agentscope-ai/hiclaw v1.0.9 on GitHub

Highlights

What's New

Declarative Resource Management (hiclaw-controller) — Introduced hiclaw-controller for Kubernetes-style declarative resource management. Define Workers, Teams, and Humans as YAML resources and apply them with hiclaw apply. The controller watches for changes and reconciles state automatically — create a YAML, apply it, and the corresponding Docker containers, Matrix rooms, and gateway routes are provisioned without manual intervention. Three CRD types are supported:
- Worker: Full agent lifecycle (create, update, delete) with package imports, inline identity/soul/agents fields, and channelPolicy for fine-grained communication control.
- Team: Groups Workers under a Team Leader agent with shared goals, isolated storage, and automatic onboarding/offboarding.
- Human: Binds a Matrix user to specific Workers for direct human-agent interaction.
Worker Template Marketplace — New template-driven Worker creation flow via hiclaw-find-worker Manager skill. Instead of manually configuring Workers from scratch, the Manager searches a Nacos-backed template registry (default: market.hiclaw.io), recommends matching templates based on requirements, and imports them after admin confirmation. Supports package shorthand syntax, URL-encoded paths, and consistent behavior across market and registry sources. Workers can be bootstrapped from templates in one step: hiclaw apply -f my-worker.yaml with a package reference.
MCP Direct Proxy — Building on the API-to-MCP gateway introduced in v1.0.6, this release adds MCP direct proxy support for connecting existing MCP servers through the Higress gateway. While v1.0.6 converts HTTP APIs into MCP tools (API→MCP), MCP direct proxy allows proxying already-MCP-compatible servers (e.g., Sentry, Notion, Asana MCP servers) with auto-generated auth schemes and SSE/StreamableHTTP transport handling. Workers access proxied MCP tools through the same credential-zero-trust security model — real tokens never leave the gateway.
Team Leader Agent with DAG Orchestration — Introduced a dedicated Team Leader agent that coordinates Workers within a Team. The Team Leader manages hierarchical task delegation, project-based work organization, and DAG (Directed Acyclic Graph) execution — complex multi-step tasks are decomposed into dependency graphs and executed in parallel where possible. Each Team gets isolated storage and its own communication channels, enabling multi-team isolation.
Service Publishing via Worker Expose — Workers can now expose HTTP services through the Higress gateway using the expose field in Worker/Team CRDs. The controller auto-generates domain names (e.g., worker-alice-8080-local.hiclaw.io) and configures gateway routing, making worker-hosted web apps and APIs externally accessible without manual networking configuration.
CoPaw Runtime for Manager — Manager container now supports the CoPaw (Python-based) runtime as an alternative to the Node.js OpenClaw runtime, extending the multi-runtime strategy to the Manager role.
Default Embedding Model — Added default embedding model (text-embedding-v4) support for Manager and Worker, with OpenClaw→CoPaw bridge for cross-runtime compatibility.
Unified Skill Registry — Reworked Worker find-skills discovery with a unified hiclaw-find-skill wrapper supporting both skills.sh (HTTPS) and Nacos backends. The backend is auto-inferred from HICLAW_SKILLS_API_URL, with Nacos as the new default (nacos://market.hiclaw.io/public). Installed @nacos-group/cli in Worker images for direct Nacos workflows.
OpenClaw CMS Plugin Integration — Manager now integrates openclaw-cms-plugin install and runtime wiring, extending the agent's content management capabilities.
Docker Network Aliases — Replaced ExtraHosts IP injection with Docker network aliases, simplifying container networking and improving reliability across restarts.
hiclawMode Gateway Config — Switched from mergeConsecutiveMessages to hiclawMode in Higress gateway init config, providing a unified HiClaw-specific configuration mode.
MiniMax M2.7 Default Model — Upgraded MiniMax default model to M2.7 for improved performance.
Interactive Version Selection — Install scripts now prompt users to select a specific version during installation.
Post-Install Verification — New verification script runs after installation to confirm all components are healthy.
Multi-Phase Collaboration Protocol — Added multi-phase collaboration protocol to task-lifecycle, improving coordination between Manager and Workers on complex tasks.

Bug Fixes

Fixed stale local declarative config after delete in embedded mode — start-mc-mirror.sh now mirrors hiclaw-config/ with --remove, so deleting a resource removes the corresponding local watched YAML.
Fixed hiclaw apply silently ignoring all resources — loadResources() parsing bug where trimmed lines could never match indented name prefix.
Fixed stuck Phase="Pending" resources after failed package resolution — refresh object before error-path status updates and treat pending-with-error as retriable.
Fixed concurrent route authorization in gateway — added optimistic locking retry for simultaneous Worker route registrations.
Fixed cloud worker OSS access security — STS inline policy restricts tokens to agents/{worker}/* and shared/* prefixes.
Fixed Docker container escape risk — added hiclaw-docker-proxy to restrict container access to Docker daemon.
Fixed create-worker.sh robustness — added Matrix room dedup check and failure notification.
Fixed state.json registration — enforce registration for all task types, add idle-stop safety.
Fixed Element Web CSP violation — external JS file instead of inline script.
Fixed auto-refresh STS credentials for all mc invocations via mc-wrapper.sh.
Fixed CoPaw STS credential refresh in Python sync loops.
Fixed cloud runtime detection — explicit HICLAW_RUNTIME=aliyun in Dockerfile.aliyun.
Fixed reliable welcome message delivery with proper runtime detection.
Fixed Worker import: deploy cron jobs from zip, add install hints, update CLI usage.
Fixed reinstall bug in PowerShell script; clean up docker-proxy and hiclaw-net on reinstall.
Fixed Worker containers not added to hiclaw-net network.
Fixed install UX: friendly labels instead of env var names in upgrade prompts.
Fixed unused openclaw hooks config causing startup failure.
Fixed shell script safety in Manager init scripts.
Fixed explicit Matrix room join with retry before sending welcome message.
Fixed worker template package path encoding (URL-encoding).
Fixed controller preflight with lightweight agentspec checks.
Fixed hiclaw-find-worker reading local ~/.nacos-cli/default.conf overriding defaults.

新增功能

声明式资源管理 (hiclaw-controller) — 引入 Kubernetes 风格的声明式资源管理。通过 YAML 定义 Worker、Team 和 Human 资源，使用 hiclaw apply 一键应用。Controller 自动监听变更并协调状态 — 创建 YAML、apply 之后，对应的 Docker 容器、Matrix 房间和网关路由自动就绪，无需手动干预。支持三种 CRD 类型：
- Worker：完整的 Agent 生命周期管理，支持包导入、内联 identity/soul/agents 字段、channelPolicy 通信策略。
- Team：将 Worker 组织在 Team Leader 下，共享目标、隔离存储、自动成员管理。
- Human：将 Matrix 用户绑定到特定 Worker，实现人与 Agent 的直接交互。
Worker 模板市场 — 新增基于模板的 Worker 创建流程。Manager 通过 hiclaw-find-worker 技能搜索 Nacos 模板注册中心（默认：market.hiclaw.io），根据需求推荐匹配模板，经管理员确认后一键导入。支持包简写语法、URL 编码路径，market 和 registry 场景使用一致的导入方式。通过 YAML 中的 package 引用即可从模板引导 Worker：hiclaw apply -f my-worker.yaml。
MCP 直接代理 — 在 v1.0.6 的 API→MCP 转换能力基础上，新增 MCP 直接代理支持。v1.0.6 将 HTTP API 转换为 MCP 工具（API→MCP），而 MCP 直接代理则允许代理已有的 MCP 服务器（如 Sentry、Notion、Asana 的 MCP 服务），自动处理认证方案和 SSE/StreamableHTTP 传输协议。Worker 通过相同的凭证零信任安全模型访问代理后的 MCP 工具 — 真实 Token 永远不会离开网关。
Team Leader Agent 与 DAG 编排 — 引入专门的 Team Leader Agent 协调 Team 内的 Worker。Team Leader 管理层级化任务委派、基于项目的工作组织，以及 DAG（有向无环图）执行 — 复杂的多步骤任务被分解为依赖图并在可能时并行执行。每个 Team 拥有隔离的存储和独立的通信通道，实现多团队隔离。
Worker 服务发布 (Expose) — Worker 现在可通过 Worker/Team CRD 的 expose 字段将 HTTP 服务通过 Higress 网关对外暴露。Controller 自动生成域名（如 worker-alice-8080-local.hiclaw.io）并配置网关路由，无需手动网络配置即可将 Worker 托管的 Web 应用和 API 对外发布。
Manager CoPaw 运行时 — Manager 容器现在支持 CoPaw（Python）运行时作为 Node.js OpenClaw 运行时的替代方案。
默认 Embedding 模型 — 为 Manager 和 Worker 新增默认 embedding 模型（text-embedding-v4）支持，包含 OpenClaw→CoPaw 跨运行时桥接。
统一技能注册中心 — 重构 Worker find-skills 发现链路，引入统一的 hiclaw-find-skill wrapper，支持 skills.sh（HTTPS）和 Nacos 双后端，默认使用 Nacos（nacos://market.hiclaw.io/public）。在 Worker 镜像中安装 @nacos-group/cli 支持直接 Nacos 工作流。
OpenClaw CMS 插件集成 — Manager 现在集成 openclaw-cms-plugin 的安装和运行时接入。
Docker 网络别名 — 用 Docker 网络别名替代 ExtraHosts IP 注入，简化容器网络配置。
hiclawMode 网关配置 — Higress 网关从 mergeConsecutiveMessages 切换为 hiclawMode 统一配置。
MiniMax M2.7 默认模型 — MiniMax 默认模型升级至 M2.7。
交互式版本选择 — 安装脚本支持选择特定版本。
安装后验证 — 新增验证脚本确认所有组件健康。
多阶段协作协议 — 在 task-lifecycle 中新增多阶段协作协议。

Bug 修复

修复 embedded 模式删除后本地声明式配置残留问题。
修复 hiclaw apply 静默忽略所有资源的解析 bug。
修复包解析失败后资源卡在 Phase="Pending" 状态。
修复网关并发路由授权竞态条件。
修复云端 Worker OSS 访问安全 — STS 内联策略限制令牌权限范围。
修复 Docker 容器逃逸风险 — 新增 hiclaw-docker-proxy。
修复 create-worker.sh 健壮性 — Matrix 房间去重和失败通知。
修复 state.json 注册 — 强制所有任务类型注册，空闲停止安全检查。
修复 Element Web CSP 违规 — 外部 JS 文件替代内联脚本。
修复 mc 调用 STS 凭证自动刷新。
修复 CoPaw Python 同步循环 STS 凭证刷新。
修复云端运行时检测 — 显式设置 HICLAW_RUNTIME=aliyun。
修复云端部署欢迎消息可靠投递。
修复 Worker 导入：cron job 部署、安装提示、CLI 用法。
修复 PowerShell 重装 bug；重装时清理 docker-proxy 和 hiclaw-net。
修复 Worker 容器未加入 hiclaw-net 网络。
修复安装体验：友好标签替代环境变量名。
修复未使用的 openclaw hooks 配置导致启动失败。
修复 Manager 初始化脚本 shell 安全问题。
修复 Matrix 房间加入重试防止竞态条件。
修复 Worker 模板包路径 URL 编码。
修复 hiclaw-find-worker 本地 Nacos profile 覆盖默认配置。
feat: add Team, Human, and declarative management (hiclaw-controller) (fd3b413)
feat(controller): support inline identity/soul/agents fields for Worker config (e21d489)
feat(mcp): add mcp-proxy support for proxying existing MCP servers (61300b7)
feat(team-leader): add project management, DAG orchestration, and isolated team storage (d6dc90e)
feat(controller): add service publishing via Worker expose field (09e09df)
feat(manager): add CoPaw runtime support for Manager container (077538d)
feat: add channelPolicy to Worker/Team CRs and enable team peer mentions (5ab47b1)
feat(manager): add default model from environment variable (7f7e7c2)
feat(memory): add default embedding model support for Manager and Worker (0042e55)
feat(manager): add hiclaw-find-worker template import workflow (bbef1a4)
Unify skill registry config and fix Nacos-backed skill discovery (cb03e61)
feat(manager): integrate openclaw-cms-plugin install and runtime wiring (1b5a5d8)
feat(init): switch from mergeConsecutiveMessages to hiclawMode (81eb6ca)
feat: upgrade MiniMax default model to M2.7 (f058051)
feat(install): add interactive version selection prompt (5c11316)
feat(install): add post-install verification script (ce4bfe2)
fix(gateway): add optimistic locking retry for concurrent route authorization (2565e8c)
fix(controller): propagate package resolve errors in handleUpdate (8256f3d)
fix(controller): deploy package to MinIO atomically during worker update (d9b1416)
fix(worker): fix openclaw.json merge and prevent gateway exit killing container (38b71d8)
fix(worker): merge openclaw.json on pull instead of blind overwrite (f9bb742)
fix(security): restrict cloud worker OSS access with STS inline policy (85e61e9)
fix(security): add Docker API proxy to prevent container escape (e97e821)
fix(worker): improve create-worker robustness with room dedup and failure notification (8bfe39f)
fix(manager): enforce state.json registration for all task types and add idle-stop safety (fa223d2)
fix(element-web): use external JS file for browser bypass to comply with CSP (d8fd9c4)
fix(cloud): wrap mc binary for automatic STS credential refresh (9e2f2e5)
fix(copaw): refresh STS credentials in sync loops to prevent MinIO failure (5a825e6)
fix(cloud): reliable runtime detection and welcome message delivery (c6fe492)
fix(import): deploy cron jobs from zip to worker (e5fd638)
fix(import): add install command hints when HiClaw is not found (b871a10)
fix: update migrate skill import command with correct CLI usage and download URLs (ff8589b)
fix: Fix the reinstall bug in Powershell script (653c7f7)
fix(install): clean up docker-proxy container and hiclaw-net network on reinstall (5fff4bb)
fix: add Worker containers to hiclaw-net network for service connectivity (6431f66)
fix(install): show friendly labels instead of env var names in upgrade prompts (a1d985f)
fix(config): remove unused openclaw hooks config to prevent startup failure (1c73772)
fix(manager): improve shell script safety in init scripts (3f8603a)
fix: add explicit Matrix room join with retry before sending welcome message (0569d1a)
fix: add multi-phase collaboration protocol to task-lifecycle (d9393fa)
fix(controller): support HICLAW_NACOS_USERNAME/PASSWORD as default Nacos credentials (ccf242c)
fix(manager): reply to admin before greeting worker in post-creation (3aa697a)
fix(manager): prevent zombie process from welcome message background task (496)
fix(test): preserve explicit openclaw runtime in generated YAML (488)
feat: delete worker containers on resource cleanup instead of just stopping (486)
refactor(network): replace ExtraHosts IP injection with Docker network aliases (0eb635d)
refactor: unify DM room creation into manager agent startup (0569d1a)
feat: add integration guide for HiClaw with Alibaba Cloud CMS 2.0 (527)
docs: add Japanese README (375)

Docker Images

Multi-architecture images (amd64 + arm64):

# Manager
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-manager:v1.0.9

# Worker
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-worker:v1.0.9

# Docker Proxy
docker pull higress-registry.cn-hangzhou.cr.aliyuncs.com/higress/hiclaw-docker-proxy:v1.0.9

Quick Start

macOS / Linux

bash <(curl -fsSL https://raw.githubusercontent.com/agentscope-ai/HiClaw/main/install/hiclaw-install.sh)

Windows (PowerShell 7+)

Set-ExecutionPolicy Bypass -Scope Process -Force; =New-Object Net.WebClient; .Encoding=[Text.Encoding]::UTF8; iex .DownloadString('https://higress.ai/hiclaw/install.ps1')

Documentation

For more details, see the installation guide.

What's Changed

chore: archive changelog for v1.0.8 by @github-actions[bot] in #379
fix(manager): improve shell script safety in init scripts by @googs1025 in #377
feat(install): add post-install verification script by @googs1025 in #356
feat: upgrade MiniMax default model to M2.7 by @octo-patch in #347
docs: add Japanese README by @eltociear in #375
fix(ci): improve git-collab test reliability by @johnlanni in #380
fix: add multi-phase collaboration protocol to task-lifecycle by @johnlanni in #383
fix(ci): add nudge mechanism to test wait functions by @johnlanni in #384
feat(init): switch from mergeConsecutiveMessages to hiclawMode by @johnlanni in #370
fix(security): add Docker API proxy to prevent container escape by @johnlanni in #385
fix(config): remove unused openclaw hooks config to prevent startup failure by @johnlanni in #394
fix(install): show friendly labels instead of env var names in upgrade prompts by @johnlanni in #395
docs: add Podman Engine version requirement for Mac M-series compatibility by @johnlanni in #398
docs(faq): add Higress console config for Worker model switching by @johnlanni in #408
fix: add Worker containers to hiclaw-net network for service connectivity by @johnlanni in #416
docs(manager): sync SOUL.md skill list with TOOLS.md by @googs1025 in #419
feat(install): add interactive version selection prompt by @googs1025 in #413
fix(copaw): refresh STS credentials in sync loops to prevent MinIO failure by @Jing-ze in #402
refactor: unify DM room creation into manager agent startup by @johnlanni in #426
Replace WeChat group QR code image by @max-wc in #425
fix(install): clean up docker-proxy container and hiclaw-net network on reinstall by @googs1025 in #424
fix(cloud): wrap mc binary for automatic STS credential refresh by @Jing-ze in #418
fix(security): restrict cloud worker OSS access with STS inline policy by @Jing-ze in #420
fix: Fix the reinstall bug in Powershell script by @CH3CHO in #434
fix(cloud): reliable runtime detection and welcome message delivery by @Jing-ze in #421
fix(element-web): use external JS file for browser bypass to comply with CSP by @Jing-ze in #430
fix(worker): add writable OSS paths to openclaw worker AGENTS.md by @Jing-ze in #433
feat(manager): integrate openclaw-cms-plugin install and runtime wiring by @fangxiu-wf in #411
Fix typo in prerequisites section of README.zh-CN.md by @kerwin612 in #441
fix(docs): use proper em dash in Chinese README by @kerwin612 in #442
refactor(network): replace ExtraHosts IP injection with Docker network aliases by @johnlanni in #448
feat: add Team, Human, and declarative management (hiclaw-controller) by @johnlanni in #437
docs: update import-worker guides and team design doc for PR #437 by @johnlanni in #455
fix(manager): enforce state.json registration for all task types and add idle-stop safety by @googs1025 in #439
docs: update canonical GitHub issue links by @Jholly2008 in #431
fix(import): add install command hints when HiClaw is not found by @johnlanni in #456
fix: update migrate skill import command with correct CLI usage and download URLs by @johnlanni in #458
fix(worker): improve create-worker robustness with room dedup and failure notification by @johnlanni in #459
fix(import): deploy cron jobs from zip to worker by @johnlanni in #461
docs: add declarative resource management guide by @johnlanni in #463
docs: clarify HTTP API port exposure in resource management guide by @johnlanni in #464
feat(controller): support inline identity/soul/agents fields for Worker config by @johnlanni in #466
docs: add identity/soul/agents inline fields for Worker configuration by @johnlanni in #465
extract Nacos address from URI and add preflight validation by @luoxiner in #460
docs: add Team leader/worker inline fields and AGENTS.md assembly docs by @johnlanni in #471
feat(mcp): add mcp-proxy support for proxying existing MCP servers by @johnlanni in #479
fix(gateway): add optimistic locking retry for concurrent route authorization by @johnlanni in #480
docs: fix script paths for hiclaw-apply.sh and hiclaw-import.sh by @johnlanni in #482
docs(changelog): rewrite current.md with all commits since v1.0.8 archive by @johnlanni in #483
fix(test): wait for pending messages before create-worker test by @johnlanni in #481
fix: auto-join admin into Matrix rooms after invite by @johnlanni in #477
docs: update PowerShell version requirement from 5.1+ to 7.0+ by @nillikechatchat in #485
fix(cli): preserve explicit openclaw runtime in generated YAML by @johnlanni in #488
fix(test): wait for bob-specific reply in test-06-multi-worker by @johnlanni in #489
feat: delete worker containers on resource cleanup instead of just stopping by @johnlanni in #486
feat(manager): add default model from environment variable by @cck5 in #438
feat: add channelPolicy to Worker/Team CRs and enable team peer mentions by @johnlanni in #495
fix(manager): prevent zombie process from welcome message background task by @johnlanni in #496
Replace WeChat group QR code image by @max-wc in #500
fix(manager): reply to admin before greeting worker in post-creation by @johnlanni in #498
fix(controller): propagate package resolve errors in handleUpdate by @johnlanni in #501
feat(memory): add default embedding model support for Manager and Worker by @Jing-ze in #376
fix(worker): merge openclaw.json on pull instead of blind overwrite by @johnlanni in #519
fix(manager): remove stale local hiclaw-config files after delete by @codesssss in #525
fix(install): create /tmp/import before apply copy by @codesssss in #524
fix(controller): log team delete cleanup failures by @codesssss in #511
feat(manager): add CoPaw runtime support for Manager container by @maplefeng-a in #509
feat: add integration guide for HiClaw with Alibaba Cloud CMS 2.0 by @steverao in #527
Unify skill registry config and fix Nacos-backed skill discovery by @luoxiner in #494
feat(manager): add hiclaw-find-worker template import workflow by @luoxiner in #502
Update OpenClaw CMS plugin URL to version 0.1.2 in Dockerfiles by @steverao in #532
fix(worker): fix openclaw.json merge and prevent gateway exit killing container by @johnlanni in #534
fix(controller): deploy package to MinIO atomically during worker update by @johnlanni in #535
feat(team-leader): add project management, DAG orchestration, and isolated team storage by @johnlanni in #520
feat(controller): add service publishing via Worker expose field by @johnlanni in #521

New Contributors

@octo-patch made their first contribution in #347
@eltociear made their first contribution in #375
@fangxiu-wf made their first contribution in #411
@kerwin612 made their first contribution in #441
@Jholly2008 made their first contribution in #431
@cck5 made their first contribution in #438
@codesssss made their first contribution in #525
@maplefeng-a made their first contribution in #509
@steverao made their first contribution in #527

Full Changelog: v1.0.8...v1.0.9