@lansenger-pm/openclaw-lansenger-channel 3.16.3 → 3.16.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/CHANGELOG.md CHANGED
@@ -4,6 +4,29 @@ All notable changes to this project will be documented in this file.
4
4
 
5
5
  The format is based on [Keep a Changelog](https://keepachangelog.com/), and this project adheres to [Semantic Versioning](https://semver.org/).
6
6
 
7
+ ## [3.16.5] - 2026-06-23
8
+
9
+ ### Added
10
+
11
+ - **Native approval cards for exec commands**: Non-whitelist exec commands now trigger interactive approval cards. Users approve or deny via button clicks or `/approve <id>` slash commands. Cards update status in-place after resolution.
12
+ - **`lansenger_send_approve_card`** Agent tool for sending interactive approval cards.
13
+ - **`accountId` parameter** on all send tools (`lansenger_send_*`) for correct bot routing in multi-account setups.
14
+ - **Auto-register native slash commands**: Built-in commands (`/help`, `/models`, `/reset`, etc.) are now auto-synced to Lansenger via `/v1/bot/commands/create` on gateway startup so they appear in the client command picker. Includes multi-language descriptions (zhHans/zhHant/zhHantHK/en/fr) via new `command-i18n.ts`.
15
+ - **Auto-configured approvers**: Bot owner from `homeChannel` is automatically used when `approvals.exec.allowFrom.lansenger` is not set.
16
+ - **`commands` block** in plugin manifest (`nativeCommandsAutoEnabled: true`, `nativeSkillsAutoEnabled: true`).
17
+
18
+ ### Changed
19
+
20
+ - **Tool registration**: Refactored from inline factory arrays to declarative schema objects with `makeToolClient` lookup.
21
+ - **`reminderUserIds` description**: Updated to reflect that `@姓名` must be written in the message text (Lansenger API no longer auto-prepends names).
22
+ - **Multi-level config section fallback**: `dmPolicy`, `allowFrom`, `homeChannel`, and `apiGatewayUrl` in `resolveAccount` now fall back from account → section level (previously only account-level values were read).
23
+ - **Documentation**: All 5 README config tables, `lansenger-setup` SKILL, and `lansenger-messaging` SKILL updated with missing config keys and approval workflow notes.
24
+
25
+ ### Fixed
26
+
27
+ - **@BotName stripping broken for mid-message mentions**: Changed `endsWith` to `includes` so `"/models@bot openai"` is correctly normalized to `"/models openai"`.
28
+ - **Blocked commands silently dropped**: Reply "此命令需要授权。"/"This command requires authorization." when an unauthorized user attempts a slash command.
29
+
7
30
  ## [3.16.3] - 2026-06-22
8
31
 
9
32
  ### Fixed
package/README.fr.md CHANGED
@@ -184,6 +184,8 @@ Les identifiants peuvent aussi être fournis via la configuration `openclaw.json
184
184
  | `mediaLocalRoots` | Répertoires racine autorisés pour l'envoi de fichiers locaux via média ; tableau vide par défaut = workspace + `/tmp` | `[cwd, /tmp]` |
185
185
  | `ackMessageTextZh` | Texte du message ack en chinois | `收到,正在处理...` |
186
186
  | `ackMessageTextEn` | Texte du message ack en anglais | `Received, processing...` |
187
+ | `requireMention` | Nécessite une mention `@nom_du_bot` pour déclencher dans les groupes. Mettre `false` pour répondre à tous les messages. | `true` |
188
+ | `dangerouslyAllowPrivateNetwork` | Permettre à `sendImageUrl` de récupérer des images depuis des réseaux privés/internes (RFC1918, link-local, IP metadata). Désactivé par défaut pour la protection SSRF. | `false` |
187
189
 
188
190
  ### Debounce entrant (fusion de messages)
189
191
 
package/README.md CHANGED
@@ -176,6 +176,8 @@ Credentials can also be provided via `openclaw.json` config (see Optional Config
176
176
  | `mediaLocalRoots` | Allowed root directories for sending local files via media; empty array defaults to workspace + `/tmp` | `[cwd, /tmp]` |
177
177
  | `ackMessageTextZh` | Chinese ack message text | `收到,正在处理...` |
178
178
  | `ackMessageTextEn` | English ack message text | `Received, processing...` |
179
+ | `requireMention` | Require `@botName` mention to trigger in groups. Set `false` to respond to all messages. | `true` |
180
+ | `dangerouslyAllowPrivateNetwork` | Allow `sendImageUrl` to fetch images from private/internal networks (RFC1918, link-local, metadata IPs). Disabled by default for SSRF protection. | `false` |
179
181
 
180
182
  ### Inbound Debounce (Message Merging)
181
183
 
package/README.zhHans.md CHANGED
@@ -184,6 +184,8 @@ openclaw pairing approve lansenger <配对码>
184
184
  | `mediaLocalRoots` | 通过媒体发送本地文件时允许的根目录列表;空数组默认为工作区 + `/tmp` | `[cwd, /tmp]` |
185
185
  | `ackMessageTextZh` | 中文确认消息文案 | `收到,正在处理...` |
186
186
  | `ackMessageTextEn` | 英文确认消息文案 | `Received, processing...` |
187
+ | `requireMention` | 群聊中是否需要 @机器人才会触发。设为 `false` 则任何消息都会触发。 | `true` |
188
+ | `dangerouslyAllowPrivateNetwork` | 允许 `sendImageUrl` 从内网地址获取图片(RFC1918、链路本地、metadata IP)。默认禁用以防止 SSRF 攻击。 | `false` |
187
189
 
188
190
  ### 入站防抖合并(消息合并)
189
191
 
package/README.zhHant.md CHANGED
@@ -184,6 +184,8 @@ openclaw pairing approve lansenger <配對碼>
184
184
  | `mediaLocalRoots` | 透過媒體傳送本地檔案時允許的根目錄列表;空陣列預設為工作區 + `/tmp` | `[cwd, /tmp]` |
185
185
  | `ackMessageTextZh` | 中文確認訊息文案 | `收到,正在處理...` |
186
186
  | `ackMessageTextEn` | 英文確認訊息文案 | `Received, processing...` |
187
+ | `requireMention` | 羣聊中是否需要 @機器人才會觸發。設為 `false` 則任何訊息都會觸發。 | `true` |
188
+ | `dangerouslyAllowPrivateNetwork` | 允許 `sendImageUrl` 從內網地址獲取圖片(RFC1918、鏈路本地、metadata IP)。預設禁用以防止 SSRF 攻擊。 | `false` |
187
189
 
188
190
  ### 入站防抖合併(訊息合併)
189
191
 
@@ -184,6 +184,8 @@ openclaw pairing approve lansenger <配對碼>
184
184
  | `mediaLocalRoots` | 透過媒體發送本地檔案時允許的根目錄列表;空陣列預設為工作區 + `/tmp` | `[cwd, /tmp]` |
185
185
  | `ackMessageTextZh` | 中文確認訊息文案 | `收到,正在處理...` |
186
186
  | `ackMessageTextEn` | 英文確認訊息文案 | `Received, processing...` |
187
+ | `requireMention` | 羣聊中是否需要 @機器人才會觸發。設為 `false` 則任何訊息都會觸發。 | `true` |
188
+ | `dangerouslyAllowPrivateNetwork` | 允許 `sendImageUrl` 從內網地址獲取圖片(RFC1918、鏈路本地、metadata IP)。預設禁用以防止 SSRF 攻擊。 | `false` |
187
189
 
188
190
  ### 入站防抖合併(訊息合併)
189
191