒性提升：为本地 MCP 服务器提供了更长的启动窗口期，并修复了握手失败被误判为正常启动的问题。现在 TUI 能正确显示握手警告，便于开发者排查插件初始化故障。 (#16080, #16041) TUI 核心工作流回归：修复了基于 app-server 的 TUI 界面中的多项退化问题，包括 /copy 和 /resume 指令失效、Hook 通知回放异常以及技能选择器无法翻页等关键交互 Bug。 (#16013, #16021, #16109) 个人评价 Rust-v0.118.0 是一个侧重于“工程健壮性”的更新版本。它没有堆砌新的模型功能，而是将重心放在了沙箱安全性、认证机制动态化以及 TUI 交互的稳定性上。特别是网络代理策略从环境变量升级到系统级规则，以及对动态 Token 的支持，标志着 Codex 正在向更加严苛的生产级开发环境靠拢。对于重度依赖 CLI 自动化的用户来说，codex exec 的流水线优化也是非常实用的改进。 ...

🔧 Openclaw 更新 2026.3.31 发布日期: 2026-04-01 ⚠️ 新版本发布 Breaking Nodes/exec: remove the duplicated nodes.run shell wrapper from the CLI and agent nodes tool so node shell execution always goes through exec host=node, keeping node-specific capabilities on nodes invoke and the dedicated media/location/notify actions. Plugin SDK: deprecate the legacy provider compat subpaths plus the older bundled provider setup and channel-runtime compatibility shims, emit migration warnings, and keep the current documented openclaw/plugin-sdk/* entrypoints plus local api.ts / runtime-api.ts barrels as the forward path ahead of a future major-release removal. Skills/install and Plugins/install: built-in dangerous-code critical findings and install-time scan failures now fail closed by default, so plugin installs and gateway-backed skill dependency installs that previously succeeded may now require an explicit dangerous override such as --dangerously-force-unsafe-install to proceed. Gateway/auth: trusted-proxy now rejects mixed shared-token configs, and local-direct fallback requires the configured token instead of implicitly authenticating same-host callers. Thanks @zhangning-agent, @jacobtomlinson, and @vincentkoc. Gateway/node commands: node commands now stay disabled until node pairing is approved, so device pairing alone is no longer enough to expose declared node commands. (#57777) Thanks @jacobtomlinson. Gateway/node events: node-originated runs now stay on a reduced trusted surface, so notification-driven or node-triggered flows that previously relied on broader host/session tool access may need adjustment. (#57691) Thanks @jacobtomlinson. Changes ACP/plugins: add an explicit default-off ACPX plugin-tools MCP bridge config, document the trust boundary, and harden the built-in bridge packaging/logging path so global installs and stdio MCP sessions work reliably. (#56867) Thanks @joe2643. Agents/LLM: add a configurable idle-stream timeout for embedded runner requests so stalled model streams abort cleanly instead of hanging until the broader run timeout fires. (#55072) Thanks @liuy. Agents/MCP: materialize bundle MCP tools with provider-safe names (serverName__toolName), support optional streamable-http transport selection plus per-server connection timeouts, and preserve real tool results from aborted/error turns unless truncation explicitly drops them. (#49505) Thanks @ziomancer. Android/notifications: add notification-forwarding controls with package filtering, quiet hours, rate limiting, and safer picker behavior for forwarded notification events. (#40175) Thanks @nimbleenigma. Background tasks: turn tasks into a real shared background-run control plane instead of ACP-only bookkeeping by unifying ACP, subagent, cron, and background CLI execution under one SQLite-backed ledger, routing detached lifecycle updates through the executor seam, adding audit/maintenance/status visibility, tightening auto-cleanup and lost-run recovery, improving task awareness in internal status/tool surfaces, and clarifying the split between heartbeat/main-session automation and detached scheduled runs. Thanks @mbelinky and @vincentkoc. Background tasks: add the first linear task flow control surface with openclaw flows list|show|cancel, keep manual multi-task flows separate from one-task auto-sync flows, and surface doctor recovery hints for obviously orphaned or broken flow/task linkage. Thanks @mbelinky and @vincentkoc. Channels/QQ Bot: add QQ Bot as a bundled channel plugin with multi-account setup, SecretRef-aware credentials, slash commands, reminders, and media send/receive support. (#52986) Thanks @sliverp. Diffs: skip unused viewer-versus-file SSR preload work so diffs view-only and file-only runs do less render work while keeping mode outputs aligned. (#57909) thanks @gumadeiras. Tasks: add a minimal SQLite-backed task flow registry plus task-to-flow linkage scaffolding, so orchestrated work can start gaining a first-class parent record without changing current task delivery behavior. Thanks @mbelinky and @vincentkoc. Tasks: persist blocked state on one-task task flows and let the same flow reopen cleanly on retry, so blocked detached work can carry a parent-level reason and continue without fragmenting into a new job. Thanks @mbelinky and @vincentkoc. Tasks: route one-task ACP and subagent updates through a parent task-flow owner context, so detached work can emerge back through the intended parent thread/session instead of speaking only as a raw child task. Thanks @mbelinky and @vincentkoc. LINE/outbound media: add LINE image, video, and audio outbound sends on the LINE-specific delivery path, including explicit preview/tracking handling for videos while keeping generic media sends on the existing image-only route. (#45826) Thanks @masatohoshino. Fixes Slack: stop retry-driven duplicate replies when draft-finalization edits fail ambiguously, and log configured allowlisted users/channels by readable name instead of raw IDs. Agents/OpenAI Responses: normalize raw bundled MCP tool schemas on the WebSocket/Responses path so bare-object, object-ish, and top-level union MCP tools no longer get rejected by OpenAI during tool registration. (#58299) Thanks @yelog. ACP/security: replace ACP’s dangerous-tool name override with semantic approval classes, so only narrow readonly reads/searches can auto-approve while indirect exec-capable and control-plane tools always require explicit prompt approval. Thanks @vincentkoc. ACP/sessions_spawn: register ACP child runs for completion tracking and lifecycle cleanup, and make registration-failure cleanup explicitly best-effort so callers do not assume an already-started ACP turn was fully aborted. (#40885) Thanks @xaeon2026 and @vincentkoc. ACP/tasks: mark cleanly exited ACP runs as blocked when they end on deterministic write or authorization blockers, and wake the parent session with a follow-up instead of falsely reporting success. ACPX/runtime: derive the bundled ACPX expected version from the extension package metadata instead of hardcoding a separate literal, so plugin-local ACPX installs stop drifting out of health-check parity after version bumps. (#49089) Thanks @jiejiesks and @vincentkoc. Agents/Anthropic failover: treat Anthropic api_error payloads with An unexpected error occurred while processing the response as transient so retry/fallback can engage instead of surfacing a terminal failure. (#57441) Thanks @zijiess and @vincentkoc. Agents/compaction: keep late compaction-retry completions from double-resolving finished compaction futures, so interrupted or timed-out compactions stop surfacing spurious second-completion races. (#57796) Thanks @joshavant. Agents/disabled providers: make disabled providers disappear from default model selection and embedded provider fallback, while letting explicitly pinned disabled providers fail with a clear config error instead of silently taking traffic. (#57735) Thanks @rileybrown-dev and @vincentkoc. Agents/OAuth output: force exec-host OAuth output readers through the gateway fs policy so embedded gateway runs stop crashing when provider auth writes land outside the current sandbox workspace. (#58249) Thanks @joshavant. Agents/system prompt: fix agent.name interpolation in the embedded runtime system prompt and make provider/model fallback text reflect the effective runtime selection after start. (#57625) Thanks @StllrSvr and @vincentkoc. Android/device info: read the app’s version metadata from the package manager instead of hidden APIs so Android 15+ onboarding and device info no longer fail to compile or report placeholder values. (#58126) Thanks @L3ER0Y. 💡 深度点评 这是针对 openclaw 2026.3.31 版本的深度点评： ...

🤖 Claude Code 更新 v2.1.87 发布日期: 2026-04-01 ⚠️ 新版本发布 ✨ 新增功能 🐛 重要修复 Fixed messages in Cowork Dispatch not getting delivered ⚡ 优化改进 💡 深度点评 核心亮点 本次 v2.1.87 版本主要聚焦于底层架构的稳固，核心目标是提升 Cowork Dispatch 模式在复杂协作场景下的通信质量，确保调度逻辑的严密性。 值得注意的修复 修复 Cowork Dispatch 消息投递失效问题：解决了在多任务协同分发过程中，消息无法正确送达目标的故障，保证了协作链路的连贯性。 个人评价 v2.1.87 是一个典型的稳定性补丁版本。虽然更新日志仅包含一项修复，但其针对的是 Cowork Dispatch 这一核心协作组件，对于保障多智能体任务调度的可靠性至关重要。此次修复消除了由于通信中断导致的自动化流程卡死风险，建议依赖协作模式的开发者及时更新以维持工作流的稳定性。 数据来源: 官方 CHANGELOG Generated by OpenClaw at 2026-04-01 08:00:36

🤖 Claude Code 更新 v2.1.88 发布日期: 2026-03-31 ⚠️ 新版本发布 ✨ 新增功能 Added CLAUDE_CODE_NO_FLICKER=1 environment variable to opt into flicker-free alt-screen rendering with virtualized scrollback Added PermissionDenied hook that fires after auto mode classifier denials — return {retry: true} to tell the model it can retry Added named subagents to @ mention typeahead suggestions 🐛 重要修复 Fixed prompt cache misses in long sessions caused by tool schema bytes changing mid-session Fixed nested CLAUDE.md files being re-injected dozens of times in long sessions that read many files Fixed Edit/Write tools doubling CRLF on Windows and stripping Markdown hard line breaks (two trailing spaces) Fixed StructuredOutput schema cache bug causing ~50% failure rate in workflows with multiple schemas Fixed memory leak where large JSON inputs were retained as LRU cache keys in long-running sessions Fixed a potential out-of-memory crash when the Edit tool was used on very large files (>1 GiB) Fixed a crash when removing a message from very large session files (over 50MB) Fixed --resume crash when transcript contains a tool result from an older CLI version or interrupted write Fixed misleading “Rate limit reached” message when the API returned an entitlement error — now shows the actual error with actionable hints Fixed LSP server zombie state after crash — server now restarts on next request instead of failing until session restart ⚡ 优化改进 Improved PowerShell tool prompt with version-appropriate syntax guidance (5.1 vs 7+) 💡 深度点评 以下是关于 Claude Code v2.1.88 更新内容的深度点评： ...

🔧 Openclaw 更新 2026.3.28 发布日期: 2026-03-30 ⚠️ 新版本发布 Breaking Providers/Qwen: remove the deprecated qwen-portal-auth OAuth integration for portal.qwen.ai; migrate to Model Studio with openclaw onboard --auth-choice modelstudio-api-key. (#52709) Thanks @pomelo-nwu. Config/Doctor: drop automatic config migrations older than two months; very old legacy keys now fail validation instead of being rewritten on load or by openclaw doctor. Changes xAI/tools: move the bundled xAI provider to the Responses API, add first-class x_search, and auto-enable the xAI plugin from owned web-search and tool config so bundled Grok auth/configured search flows work without manual plugin toggles. (#56048) Thanks @huntharo. xAI/onboarding: let the bundled Grok web-search plugin offer optional x_search setup during openclaw onboard and openclaw configure --section web, including an x_search model picker with the shared xAI key. MiniMax: add image generation provider for image-01 model, supporting generate and image-to-image editing with aspect ratio control. (#54487) Thanks @liyuan97. Plugins/hooks: add async requireApproval to before_tool_call hooks, letting plugins pause tool execution and prompt the user for approval via the exec approval overlay, Telegram buttons, Discord interactions, or the /approve command on any channel. The /approve command now handles both exec and plugin approvals with automatic fallback. (#55339) Thanks @vaclavbelak and @joshavant. ACP/channels: add current-conversation ACP binds for Discord, BlueBubbles, and iMessage so /acp spawn codex --bind here can turn the current chat into a Codex-backed workspace without creating a child thread, and document the distinction between chat surface, ACP session, and runtime workspace. OpenAI/apply_patch: enable apply_patch by default for OpenAI and OpenAI Codex models, and align its sandbox policy access with write permissions. Plugins/CLI backends: move bundled Claude CLI, Codex CLI, and Gemini CLI inference defaults onto the plugin surface, add bundled Gemini CLI backend support, and replace gateway run --claude-cli-logs with generic --cli-backend-logs while keeping the old flag as a compatibility alias. Plugins/startup: auto-load bundled provider and CLI-backend plugins from explicit config refs, so bundled Claude CLI, Codex CLI, and Gemini CLI message-provider setups no longer need manual plugins.allow entries. Podman: simplify the container setup around the current rootless user, install the launch helper under ~/.local/bin, and document the host-CLI openclaw --container <name> ... workflow instead of a dedicated openclaw service user. Slack/tool actions: add an explicit upload-file Slack action that routes file uploads through the existing Slack upload transport, with optional filename/title/comment overrides for channels and DMs. Message actions/files: start unifying file-first sends on the canonical upload-file action by adding explicit support for Microsoft Teams and Google Chat, and by exposing BlueBubbles file sends through upload-file while keeping the legacy sendAttachment alias. Plugins/Matrix TTS: send auto-TTS replies as native Matrix voice bubbles instead of generic audio attachments. (#37080) thanks @Matthew19990919. Fixes Agents/Anthropic: recover unhandled provider stop reasons (e.g. sensitive) as structured assistant errors instead of crashing the agent run. (#56639) Google/models: resolve Gemini 3.1 pro, flash, and flash-lite for all Google provider aliases by passing the actual runtime provider ID and adding a template-provider fallback; fix flash-lite prefix ordering. (#56567) OpenAI Codex/image tools: register Codex for media understanding and route image prompts through Codex instructions so image analysis no longer fails on missing provider registration or missing instructions. (#54829) Thanks @neeravmakwana. Agents/image tool: restore the generic image-runtime fallback when no provider-specific media-understanding provider is registered, so image analysis works again for providers like openrouter and minimax-portal. (#54858) Thanks @MonkeyLeeT. WhatsApp: fix infinite echo loop in self-chat DM mode where the bot’s own outbound replies were re-processed as new inbound user messages. (#54570) Thanks @joelnishanth Telegram/splitting: replace proportional text estimate with verified HTML-length search so long messages split at word boundaries instead of mid-word; gracefully degrade when tag overhead exceeds the limit. (#56595) Telegram/delivery: skip whitespace-only and hook-blanked text replies in bot delivery to prevent GrammyError 400 empty-text crashes. (#56620) Telegram/send: validate replyToMessageId at all four API sinks with a shared normalizer that rejects non-numeric, NaN, and mixed-content strings. (#56587) Approvals/UI: keep the newest pending approval at the front of the Control UI queue so approving one request does not accidentally target an older expired id. Thanks @vincentkoc. Plugin approvals: accept unique short approval-id prefixes on plugin.approval.resolve, matching exec approvals and restoring /approve fallback flows on chat approval surfaces. Thanks @vincentkoc. Mistral: normalize OpenAI-compatible request flags so official Mistral API runs no longer fail with remaining 422 status code (no body) chat errors. Control UI/config: keep sensitive raw config hidden by default, replace the blank blocked editor with an explicit reveal-to-edit state, and restore raw JSON editing without auto-exposing secrets. Fixes #55322. 💡 深度点评 这是针对 openclaw 2026.3.28 版本的深度技术点评： ...

🤖 Claude Code 更新 v2.1.87 发布日期: 2026-03-30 ⚠️ 新版本发布 ✨ 新增功能 🐛 重要修复 Fixed messages in Cowork Dispatch not getting delivered ⚡ 优化改进 💡 深度点评 核心亮点 协作稳定性增强：针对 Cowork Dispatch 模式进行了底层优化，确保在多任务并发或复杂协作场景下，指令和状态消息能够稳定送达目标节点。 值得注意的修复 修复消息丢失问题：解决了 Cowork Dispatch 中消息发送失败的异常，消除了因通信中断导致的代理任务挂起或执行超时风险。 个人评价 Claude Code v2.1.87 是一个专注于系统健壮性的维护版本。本次更新精准修复了 Cowork Dispatch 这一协作核心模块的通信缺陷，对提升大规模自动化任务的成功率具有实际意义。虽然该版本未引入交互层面的新特性，但底层通信逻辑的加固，是工具走向工程化生产环境的必要保障。对于依赖多代理协作流程的用户，这是一个建议升级的稳定性补丁。 数据来源: 官方 CHANGELOG Generated by OpenClaw at 2026-03-30 08:00:30

🔧 Openclaw 更新 2026.3.28-beta.1 发布日期: 2026-03-29 ⚠️ 新版本发布 Breaking Providers/Qwen: remove the deprecated qwen-portal-auth OAuth integration for portal.qwen.ai; migrate to Model Studio with openclaw onboard --auth-choice modelstudio-api-key. (#52709) Thanks @pomelo-nwu. Config/Doctor: drop automatic config migrations older than two months; very old legacy keys now fail validation instead of being rewritten on load or by openclaw doctor. Changes xAI/tools: move the bundled xAI provider to the Responses API, add first-class x_search, and auto-enable the xAI plugin from owned web-search and tool config so bundled Grok auth/configured search flows work without manual plugin toggles. (#56048) Thanks @huntharo. MiniMax: add image generation provider for image-01 model, supporting generate and image-to-image editing with aspect ratio control. (#54487) Thanks @liyuan97. Plugins/hooks: add async requireApproval to before_tool_call hooks, letting plugins pause tool execution and prompt the user for approval via the exec approval overlay, Telegram buttons, Discord interactions, or the /approve command on any channel. The /approve command now handles both exec and plugin approvals with automatic fallback. (#55339) Thanks @vaclavbelak and @joshavant. ACP/channels: add current-conversation ACP binds for Discord, BlueBubbles, and iMessage so /acp spawn codex --bind here can turn the current chat into a Codex-backed workspace without creating a child thread, and document the distinction between chat surface, ACP session, and runtime workspace. OpenAI/apply_patch: enable apply_patch by default for OpenAI and OpenAI Codex models, and align its sandbox policy access with write permissions. Plugins/CLI backends: move bundled Claude CLI, Codex CLI, and Gemini CLI inference defaults onto the plugin surface, add bundled Gemini CLI backend support, and replace gateway run --claude-cli-logs with generic --cli-backend-logs while keeping the old flag as a compatibility alias. Plugins/startup: auto-load bundled provider and CLI-backend plugins from explicit config refs, so bundled Claude CLI, Codex CLI, and Gemini CLI message-provider setups no longer need manual plugins.allow entries. Podman: simplify the container setup around the current rootless user, install the launch helper under ~/.local/bin, and document the host-CLI openclaw --container <name> ... workflow instead of a dedicated openclaw service user. Slack/tool actions: add an explicit upload-file Slack action that routes file uploads through the existing Slack upload transport, with optional filename/title/comment overrides for channels and DMs. Message actions/files: start unifying file-first sends on the canonical upload-file action by adding explicit support for Microsoft Teams and Google Chat, and by exposing BlueBubbles file sends through upload-file while keeping the legacy sendAttachment alias. Plugins/Matrix TTS: send auto-TTS replies as native Matrix voice bubbles instead of generic audio attachments. (#37080) thanks @Matthew19990919. CLI: add openclaw config schema to print the generated JSON schema for openclaw.json. (#54523) Thanks @kvokka. Fixes Agents/Anthropic: recover unhandled provider stop reasons (e.g. sensitive) as structured assistant errors instead of crashing the agent run. (#56639) Google/models: resolve Gemini 3.1 pro, flash, and flash-lite for all Google provider aliases by passing the actual runtime provider ID and adding a template-provider fallback; fix flash-lite prefix ordering. (#56567) OpenAI Codex/image tools: register Codex for media understanding and route image prompts through Codex instructions so image analysis no longer fails on missing provider registration or missing instructions. (#54829) Thanks @neeravmakwana. Agents/image tool: restore the generic image-runtime fallback when no provider-specific media-understanding provider is registered, so image analysis works again for providers like openrouter and minimax-portal. (#54858) Thanks @MonkeyLeeT. WhatsApp: fix infinite echo loop in self-chat DM mode where the bot’s own outbound replies were re-processed as new inbound user messages. (#54570) Thanks @joelnishanth Telegram/splitting: replace proportional text estimate with verified HTML-length search so long messages split at word boundaries instead of mid-word; gracefully degrade when tag overhead exceeds the limit. (#56595) Telegram/delivery: skip whitespace-only and hook-blanked text replies in bot delivery to prevent GrammyError 400 empty-text crashes. (#56620) Telegram/send: validate replyToMessageId at all four API sinks with a shared normalizer that rejects non-numeric, NaN, and mixed-content strings. (#56587) Mistral: normalize OpenAI-compatible request flags so official Mistral API runs no longer fail with remaining 422 status code (no body) chat errors. Control UI/config: keep sensitive raw config hidden by default, replace the blank blocked editor with an explicit reveal-to-edit state, and restore raw JSON editing without auto-exposing secrets. Fixes #55322. CLI/zsh: defer compdef registration until compinit is available so zsh completion loads cleanly with plugin managers and manual setups. (#56555) BlueBubbles/debounce: guard debounce flush against null message text by sanitizing at the enqueue boundary and adding an independent combiner guard. (#56573) 💡 深度点评 OpenClaw 2026.3.28-beta.1 版本发布，这次更新在架构一致性和交互安全性上迈出了重要一步。以下是针对该版本的深度点评： ...