hzhang db323a2118 fix(kb): inject AGENT_VERIFY + AGENT_WORKSPACE for secret-mgr spawn ...

The original tokenFor() only overrode AGENT_ID, relying on the
openclaw parent process's environment to carry AGENT_VERIFY and
AGENT_WORKSPACE. In practice the openclaw daemon process is started
without those env vars, so the child secret-mgr call fails with
"must be invoked via pcexec" and the plugin silently falls back to
the plugin-level apiKey.

Synthesize all three env vars explicitly: the verify sentinel is
constant, AGENT_ID gates which agent's store secret-mgr looks at,
and AGENT_WORKSPACE only needs to be a syntactically valid path
because get-secret indexes by AGENT_ID alone. Verified in dind-t2:
with a clean parent env, spawnSync now successfully retrieves the
per-agent hf-token from /root/.openclaw/pc-pass-store/<agent>/.

2026-06-06 00:55:52 +01:00

..

calendar

fix(plugin): real per-agent slot handle for multi-agent calendar tools

2026-05-21 10:38:57 +01:00

core

fix: disable periodic openclaw agents list subprocess

2026-04-16 15:26:55 +00:00

hooks

chore: convert plugin to ESM and migrate to current openclaw plugin SDK

2026-05-08 08:28:58 +00:00

tools

feat(kbblock,fade): TS fade port + scaffold renderFaded/tick (not wired in v1)

2026-06-06 00:26:16 +01:00

index.ts

fix(kb): inject AGENT_VERIFY + AGENT_WORKSPACE for secret-mgr spawn

2026-06-06 00:55:52 +01:00

openclaw-sdk.d.ts

chore: track ambient openclaw-sdk.d.ts (was caught by *.d.ts ignore)

2026-05-08 08:29:35 +00:00

openclaw.plugin.json

feat(kb): dynamic-kb-* tool family + <kb-block> subblock injection

2026-06-05 23:32:34 +01:00

package-lock.json

fix: wake dedupe + inline slot context + complete contracts.tools

2026-05-20 12:02:25 +01:00

package.json

fix(plugin): wakeup message says 'continue in same session', not 'only reply WAKEUP_OK'

2026-05-21 11:05:28 +01:00

tsconfig.json

chore: convert plugin to ESM and migrate to current openclaw plugin SDK

2026-05-08 08:28:58 +00:00