openclaw-scheduler 0.2.9 → 0.2.11

package/gateway.js

@@ -144,6 +144,7 @@ export async function runAgentTurn(opts) {
  * @param {number} opts.pollIntervalMs    - How often to poll session activity (default: 60000)
  * @param {number} opts.absoluteTimeoutMs - Hard ceiling regardless of activity (default: 300000)
  * @param {string} opts.authProfile       - Auth profile override (null, 'inherit', or 'provider:label')
+ * @param {string[]} [opts.sessionKinds]  - Optional session kinds to track for activity polling
  */
 export async function runAgentTurnWithActivityTimeout(opts) {
   const {
@@ -155,10 +156,46 @@ export async function runAgentTurnWithActivityTimeout(opts) {
     idleTimeoutMs = 120000,       // per-check idle threshold (from payload_timeout_seconds)
     pollIntervalMs = 60000,       // check activity every 60s
     absoluteTimeoutMs = 300000,   // hard ceiling (run_timeout_ms)
+    sessionKinds,
   } = opts;
 
   const controller = new AbortController();
   let abortReason = null;
+  const normalizedAgentId = (agentId || 'main').toLowerCase();
+  const normalizedSessionKey = String(sessionKey || '').toLowerCase();
+
+  const inferSessionKinds = () => {
+    if (Array.isArray(sessionKinds) && sessionKinds.length > 0) {
+      return [...new Set(sessionKinds.map(k => String(k).toLowerCase()).filter(Boolean))];
+    }
+
+    // Explicitly isolated/subagent sessions should not be pinned to main session
+    // so they can report idleness based on their own active session records.
+    if (
+      normalizedSessionKey === 'isolated' ||
+      normalizedSessionKey.startsWith('isolated:') ||
+      normalizedSessionKey.endsWith(':isolated') ||
+      normalizedSessionKey.includes(':isolated:') ||
+      normalizedAgentId === 'subagent'
+    ) {
+      return ['subagent', 'isolated'];
+    }
+
+    // Default to including main unless we can clearly infer this is an isolated run.
+    if (
+      normalizedAgentId === 'main' ||
+      normalizedSessionKey === 'main' ||
+      normalizedSessionKey.startsWith('main:') ||
+      normalizedSessionKey.includes(':main:') ||
+      normalizedSessionKey.endsWith(':main')
+    ) {
+      return ['main', 'subagent', 'isolated'];
+    }
+
+    return ['main', 'subagent', 'isolated'];
+  };
+
+  const resolvedSessionKinds = inferSessionKinds();
 
   // Hard absolute ceiling -- always fires regardless of activity
   const absoluteTimer = setTimeout(() => {
@@ -171,7 +208,7 @@ export async function runAgentTurnWithActivityTimeout(opts) {
 
   const checkActivity = async () => {
     try {
-      const result = await listSessions({ kinds: ['subagent', 'isolated'], activeMinutes: 60 });
+      const result = await listSessions({ kinds: resolvedSessionKinds, activeMinutes: 60 });
       // Normalise: gateway wraps result in several layers
       const sessions =
         result?.result?.details?.sessions ||
@@ -551,20 +588,55 @@ export async function waitForGateway(timeoutMs = 30000, intervalMs = 2000) {
  * @param {string} [agentId='main'] - Agent ID for store path resolution
  * @returns {{ ok: boolean, error?: string }}
  */
-export function applyAuthProfileToSessionStore(sessionKey, authProfile, agentId = 'main') {
-  if (!sessionKey || !authProfile) {
-    return { ok: false, error: 'sessionKey and authProfile are required' };
-  }
-
-  // The gateway may persist session state under either the canonical agent-scoped
-  // key or the flat transport key, depending on which path created the session.
-  // Keep both aliases in sync so isolated scheduler jobs cannot miss the override.
+function resolveSessionKeyAliases(sessionKey, agentId = 'main') {
   const canonicalMatch = sessionKey.match(/^agent:[^:]+:(.+)$/);
   const canonicalKey = sessionKey.startsWith('agent:')
     ? sessionKey
     : `agent:${agentId}:${sessionKey}`;
   const flatSessionKey = canonicalMatch?.[1] || sessionKey;
-  const keyAliases = Array.from(new Set([canonicalKey, flatSessionKey]));
+  return Array.from(new Set([canonicalKey, flatSessionKey]));
+}
+
+function parseSessionModelRef(modelRef) {
+  const trimmed = typeof modelRef === 'string' ? modelRef.trim() : '';
+  if (!trimmed) {
+    return { providerOverride: undefined, modelOverride: undefined };
+  }
+  const slashIndex = trimmed.indexOf('/');
+  if (slashIndex <= 0 || slashIndex >= trimmed.length - 1) {
+    return { providerOverride: undefined, modelOverride: trimmed };
+  }
+  const providerOverride = trimmed.slice(0, slashIndex).trim();
+  const modelOverride = trimmed.slice(slashIndex + 1).trim();
+  return {
+    providerOverride: providerOverride || undefined,
+    modelOverride: modelOverride || undefined,
+  };
+}
+
+/**
+ * Write scheduler-managed session overrides directly to the gateway's sessions.json store.
+ *
+ * The gateway reads sessions.json on each agent turn (with mtime-based cache
+ * invalidation), so writing here before dispatch ensures the embedded runner
+ * picks up the correct auth profile and model selection.
+ *
+ * @param {string} sessionKey - Session key as used in the HTTP request (e.g. 'scheduler:<jobId>')
+ * @param {{ authProfile?: string | null, modelRef?: string | null }} overrides - Desired session overrides
+ * @param {string} [agentId='main'] - Agent ID for store path resolution
+ * @returns {{ ok: boolean, error?: string }}
+ */
+export function applySessionOverridesToSessionStore(sessionKey, overrides = {}, agentId = 'main') {
+  if (!sessionKey) {
+    return { ok: false, error: 'sessionKey is required' };
+  }
+
+  const authProfile = typeof overrides.authProfile === 'string' ? overrides.authProfile.trim() : '';
+  const shouldSetAuthProfile = Boolean(authProfile) && authProfile !== 'inherit';
+  const { providerOverride, modelOverride } = parseSessionModelRef(overrides.modelRef);
+  const shouldSetModelOverride = Boolean(modelOverride);
+
+  const keyAliases = resolveSessionKeyAliases(sessionKey, agentId);
   const sessionsPath = join(HOME_DIR, '.openclaw', 'agents', agentId, 'sessions', 'sessions.json');
 
   try {
@@ -579,28 +651,59 @@ export function applyAuthProfileToSessionStore(sessionKey, authProfile, agentId
     let changed = false;
 
     for (const key of keyAliases) {
-      const entry = store[key];
-      if (!entry) {
-        // Session doesn't exist yet -- create a minimal entry.
-        // The gateway will populate the rest on the first agent turn.
-        store[key] = {
-          updatedAt: now,
-          authProfileOverride: authProfile,
-          authProfileOverrideSource: 'user',
-        };
-        changed = true;
+      const existingEntry = store[key];
+      if (!existingEntry && !shouldSetAuthProfile && !shouldSetModelOverride) {
         continue;
       }
 
-      if (entry.authProfileOverride !== authProfile || entry.authProfileOverrideSource !== 'user') {
-        // Update existing entry
-        entry.authProfileOverride = authProfile;
-        entry.authProfileOverrideSource = 'user';
-        entry.updatedAt = now;
-        // Clear compaction count so the override sticks across compactions
+      const entry = existingEntry || { updatedAt: now };
+      let entryChanged = false;
+
+      if (shouldSetAuthProfile) {
+        if (entry.authProfileOverride !== authProfile || entry.authProfileOverrideSource !== 'user') {
+          entry.authProfileOverride = authProfile;
+          entry.authProfileOverrideSource = 'user';
+          delete entry.authProfileOverrideCompactionCount;
+          entryChanged = true;
+        }
+      } else if (
+        entry.authProfileOverride !== undefined ||
+        entry.authProfileOverrideSource !== undefined ||
+        entry.authProfileOverrideCompactionCount !== undefined
+      ) {
+        delete entry.authProfileOverride;
+        delete entry.authProfileOverrideSource;
         delete entry.authProfileOverrideCompactionCount;
-        changed = true;
+        entryChanged = true;
       }
+
+      if (shouldSetModelOverride) {
+        if (entry.modelOverride !== modelOverride) {
+          entry.modelOverride = modelOverride;
+          entryChanged = true;
+        }
+        if (providerOverride) {
+          if (entry.providerOverride !== providerOverride) {
+            entry.providerOverride = providerOverride;
+            entryChanged = true;
+          }
+        } else if (entry.providerOverride !== undefined) {
+          delete entry.providerOverride;
+          entryChanged = true;
+        }
+      } else if (entry.modelOverride !== undefined || entry.providerOverride !== undefined) {
+        delete entry.modelOverride;
+        delete entry.providerOverride;
+        entryChanged = true;
+      }
+
+      if (!entryChanged) {
+        continue;
+      }
+
+      entry.updatedAt = now;
+      store[key] = entry;
+      changed = true;
     }
 
     if (!changed) {
@@ -614,9 +717,16 @@ export function applyAuthProfileToSessionStore(sessionKey, authProfile, agentId
   }
 }
 
+export function applyAuthProfileToSessionStore(sessionKey, authProfile, agentId = 'main') {
+  if (!sessionKey || !authProfile) {
+    return { ok: false, error: 'sessionKey and authProfile are required' };
+  }
+  return applySessionOverridesToSessionStore(sessionKey, { authProfile }, agentId);
+}
+
 /**
- * Sync the live auth-profiles.json from ~/.openclaw/credentials/ to the agent's
- * auth store at ~/.openclaw/agents/<agentId>/agent/auth-profiles.json.
+ * Sync the live auth-profiles.json from the main agent store to the target
+ * agent store at ~/.openclaw/agents/<agentId>/agent/auth-profiles.json.
  *
  * This ensures scheduler sessions always use fresh credentials (tokens, order,
  * default profile) even when no explicit auth_profile is set on the job.
@@ -630,7 +740,7 @@ export function applyAuthProfileToSessionStore(sessionKey, authProfile, agentId
  * @returns {{ ok: boolean, error?: string }}
  */
 export function syncAuthStoreToSession(agentId = 'main') {
-  const livePath = join(HOME_DIR, '.openclaw', 'credentials', 'auth-profiles.json');
+  const livePath = join(HOME_DIR, '.openclaw', 'agents', 'main', 'agent', 'auth-profiles.json');
   const agentStorePath = join(HOME_DIR, '.openclaw', 'agents', agentId, 'agent', 'auth-profiles.json');
 
   try {

package/index.d.ts

@@ -33,6 +33,7 @@ export interface JobSpec {
   payload_kind?: 'systemEvent' | 'agentTurn' | 'shellCommand';
   payload_message: string;
   payload_model?: string | null;
+  payload_model_fallback?: string | null;
   payload_thinking?: string | null;
   payload_timeout_seconds?: number;
   payload_scope?: 'own' | 'global';
@@ -87,6 +88,7 @@ export interface JobSpec {
 
   // Auth profile override
   auth_profile?: string | null;
+  auth_profile_fallback?: string | null;
 
   // Delivery opt-out
   delivery_opt_out_reason?: string | null;
@@ -150,6 +152,8 @@ export interface JobRecord extends JobSpec {
   schedule_cron: string | null;
   schedule_at: string | null;
   schedule_tz: string;
+  payload_model_fallback?: string | null;
+  auth_profile_fallback?: string | null;
   payload_kind: 'systemEvent' | 'agentTurn' | 'shellCommand';
   payload_message: string;
   ttl_hours: number | null;
@@ -455,6 +459,7 @@ export interface AgentTurnWithTimeoutOpts {
   sessionKey?: string;
   model?: string;
   authProfile?: string | null;
+  sessionKinds?: string[];
   idleTimeoutMs?: number;
   pollIntervalMs?: number;
   absoluteTimeoutMs?: number;

package/jobs.js

@@ -35,11 +35,11 @@ function sqliteNow(offsetMs = 0) {
 
 const PATCHABLE_COLUMNS = new Set([
   'enabled', 'name', 'schedule_cron', 'schedule_tz', 'schedule_at', 'schedule_kind',
-  'next_run_at', 'last_run_at', 'last_status', 'payload_message', 'payload_model',
+  'next_run_at', 'last_run_at', 'last_status', 'payload_message', 'payload_model', 'payload_model_fallback',
   'payload_thinking', 'payload_timeout_seconds', 'session_target', 'run_timeout_ms',
   'max_retries', 'consecutive_errors',
   'delivery_mode', 'delivery_channel', 'delivery_to', 'delivery_opt_out_reason',
-  'delete_after_run', 'ttl_hours', 'auth_profile', 'origin',
+  'delete_after_run', 'ttl_hours', 'auth_profile', 'auth_profile_fallback', 'origin',
   'output_excerpt_limit_bytes', 'output_summary_limit_bytes',
   'watchdog_check_cmd', 'watchdog_timeout_min', 'watchdog_started_at',
   'watchdog_target_label', 'watchdog_alert_channel', 'watchdog_alert_target',
@@ -192,9 +192,11 @@ export function validateJobSpec(opts, currentJob = null, mode = 'create') {
     'resource_pool',
     'preferred_session_key',
     'payload_model',
+    'payload_model_fallback',
     'payload_thinking',
     'trigger_condition',
     'auth_profile',
+    'auth_profile_fallback',
     'delivery_opt_out_reason',
     'origin',
     // v0.2 nullable strings
@@ -397,6 +399,9 @@ export function validateJobSpec(opts, currentJob = null, mode = 'create') {
   if (mode === 'create' || 'payload_model' in normalized) {
     assertSafeString('payload_model', merged.payload_model, { allowEmpty: false, maxLength: 256 });
   }
+  if (mode === 'create' || 'payload_model_fallback' in normalized) {
+    assertSafeString('payload_model_fallback', merged.payload_model_fallback, { allowEmpty: false, maxLength: 256 });
+  }
   if (mode === 'create' || 'payload_thinking' in normalized) {
     assertSafeString('payload_thinking', merged.payload_thinking, { allowEmpty: false, maxLength: 64 });
   }
@@ -408,6 +413,14 @@ export function validateJobSpec(opts, currentJob = null, mode = 'create') {
       assertSafeString('auth_profile', merged.auth_profile, { allowEmpty: false, maxLength: 256 });
     }
   }
+  if (mode === 'create' || 'auth_profile_fallback' in normalized) {
+    if (merged.auth_profile_fallback != null) {
+      if (typeof merged.auth_profile_fallback !== 'string') {
+        throw new Error('auth_profile_fallback must be a string or null');
+      }
+      assertSafeString('auth_profile_fallback', merged.auth_profile_fallback, { allowEmpty: false, maxLength: 256 });
+    }
+  }
 
   // Origin tracking (v20): required on creation for root (non-child) jobs.
   // Format convention: "<channel>:<id>" e.g. "telegram:<your-user-id>", "telegram:<your-group-id>", or "system" for automated jobs.
@@ -651,7 +664,7 @@ export function createJob(opts) {
     INSERT INTO jobs (
       id, name, enabled, schedule_kind, schedule_at, schedule_cron, schedule_tz,
       session_target, agent_id, payload_kind, payload_message,
-      payload_model, payload_thinking, payload_timeout_seconds,
+      payload_model, payload_model_fallback, payload_thinking, payload_timeout_seconds,
       execution_intent, execution_read_only,
       overlap_policy, run_timeout_ms, max_queued_dispatches, max_pending_approvals, max_trigger_fanout,
       delivery_mode, delivery_channel, delivery_to,
@@ -668,7 +681,7 @@ export function createJob(opts) {
       watchdog_timeout_min, watchdog_alert_channel, watchdog_alert_target,
       watchdog_self_destruct, watchdog_started_at,
       ttl_hours,
-      auth_profile,
+      auth_profile, auth_profile_fallback,
       delivery_opt_out_reason,
       origin,
       identity_principal, identity_run_as, identity_attestation, identity_ref,
@@ -684,7 +697,7 @@ export function createJob(opts) {
 ) VALUES (
       ?, ?, ?, ?, ?, ?, ?,
       ?, ?, ?, ?,
-      ?, ?, ?,
+      ?, ?, ?, ?,
       ?, ?,
       ?, ?, ?, ?, ?,
       ?, ?, ?,
@@ -698,7 +711,7 @@ export function createJob(opts) {
       ?, ?, ?,
       ?, ?, ?,
       ?, ?,
-      ?,
+      ?, ?,
       ?,
       ?,
       ?,
@@ -728,6 +741,7 @@ export function createJob(opts) {
     finalKind,
     normalized.payload_message,
     normalized.payload_model || null,
+    normalized.payload_model_fallback || null,
     normalized.payload_thinking || null,
     normalized.payload_timeout_seconds ?? 120,
     normalized.execution_intent || 'execute',
@@ -771,6 +785,7 @@ export function createJob(opts) {
     normalized.watchdog_started_at || null,
     normalized.ttl_hours || null,
     normalized.auth_profile || null,
+    normalized.auth_profile_fallback || null,
     normalized.delivery_opt_out_reason || null,
     normalized.origin || null,
     normalized.identity_principal || null,
@@ -830,7 +845,7 @@ export function updateJob(id, patch) {
   const allowed = [
     'name', 'enabled', 'schedule_kind', 'schedule_at', 'schedule_cron', 'schedule_tz',
     'session_target', 'agent_id', 'payload_kind', 'payload_message',
-    'payload_model', 'payload_thinking', 'payload_timeout_seconds',
+    'payload_model', 'payload_model_fallback', 'payload_thinking', 'payload_timeout_seconds',
     'execution_intent', 'execution_read_only',
     'overlap_policy', 'run_timeout_ms', 'max_queued_dispatches', 'max_pending_approvals', 'max_trigger_fanout',
     'delivery_mode', 'delivery_channel', 'delivery_to',
@@ -846,7 +861,7 @@ export function updateJob(id, patch) {
     'watchdog_timeout_min', 'watchdog_alert_channel', 'watchdog_alert_target',
     'watchdog_self_destruct', 'watchdog_started_at',
     'ttl_hours',
-    'auth_profile',
+    'auth_profile', 'auth_profile_fallback',
     'delivery_opt_out_reason',
     'origin',
     // v0.2 fields

package/migrate-consolidate.js

@@ -1,7 +1,7 @@
 /**
  * migrate-consolidate.js -- Single idempotent migration for existing databases
  *
- * Brings any DB from any prior version up to the current schema (v23).
+ * Brings any DB from any prior version up to the current schema (v24).
  * Fresh installs get everything from schema.sql directly -- this only
  * runs ALTER TABLEs needed for DBs created before the current schema.
  *
@@ -58,6 +58,7 @@ export default function migrateConsolidate() {
       'max_trigger_fanout', 'output_store_limit_bytes',
       'output_excerpt_limit_bytes', 'output_summary_limit_bytes',
       'output_offload_threshold_bytes', 'ttl_hours', 'auth_profile',
+      'payload_model_fallback', 'auth_profile_fallback',
       'schedule_kind', 'schedule_at', 'delivery_channel', 'delivery_to',
       'delivery_opt_out_reason', 'origin', 'parent_id', 'created_at',
       'updated_at', 'delete_after_run', 'next_run_at', 'last_run_at',
@@ -137,7 +138,7 @@ export default function migrateConsolidate() {
       `).get()?.cnt ?? 0)
     : 0;
   if (
-    current >= 23
+    current >= 24
     && hasLatestColumns
     && legacyAtIsoCount === 0
     && legacyPayloadMismatchCount === 0
@@ -345,6 +346,9 @@ export default function migrateConsolidate() {
     `ALTER TABLE runs ADD COLUMN credential_handoff_summary TEXT DEFAULT NULL`,
     // v23: child credential policy
     `ALTER TABLE jobs ADD COLUMN child_credential_policy TEXT DEFAULT NULL`,
+    // v24: explicit fallback model/auth selection
+    `ALTER TABLE jobs ADD COLUMN payload_model_fallback TEXT`,
+    `ALTER TABLE jobs ADD COLUMN auth_profile_fallback TEXT DEFAULT NULL`,
   ];
 
   for (const sql of alters) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "openclaw-scheduler",
-  "version": "0.2.9",
+  "version": "0.2.11",
   "description": "SQLite-backed job scheduler and workflow engine for OpenClaw agents",
   "type": "module",
   "main": "./index.js",
@@ -17,7 +17,7 @@
     "./package.json": "./package.json"
   },
   "engines": {
-    "node": ">=22"
+    "node": "22.x || 24.x || 26.x"
   },
   "scripts": {
     "start": "node dispatcher.js",
@@ -123,7 +123,7 @@
   },
   "homepage": "https://github.com/amittell/openclaw-scheduler#readme",
   "dependencies": {
-    "better-sqlite3": "^11.10.0",
+    "better-sqlite3": "^12.10.0",
     "croner": "^10.0.1"
   },
   "devDependencies": {

package/paths.js

@@ -1,5 +1,5 @@
 import { accessSync, constants, existsSync, mkdirSync } from 'fs';
-import { homedir } from 'os';
+import { homedir, tmpdir } from 'os';
 import { join, dirname } from 'path';
 import { fileURLToPath } from 'url';
 
@@ -25,6 +25,17 @@ function isNodeModulesInstall(moduleDir) {
   return /[\\/]node_modules[\\/](?:@[^\\/]+[\\/])?openclaw-scheduler(?:[\\/]|$)/.test(moduleDir);
 }
 
+function isUsableWorkingDirectory(dirPath) {
+  const candidate = firstNonEmpty(dirPath);
+  if (!candidate) return false;
+  try {
+    accessSync(candidate, constants.R_OK | constants.X_OK);
+    return true;
+  } catch {
+    return false;
+  }
+}
+
 export function resolveSchedulerHome(env = process.env) {
   const explicitHome = firstNonEmpty(env.SCHEDULER_HOME);
   if (explicitHome) return explicitHome;
@@ -62,6 +73,37 @@ export function resolveBackupStagingDir(env = process.env) {
   return join(resolveSchedulerHome(env), '.backup-staging');
 }
 
+export function resolveServiceWorkingDirectory(params = {}) {
+  const env = params.env || process.env;
+  const explicitPath = firstNonEmpty(params.explicitPath);
+  if (explicitPath) {
+    try {
+      mkdirSync(explicitPath, { recursive: true });
+      if (isUsableWorkingDirectory(explicitPath)) return explicitPath;
+    } catch {
+      // Fall through to install-root/scheduler-home heuristics.
+    }
+  }
+
+  const moduleDir = firstNonEmpty(params.moduleDir) || __dirname;
+  if (!isNodeModulesInstall(moduleDir) && isUsableWorkingDirectory(moduleDir)) {
+    return moduleDir;
+  }
+
+  const schedulerHome = resolveSchedulerHome(env);
+  try {
+    mkdirSync(schedulerHome, { recursive: true });
+    if (isUsableWorkingDirectory(schedulerHome)) return schedulerHome;
+  } catch {
+    // Fall through to other safe directories.
+  }
+
+  const home = firstNonEmpty(env.HOME) || homedir();
+  if (isUsableWorkingDirectory(home)) return home;
+
+  return tmpdir();
+}
+
 export function resolveArtifactsDir(params = {}) {
   const env = params.env || process.env;
   const explicit = firstNonEmpty(params.explicitPath) || firstNonEmpty(env.SCHEDULER_ARTIFACTS_DIR);

package/scheduler-schema.js

@@ -11,6 +11,7 @@ export const SCHEDULER_SCHEMAS = {
       payload_kind: { type: 'string', enum: ['systemEvent', 'agentTurn', 'shellCommand'] },
       payload_message: { type: 'string', maxLength: 100000 },
       payload_model: { type: 'string', nullable: true },
+      payload_model_fallback: { type: 'string', nullable: true, description: 'Optional fallback model override for a same-run retry after primary selection failure' },
       payload_thinking: { type: 'string', nullable: true },
       payload_timeout_seconds: { type: 'integer', min: 1, default: 120 },
       execution_intent: { type: 'string', enum: ['execute', 'plan'], default: 'execute' },
@@ -45,6 +46,7 @@ export const SCHEDULER_SCHEMAS = {
       output_offload_threshold_bytes: { type: 'integer', min: 128, default: 65536 },
       preferred_session_key: { type: 'string', nullable: true },
       auth_profile: { type: 'string', nullable: true, description: 'Auth profile override: null=default, "inherit"=main session profile, or "provider:label"' },
+      auth_profile_fallback: { type: 'string', nullable: true, description: 'Optional fallback auth profile for a same-run retry after primary selection failure' },
       delivery_opt_out_reason: { type: 'string', nullable: true, maxLength: 256 },
       delete_after_run: { type: 'boolean', default: false },
       run_now: { type: 'boolean', default: false, note: 'create-time convenience flag' },

package/schema.sql

@@ -1,4 +1,4 @@
--- OpenClaw Scheduler Schema (current: v1.7.0, schema version: 23)
+-- OpenClaw Scheduler Schema (current: v1.7.0, schema version: 24)
 -- Full standalone scheduler + message router
 
 -- ============================================================
@@ -23,6 +23,7 @@ CREATE TABLE IF NOT EXISTS jobs (
   payload_kind    TEXT NOT NULL,                      -- 'systemEvent' | 'agentTurn' | 'shellCommand'
   payload_message TEXT NOT NULL,
   payload_model   TEXT,
+  payload_model_fallback TEXT,
   payload_thinking TEXT,
   payload_timeout_seconds INTEGER DEFAULT 120,
   execution_intent TEXT NOT NULL DEFAULT 'execute',   -- 'execute' | 'plan'
@@ -91,6 +92,9 @@ CREATE TABLE IF NOT EXISTS jobs (
   -- Auth profile override (v16)
   auth_profile    TEXT DEFAULT NULL,                  -- null=default, 'inherit'=main session profile, or 'provider:label'
 
+  -- Fallback selection overrides (v24)
+  auth_profile_fallback TEXT DEFAULT NULL,            -- optional fallback auth profile used after primary selection failure
+
   -- Delivery opt-out (v19)
   delivery_opt_out_reason TEXT DEFAULT NULL,          -- set when delivery_mode='none' to explicitly skip delivery
 
@@ -478,3 +482,4 @@ INSERT OR IGNORE INTO schema_migrations (version) VALUES (20);
 INSERT OR IGNORE INTO schema_migrations (version) VALUES (21);
 INSERT OR IGNORE INTO schema_migrations (version) VALUES (22);
 INSERT OR IGNORE INTO schema_migrations (version) VALUES (23);
+INSERT OR IGNORE INTO schema_migrations (version) VALUES (24);