v0.3.14

OpenViking v0.3.14

本次 v0.3.14 主要聚焦在可观测性、多租户插件适配、检索/上传体验和管理能力补强，同时修复了一批 OpenClaw、OpenCode、CLI 与 Bot 侧的易用性问题。整体上，这是一个偏工程完善和接入体验提升的版本。

Highlights

• 可观测性增强。OTLP 导出现在支持自定义 headers，可同时覆盖 traces、logs 和 metrics 场景，便于直连需要额外鉴权头或 gRPC metadata 的观测后端。
• 上传与资源导入更贴近真实仓库行为。本地目录扫描和上传现在会遵循根目录及子目录中的 .gitignore，减少无关文件、构建产物和临时文件被误导入。
• 检索能力补强。search 和 find 现在支持一次传入多个目标 URI，适合跨目录、跨仓库范围检索。
• 多租户与插件链路继续打磨。OpenClaw 插件进一步明确 agent_prefix 仅作为前缀使用；OpenCode memory plugin 也补上了 tenant headers 透传，减少多租户场景下的接入歧义。
• 管理侧新增 agent namespace 发现能力。服务端、CLI 和文档同步支持列出指定 account 下已存在的 agent namespace，方便排查和管理。

Upgrade Notes

• 如果你在 OTLP 后端接入中依赖额外认证信息，现在可以通过 headers 统一配置到 traces、logs 和 metrics exporter。
  • gRPC 模式下会作为 metadata 发送，header key 建议使用小写。
  • HTTP 模式下会作为普通请求头发送。
• 如果你通过本地目录上传资源，v0.3.14 起会默认遵循根目录和嵌套目录的 .gitignore 规则；此前被导入的临时文件、生成文件、日志文件，升级后可能会被自动过滤。
• 如果你在 OpenClaw 插件里使用 agent_prefix，现在它只表示“前缀”，不会再被当成完整 agent 标识处理；相关文档中的 agentId 也已统一迁移为 agent_prefix。
• 如果你在管理侧需要查看某个 account 下有哪些 agent 空间，现在可以直接使用新增的 admin API / CLI 能力，而不必手动遍历存储。

What's Changed

Observability

• OTLP 导出支持 headers 参数，可用于透传自定义鉴权头或 gRPC metadata，覆盖 traces、logs、metrics 三条链路。
  #1805 by @baojun-zhang
• 补充了 gRPC metadata 的使用说明和相关文档示例，方便对接需要额外 header 的观测后端。
  #1807 by @baojun-zhang

Search and Upload

• search / find 支持多个 target URI，提升跨范围检索场景的可用性。
  #1808 by @MDNDDD
• 本地目录上传会遵循根目录及嵌套目录中的 .gitignore，并保留标准 Git 语义，包括反向规则。
  #1812 by @sentisso

OpenClaw / OpenCode / Memory

• OpenClaw 插件修复 agent_prefix 语义，确保它只作为前缀参与命名，不再被误当作完整 agent 标识。
  #1809 by @qin-ptr
• 多租户文档继续收口，完成 OpenClaw Plugin 2.0 章节中 agentId → agent_prefix 的统一。
  #1818 by @r266-tech
• OpenCode memory plugin 修复 tenant headers 透传问题，多租户场景下请求上下文更完整。
  #1820 by @btspoony
• oc2ov 远程适配进一步完善，测试链路对异常返回与超时场景更稳健。
  #1815 by @kaisongli

CLI / Bot / Skill / Docs

• CLI 在解析失败时会打印 raw content，便于排障和理解原始返回内容。
  #1819 by @MaojiaSheng
• Skill / Bot 相关问题修复，包括 skill PR 流程问题、文档中的失效配置清理，以及 DeepSeek API 适配修正。
  #1794 by @yeshion23333

Admin

• 新增 agent namespace 列表能力，服务端 admin API、CLI 和文档同步支持，便于发现和管理 account 下已有的 agent 空间。
  #1821 by @qin-ctx

New Contributors

• @btspoony 在 #1820 完成了首次贡献

Full Changelog: v0.3.13...v0.3.14

What's Changed

• feat(observability): support header param while OTLP export by @baojun-zhang in #1805
• doc(observability): add grpc metadata guide && format test code by @baojun-zhang in #1807
• fix(openclaw): treat agent_prefix as prefix only by @qin-ptr in #1809
• fix: support multiple target URIs in search and find by @MDNDDD in #1808
• Fix/oc2ov remote ov adapt by @kaisongli in #1815
• fix: print raw content when parse failed in CLI by @MaojiaSheng in #1819
• feat(upload): respect root and nested .gitignore during filtering by @sentisso in #1812
• fix(skill): Fix PR bug, delete invalid config in doc, fix deepseek API for bot by @yeshion23333 in #1794
• docs(multi-tenant): finish agentId→agent_prefix rename in OpenClaw Plugin 2.0 section by @r266-tech in #1818
• fix(memory): include tenant headers in opencode plugin by @btspoony in #1820
• feat(admin): list agent namespaces by @qin-ctx in #1821

New Contributors

• @btspoony made their first contribution in #1820

Full Changelog: v0.3.13...v0.3.14

v0.3.13

OpenViking v0.3.13 Release Notes / 发布说明

Release date / 发布日期: 2026-04-29

Full Changelog / 完整变更记录: v0.3.12...v0.3.13

Commit range / 提交范围: v0.3.12...v0.3.13 (57 commits)

---

中文

版本概览

OpenViking v0.3.13 是一个面向服务化、Agent 集成和生产可观测性的增强版本。它在 openviking-server 内置了标准 MCP HTTP 端点，新增用户级 skill 隐私配置与版本管理，补齐 Prometheus / OpenTelemetry 配置入口，并进一步收紧 API 错误、URI 校验和 bot 工具沙箱边界。

升级时最需要关注两点：encryption.api_key_hashing.enabled 现在需要显式配置；OpenClaw 插件移除本地模式，并把 agentId 迁移为 agent_prefix。

主要更新

• 内置 MCP 端点：openviking-server 现在在同一进程、同一端口暴露 /mcp，复用 REST API 的 API-Key 鉴权，提供 search、read、list、store、add_resource、grep、glob、forget、health 9 个工具。
• 用户级隐私配置：新增 /api/v1/privacy-configs API 和 openviking privacy CLI，用于按 category + target_key 保存、轮换、回滚 skill 等敏感配置。
• 可观测性升级：新增统一 server.observability 配置，支持 Prometheus /metrics，并为 metrics、traces、logs 提供 OpenTelemetry 导出配置。
• 检索与 embedding 可调优：新增 embedding.text_source、embedding.max_input_tokens、retrieval.hotness_alpha、retrieval.score_propagation_alpha 等配置，便于控制向量化内容和层级检索排序。
• API 与错误语义收敛：搜索空 query 会被提前拒绝；公开 API 的 viking:// URI 校验更严格；资源处理、损坏 zip、HTTP 客户端等错误统一进入标准 error envelope。
• Docker 与初始化体验：Docker 镜像把持久化状态收敛到 /app/.openviking，缺少 ov.conf 时会保持容器存活并在任意路由返回 503 初始化指引。
• 安全修复：bot image tool 禁止读取沙箱外宿主机文件；health check 在无凭证场景下跳过身份解析；API key 字段哈希从文件层加密中拆分为独立开关。

新功能用法

连接内置 MCP 端点

OpenViking MCP 端点位于 http://<server>:1933/mcp。大多数 MCP 客户端可使用如下配置：

{
  "mcpServers": {
    "openviking": {
      "url": "https://your-server.com/mcp",
      "headers": {
        "Authorization": "Bearer your-api-key-here"
      }
    }
  }
}

Claude Code 需要指定 HTTP transport：

claude mcp add --transport http openviking \
  https://your-server.com/mcp \
  --header "Authorization: Bearer your-api-key-here"

管理 skill 隐私配置

隐私配置适合保存 skill 的 api_key、base_url 等敏感字段，并支持版本查询与回滚。

openviking privacy categories
openviking privacy list skill

openviking privacy upsert skill byted-viking-search-knowledgebase \
  --values-json '{"api_key":"secret-2","base_url":"https://example.com"}'

openviking privacy versions skill byted-viking-search-knowledgebase
openviking privacy activate skill byted-viking-search-knowledgebase 2

也可以直接调用 HTTP API：

curl -X POST "http://localhost:1933/api/v1/privacy-configs/skill/byted-viking-search-knowledgebase" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: your-key" \
  -H "X-OpenViking-Account: default" \
  -H "X-OpenViking-User: alice" \
  -d '{
    "values": {
      "api_key": "secret-2",
      "base_url": "https://example.com"
    },
    "change_reason": "rotate key"
  }'

开启 Prometheus metrics 与 OpenTelemetry

最小 Prometheus 配置：

{
  "server": {
    "observability": {
      "metrics": {
        "enabled": true
      }
    }
  }
}

同时配置 OTel 导出：

{
  "server": {
    "observability": {
      "metrics": {
        "enabled": true,
        "exporters": {
          "prometheus": {"enabled": true},
          "otel": {
            "enabled": true,
            "protocol": "grpc",
            "endpoint": "otel-collector:4317",
            "service_name": "openviking-server",
            "export_interval_ms": 10000
          }
        }
      },
      "traces": {
        "enabled": true,
        "protocol": "grpc",
        "endpoint": "otel-collector:4317",
        "service_name": "openviking-server"
      },
      "logs": {
        "enabled": true,
        "protocol": "grpc",
        "endpoint": "otel-collector:4317",
        "service_name": "openviking-server"
      }
    }
  }
}

调整 embedding 输入和检索打分

embedding.text_source 控制文本资源向量化使用原文还是摘要；retrieval 控制最终召回分数如何混合 hotness 与层级传播分数。

{
  "embedding": {
    "text_source": "content_only",
    "max_input_tokens": 4096,
    "dense": {
      "provider": "volcengine",
      "model": "doubao-embedding-vision-251215",
      "dimension": 1024,
      "input": "multimodal"
    }
  },
  "retrieval": {
    "hotness_alpha": 0.0,
    "score_propagation_alpha": 0.5
  }
}

如果希望排序严格反映向量相似度，保持 hotness_alpha: 0.0。

配置 API key 字段哈希

v0.3.13 将文件层加密和 API key 字段哈希拆成两个开关。若你依赖旧行为，需要显式开启：

{
  "encryption": {
    "enabled": true,
    "api_key_hashing": {
      "enabled": true
    }
  }
}

默认 api_key_hashing.enabled 为 false：API key 以明文存在 JSON 中；如果 encryption.enabled 为 true，整个文件仍由 AES-GCM 加密保护。

体验与兼容性改进

• openviking-server init 和 doctor 文档与流程更清晰，覆盖 OpenAI Codex、Kimi、GLM、Volcengine 和 Ollama 等配置路径。
• Docker 启动推荐挂载 ~/.openviking:/app/.openviking；无 volume 的托管平台可用 OPENVIKING_CONF_CONTENT 注入完整 ov.conf。
• storage.agfs.queue_db_path 可把 QueueFS SQLite 数据库放到 workspace 以外的位置，适合 workspace 卷不支持 SQLite 的环境。
• S3 endpoint 支持只填写 hostname，并根据 use_ssl 自动补 https:// 或 http://；S3 key normalization 的字符集合可配置。
• 内容写入后更快对读取可见；增量 add-resource 会保留临时树以完成 top-down diff 和索引同步。
• session archive 中新增 memory_diff.json，便于审计一次记忆抽取带来的新增、更新与删除。
• OpenClaw 插件仅保留远程模式，不再启动本地 OpenViking 子进程；agentId 迁移为 agent_prefix，recallTokenBudget 迁移为 recallMaxInjectedChars。

修复

• 修复 skill 索引使用非 canonical URI 的问题。
• 修复资源处理错误、损坏 zip、HTTP 客户端错误等场景下的 error envelope 与 HTTP 状态码一致性。
• 修复 health check 在无认证请求下触发身份解析的问题。
• 修复 content write 后立即读取不可见的问题。
• 修复 public URI 校验过宽、空搜索 query 未提前拒绝、缺失 grep URI 返回状态不一致等 API 边界问题。
• 修复 S3 endpoint 缺少 scheme、S3 key normalization 字符不可配置、ragfs Python 绑定加载范围过宽等存储问题。
• 修复 OpenClaw 插件自动召回预算、租户 header 合成、超时容忍、配置迁移和若干测试稳定性问题。
• 修复 bot 图片工具可访问沙箱外宿主机文件的安全问题。

文档、测试与安全

• 新增隐私配置 API 文档、MCP 集成指南、Agent 安装 SOP、可观测性与 operation telemetry 文档。
• 从 GitHub Releases 自动生成中英文 changelog，并修复文档工作流与自定义域名资源路径。
• 补充 MCP endpoint、privacy config、HTTP error mapping、Prometheus metrics、OpenTelemetry middleware、URI validation、content write、VikingFS grep、setup wizard 等测试。
• 更新社区二维码、配置示例、README 多语言文档和 OpenClaw plugin 安装说明。
• 安全侧重点包括 bot sandbox 文件访问限制、API key 字段哈希显式化、公开 URI 校验和 API 错误信息收敛。

---

English

Overview

OpenViking v0.3.13 focuses on server integrations, agent workflows, and production observability. The release adds a native MCP HTTP endpoint to openviking-server, introduces user-level privacy config versioning for skills, expands Prometheus / OpenTelemetry support, and tightens API error handling, URI validation, and bot sandbox boundaries.

The most important upgrade notes are: encryption.api_key_hashing.enabled must now be configured explicitly, and the OpenClaw plugin is remote-only with agentId migrated to agent_prefix.

Highlights

• Native MCP endpoint: openviking-server now exposes /mcp in the same process and port as the REST API, reusing API-Key auth and providing 9 tools: search, read, list, store, add_resource, grep, glob, forget, and health.
• User-level privacy configs: new /api/v1/privacy-configs APIs and openviking privacy CLI commands manage sensitive skill settings by category + target_key, with version history and rollback.
• Observability upgrade: a unified server.observability config enables Prometheus /metrics and OpenTelemetry exporters for metrics, traces, and logs.
• Retrieval and embedding tuning: new embedding.text_source, embedding.max_input_tokens, retrieval.hotness_alpha, and retrieval.score_propagation_alpha controls make vectorization and hierarchical ranking more configurable.
• API and error semantics: empty search queries are rejected early, public viking:// URI validation is stricter, and processing / zip / HTTP client errors now use standard error envelopes.
• Docker and setup experience: Docker state is consolidated under /app/.openviking; when ov.conf is missing, the container stays alive and serves a 503 JSON initialization guide on every route.
• Security fixes: the bot image tool can no longer read host files outside the sandbox; health checks avoid identity resolution when unauthenticated; API key hashing is now an explicit switch separate from file encryption.

New Feature Usage

Connect to the built-in MCP endpoint

The OpenViking MCP endpoint is available at http://<server>:1933/mcp. Most MCP clients can use:

{
  "mcpServers": {
    "openviking": {
      "url": "https://your-server.com/mcp",
      "headers": {
        "Authorization": "Bearer your-api-key-here"
      }
    }
  }
}

Claude Code requires HTTP transport:

claude mcp add --transport http openviking \
  https://your-server.com/mcp \
  --header "Authorization: Bearer your-api-key-here"

Manage skill privacy configs

Privacy configs are useful for skill fields such as api_key and base_url, with version listing and rollback.

openviking privacy categories
openviking privacy list skill

openviking privacy upsert skill byted-viking-search-knowledgebase \
  --values-json '{"api_key":"secret-2","base_url":"https://example.com"}'

openviking privacy versions skill byted-viking-search-knowledgebase
openviking privacy activate skill byted-viking-search-knowledgebase 2

The same operation is available through HTTP:

curl -X POST "http://localhost:1933/api/v1/privacy-configs/skill/byted-viking-search-knowledgebase" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: your-key" \
  -H "X-OpenViking-Account: default" \
  -H "X-OpenViking-User: alice" \
  -d '{
    "values": {
      "api_key": "secret-2",
      "base_url": "https://example.com"
    },
    "change_reason": "rotate key"
  }'

Enable Prometheus metrics and OpenTelemetry

Minimal Prometheus config:

{
  "server": {
    "observability": {
      "metrics": {
        "enabled": true
      }
...

v0.3.12

What's Changed

• feat(semantic): add output_language_override to pin summary/overview language by @0xble in #1607
• docs(bot): sync gateway config example with #1640 security defaults by @r266-tech in #1649
• fix(parser): validate feishu config limits by @duyua9 in #1645
• fix(code-hosting): recognize SSH repository hosts with userinfo by @officialasishkumar in #1375
• docs(design): sync §4.6 role_id rules with #1643 passthrough behavior by @r266-tech in #1657
• feat: 补充百炼记忆库 LoCoMo benchmark 评测脚本 by @yangxinxin-7 in #1664
• docs(contributing): add maintainer routing map by @yeyitech in #1519
• Revert "feat: 补充百炼记忆库 LoCoMo benchmark 评测脚本" by @yangxinxin-7 in #1665
• [fix] Fix/oc2ov test stability by @kaisongli in #1669
• fix(server): map AGFS URI errors by @euyua9 in #1671
• feat(git): added azure devops support (#1625) by @Nono-04 in #1642
• feat: support trusted admin tenant management by @zhoujh01 in #1616
• fix(session): count tool parts in pending tokens by @wlff123 in #1675
• fix(user_id): support dot by @zhoujh01 in #1679
• Add VitePress docs site and Pages deployment by @yufeng201 in #1681
• feat(parse): support larkoffice.com Feishu document URLs by @efishliu in #1684
• feat(ragfs): add s3 key normalization encoding by @zhoujh01 in #1685
• fix: apikey security: API Key 管理重构与安全增强 by @MaojiaSheng in #1686
• add Copy Markdown button and llms.txt support by @yufeng201 in #1688
• fix(api_keys): proxy get_user_role in NewAPIKeyManager (trusted-mode 500 regression) by @ZaynJarvis in #1691
• Fix docs npm registry for release builds by @yufeng201 in #1690
• fix: account name security by @MaojiaSheng in #1689

New Contributors

• @Nono-04 made their first contribution in #1642
• @yufeng201 made their first contribution in #1681
• @efishliu made their first contribution in #1684

Full Changelog: v0.3.10...v0.3.12

v0.3.10

OpenViking v0.3.10 Release Notes / 发布说明

Release date / 发布日期: 2026-04-22

Full Changelog / 完整变更记录: v0.3.9...v0.3.10

---

中文

版本概览

v0.3.10 重点增强了 VLM provider、OpenClaw 插件生态、VikingDB 数据面接入，以及文件写入、QueueFS、Bot/CLI 的稳定性。本次发布包含 46 个提交，覆盖新功能、兼容性修复、安全修复和测试补强。

主要更新

• 新增 Codex、Kimi、GLM VLM provider，并支持 vlm.timeout 配置。
• 新增 VikingDB volcengine.api_key 数据面模式，可通过 API Key 访问已创建好的云上 VikingDB collection/index。
• write() 新增 mode="create"，支持创建新的文本类 resource 文件，并自动触发语义与向量刷新。
• OpenClaw 插件新增 ClawHub 发布、交互式 setup 向导和 OPENCLAW_STATE_DIR 支持。
• QueueFS 新增 SQLite backend，支持持久化队列、ack 和 stale processing 消息恢复。
• Locomo / VikingBot 评测链路新增 preflight 检查和结果校验。

新功能用法

使用新的 VLM provider

Codex OAuth 推荐通过初始化向导配置：

openviking-server init
openviking-server doctor

手动配置时，openai-codex 在 Codex OAuth 可用时不需要 api_key：

{
  "vlm": {
    "provider": "openai-codex",
    "model": "gpt-5.3-codex",
    "api_base": "https://chatgpt.com/backend-api/codex",
    "timeout": 120
  }
}

Kimi 和 GLM 使用 OpenAI-compatible 请求格式：

{
  "vlm": {
    "provider": "kimi",
    "model": "kimi-code",
    "api_key": "your-kimi-subscription-api-key",
    "api_base": "https://api.kimi.com/coding"
  }
}

{
  "vlm": {
    "provider": "glm",
    "model": "glm-4.6v",
    "api_key": "your-zai-api-key",
    "api_base": "https://api.z.ai/api/coding/paas/v4"
  }
}

创建新的 resource 文件

openviking write viking://resources/notes/release-v0.3.10.md \
  --mode create \
  --content "# v0.3.10\n\nRelease notes." \
  --wait

create 模式只用于新文件；目标已存在时会返回 409 Conflict。支持的扩展名包括 .md、.txt、.json、.yaml、.yml、.toml、.py、.js、.ts。

使用 VikingDB API Key 数据面模式

该模式适合连接已提前创建 collection/index/schema 的 VikingDB。OpenViking 会执行数据写入、查询、删除和聚合，不会创建或删除 collection/index。

{
  "storage": {
    "vectordb": {
      "backend": "volcengine",
      "name": "context",
      "project": "default",
      "index_name": "default",
      "volcengine": {
        "api_key": "your-vikingdb-data-api-key",
        "region": "cn-beijing",
        "host": "api-vikingdb.vikingdb.cn-beijing.volces.com"
      }
    }
  }
}

安装和配置 OpenClaw 插件

openclaw plugins install clawhub:@openclaw/openviking
openclaw openviking setup

连接已有远端 OpenViking 服务时：

openclaw config set plugins.entries.openviking.config.mode remote
openclaw config set plugins.entries.openviking.config.baseUrl http://your-server:1933
openclaw config set plugins.entries.openviking.config.apiKey your-api-key
openclaw config set plugins.entries.openviking.config.agentId your-agent-id

QueueFS SQLite backend

服务端语义/向量任务队列默认可使用持久化 QueueFS。直接挂载 queuefs 插件时，可配置 SQLite 参数：

{
  "backend": "sqlite",
  "db_path": "./data/queue.db",
  "recover_stale_sec": 300,
  "busy_timeout_ms": 5000
}

体验与兼容性改进

• 调整 recallTokenBudget 和 recallMaxContentChars 默认值，降低 OpenClaw 自动召回注入过长上下文的风险。
• ov add-memory 在异步 commit 场景下返回 OK，避免误判后台任务仍在执行时的状态。
• ov chat 会从 ovcli.conf 读取鉴权配置并自动发送必要请求头。
• OpenClaw 插件默认远端连接行为、鉴权、namespace 和 role_id 处理更贴合服务端多租户模型。

修复

• 修复 Bot API channel 鉴权检查、启动前端口检查和已安装版本上报。
• 修复 OpenClaw 工具调用消息格式不兼容导致的孤儿 toolResult。
• 修复 console add_resource target 字段、repo target URI、filesystem mkdir、reindex maintenance route 等问题。
• 修复 Windows .bat 环境读写、shell escaping、ov.conf 校验和硬编码路径问题。
• 修复 Gemini + tools 场景下 LiteLLM cache_control 导致的 400 错误，并支持 OpenAI reasoning model family。
• 修复 S3FS 目录 mtime 稳定性、Rust native build 环境污染、SQLite 数据库扩展名解析等问题。

文档、测试与安全

• 补充 VLM provider、Codex OAuth、Kimi/GLM、write(mode=create)、tools.mcp_servers、ov_tools_enable、Feishu thread 和 VLM timeout 文档。
• 新增资源构建、Context Engine、OpenClaw 插件、内容写入、VLM provider、setup wizard、server bootstrap 和安全相关测试。
• 新增 SECURITY.md 并更新 README、多语言文档和社群二维码。
• 修复多项 code scanning 和 runtime 安全告警。
• 增强 Bot gateway、OpenAPI auth、werewolf demo、配置校验和本地命令执行相关安全测试。

---

English

Overview

v0.3.10 focuses on VLM providers, the OpenClaw plugin ecosystem, VikingDB data-plane access, and stability improvements across content write, QueueFS, Bot, and CLI workflows. This release includes 46 commits covering new capabilities, compatibility fixes, security fixes, and expanded tests.

Highlights

• Added Codex, Kimi, and GLM VLM providers, plus vlm.timeout for per-request HTTP timeouts.
• Added VikingDB volcengine.api_key data-plane mode for accessing pre-created cloud VikingDB collections and indexes with an API key.
• Added write(mode="create") for creating new text resource files and automatically refreshing related semantics and vectors.
• Added ClawHub publishing, an interactive setup wizard, and OPENCLAW_STATE_DIR support for the OpenClaw plugin.
• Added a SQLite backend for QueueFS with persisted queues, ack support, and stale processing message recovery.
• Added Locomo / VikingBot evaluation preflight checks and result validation.

New Feature Usage

Use the new VLM providers

For Codex OAuth, prefer the setup wizard:

openviking-server init
openviking-server doctor

When configuring manually, openai-codex does not require api_key if Codex OAuth is available:

{
  "vlm": {
    "provider": "openai-codex",
    "model": "gpt-5.3-codex",
    "api_base": "https://chatgpt.com/backend-api/codex",
    "timeout": 120
  }
}

Kimi and GLM use OpenAI-compatible request formats:

{
  "vlm": {
    "provider": "kimi",
    "model": "kimi-code",
    "api_key": "your-kimi-subscription-api-key",
    "api_base": "https://api.kimi.com/coding"
  }
}

{
  "vlm": {
    "provider": "glm",
    "model": "glm-4.6v",
    "api_key": "your-zai-api-key",
    "api_base": "https://api.z.ai/api/coding/paas/v4"
  }
}

Create a new resource file

openviking write viking://resources/notes/release-v0.3.10.md \
  --mode create \
  --content "# v0.3.10\n\nRelease notes." \
  --wait

create mode only targets new files; an existing path returns 409 Conflict. Supported extensions include .md, .txt, .json, .yaml, .yml, .toml, .py, .js, and .ts.

Use VikingDB API-key data-plane mode

This mode is intended for VikingDB collections, indexes, and schemas that were created out of band. OpenViking can write, search, delete, and aggregate data, but it does not create or delete collections and indexes in this mode.

{
  "storage": {
    "vectordb": {
      "backend": "volcengine",
      "name": "context",
      "project": "default",
      "index_name": "default",
      "volcengine": {
        "api_key": "your-vikingdb-data-api-key",
        "region": "cn-beijing",
        "host": "api-vikingdb.vikingdb.cn-beijing.volces.com"
      }
    }
  }
}

Install and configure the OpenClaw plugin

openclaw plugins install clawhub:@openclaw/openviking
openclaw openviking setup

To connect to an existing remote OpenViking server:

openclaw config set plugins.entries.openviking.config.mode remote
openclaw config set plugins.entries.openviking.config.baseUrl http://your-server:1933
openclaw config set plugins.entries.openviking.config.apiKey your-api-key
openclaw config set plugins.entries.openviking.config.agentId your-agent-id

QueueFS SQLite backend

The server semantic/vector task queues can use persistent QueueFS. When mounting the queuefs plugin directly, configure SQLite parameters like this:

{
  "backend": "sqlite",
  "db_path": "./data/queue.db",
  "recover_stale_sec": 300,
  "busy_timeout_ms": 5000
}

Improvements

• Adjusted the default recallTokenBudget and recallMaxContentChars to reduce the risk of overlong OpenClaw auto-recall context injection.
• ov add-memory now returns OK for asynchronous commit workflows instead of implying the background task has already finished.
• ov chat now reads authentication from ovcli.conf and sends the required request headers.
• The OpenClaw plugin now aligns remote connection behavior, auth, namespace, and role_id handling with the server multi-tenant model.

Fixes

• Fixed Bot API channel auth checks, startup port preflight checks, and installed-version reporting.
• Fixed orphan toolResult errors caused by incompatible OpenClaw tool-call message formats.
• Fixed console add_resource target fields, repo target URIs, filesystem mkdir, and the reindex maintenance route.
• Fixed Windows .bat environment read/write, shell escaping, ov.conf validation, and hardcoded paths.
• Fixed LiteLLM cache_control 400 errors for Gemini + tools and added support for OpenAI reasoning model families.
• Fixed S3FS directory mtime stability, Rust native build environment pollution, and SQLite database extension parsing.

Docs, Tests, and Security

• Documented VLM providers, Codex OAuth, Kimi/GLM, write(mode=create), tools.mcp_servers, ov_tools_enable, Feishu thread settings, and VLM timeout.
• Added tests for resource builds, Context Engine, the OpenClaw plugin, content write, VLM providers, setup wizard, server bootstrap, and security behavior.
• Added SECURITY.md and updated the README files, multilingual docs, and community QR code.
• Addressed multiple code scanning and runtime security findings.
• Expanded security coverage for Bot gateway, OpenAPI auth, the werewolf demo, config validation, and local command execution.

What's Changed

• docs(channel): document ov_tools_enable config introduced in #1352 by @r266-tech in #1571
• docs(bot): document tools.mcp_servers config (#1392) by @r266-tech in #1...

v0.3.9

What's Changed

• reorg: remove golang depends by @MaojiaSheng in #1339
• Feat/mem opt by @chenjw in #1349
• fix: openai like embedding models fix, no more matryoshka error by @MaojiaSheng in #1350
• feat(bot): Add disable OpenViking config for channels. by @yeshion23333 in #1352
• fix(config): point missing-config help messages to openviking.ai docs by @Gujiassh in #1370
• fix(embedder): initialize async client state in VolcengineSparseEmbedder by @lRoccoon in #1362
• feat(examples): add Codex memory plugin example by @0xble in #1080
• feat(openclaw-plugin): add unified ov_import and ov_search by @jcp0578 in #1369
• feat(bot): add MCP client support (port from HKUDS/nanobot v0.1.5) by @ponsde in #1392
• feat(eval):Readme add qa by @yeshion23333 in #1400
• feat(cli): support for default file/dir ignore config in ovcli.conf by @sentisso in #1393
• benchmark: add LoCoMo evaluation for Supermemory by @yangxinxin-7 in #1401
• fix(embedder): report configured provider in slow-call logs by @qin-ptr in #1403
• fix(queue): preserve embedding message ids across serialization by @officialasishkumar in #1380
• test(security): add unit tests for network_guard and zip_safe modules by @sjhddh in #1395
• fix(semantic): preserve repository hierarchy in overviews by @chethanuk in #1376
• fix(tests): align pytest coverage docs with required setup (#1259) by @chethanuk in #1373
• feat: rerank support extra headers by @caisirius in #1359
• fix: reload legacy session rows by @chethanuk in #1365
• fix: protect global watch-task control files from non-root access by @Hinotoi-agent in #1396
• fix(agfs): enable agfs s3 plugin default by @chuanbao666 in #1408
• fix(claude-code-memory-plugin): improve Windows compatibility by @Castor6 in #1249
• fix(pdf): resolve bookmark page mapping by @qin-ctx in #1412
• fix: update observer test to use /models endpoint instead of non-exis… by @kaisongli in #1407
• fix(openclaw-plugin): extend default Phase 2 commit wait timeout by @yeyitech in #1415
• pref(retrieve): Optimize the search performance of larger directories by skipping redundant target_directories scope by @sponge225 in #1426
• Add third_party directory to Dockerfile by @qin-ptr in #1433
• Fix/openclaw addmsg by @chenjw in #1391
• feat(bot):Heartbeat fix by @yeshion23333 in #1434
• feat: add openviking-server init interactive setup wizard for local Ollama model deployment by @t0saki in #1353
• fix(volcengine): update default doubao embedding model by @qin-ctx in #1438
• feat: add Memory V2 full suite test by @kaisongli in #1354
• update new wechat group qr code by @yuyaoyoyo-svg in #1440
• feat(filesystem): support directory descriptions on mkdir by @qin-ctx in #1443
• feat(memory): default to memory v2 by @chenjw in #1445
• fix: resolve OpenClaw session file lock conflicts in oc2ov tests by @kaisongli in #1441
• fix: isolate temp scope by user within an account by @Hinotoi-agent in #1398
• fix(docker): raise Rust toolchain for ragfs image builds by @qin-ctx in #1448
• feat(metric): add metric system by @baojun-zhang in #1357
• openclaw refactor: assemble context partitioning (Instruction/Archive/Session/… by @wlff123 in #1446
• Fix/memory v2 by @chenjw in #1450
• Fix/memory v2 by @chenjw in #1452
• reorg: split parser layer to 2-layer: accessor and parser, so that we can reuse more code by @MaojiaSheng in #1428
• fix: merge error by @MaojiaSheng in #1463
• docs: document openviking-server init/doctor in README (#1454) by @r266-tech in #1455
• [security] fix(pack): block ovpack import writes to forbidden control-plane targets by @Hinotoi-agent in #1451
• feat(retrieval): add time filters to find and search by @0xble in #1429
• feat: add local llama-cpp embedding support by @Mijamind719 in #1388
• fix(release): fail wheel builds without ragfs bindings by @qin-ctx in #1466
• fix: support CI environment in upgrade_openviking.sh by @kaisongli in #1467
• feat(rust tui): add delete uri funciton with confirmation and refresh behaviour by @xiaobin83 in #696
• fix(plugin): sanitize prompt fallback in before_prompt_build to preve… by @wlff123 in #1472
• fix: error handling in CLI tui by @MaojiaSheng in #1476
• fix: downgrade embedding metadata check from fatal error to warning f… by @LinQiang391 in #1477
• fix: block CI when OpenViking server fails to start by @kaisongli in #1478
• feat(bot):Werewolf demo fix, Add one-click startup script by @yeshion23333 in #1473
• fix(code): recognize ssh clone URLs with userinfo by @yeyitech in #1421
• feat(server): add resources-only WebDAV adapter by @yeyitech in #1435
• fix(parser): Fix parser config propagation for markdown splitting by @zhoujh01 in #1480
• docs(api): align API reference with current server behavior by @qin-ctx in #1483
• Feat/memory overview by @chenjw in #1460
• fix(client): ensure session files exist when creating new session in local mode by @sponge225 in #1470
• feat(opencode-plugin): add auto recall for automatic memory context injection by @A0nameless0man in #1484
• fix(plugin): propagate toolCallId and handle user-role tool parts in … by @wlff123 in #1482
• reorg: collect all envs from everywhere, and defined in consts.py by @MaojiaSheng in #1490
• fix(cli): return actionable resource errors for fs commands by @ehz0ah in #1458
• [security] fix(bot): prevent unauthenticated remote bot control via OpenAPI HTTP routes by @Hinotoi-agent in #1447
• feat(embedding): surface non-symmetric embedding config for VikingDB provider by @mvanhorn in #1110
• refactor: organize CLI commands with category tags, add timeout flexibility by @MaojiaSheng in #1492
• feat(metric): add token-full-cycle metric by @baojun-zhang in #1488
• feat: Add Vaka LoCoMo benchmark scripts by @PowerfulLxx in #1502
• Temporary exemption to avoid compatibility issues. by @qin-ptr in #1504
• feat: vaka locomo benchmark by @PowerfulLxx in #1506
• build(deps): update litellm requirement from <1.83.1,>=1.0.0 to >=1.0.0,<1.83.9 by @dependabot[bot] in #1496
• build(deps): bump actions/github-script from 8 to 9 by @dependabot[bot] in #1494
• build(deps): bump softprops/action-gh-release from 2 to 3 by @dependabot[bot] in #1495
• fix(openclaw-plugin): enforce assemble token budgets by @Mijamind719 in #1511
• fix: use abi3 for rust package by @MaojiaSheng in #1517
• feat(session): add account namespace policy and shared sessions by @qin-ctx in #1356
• Add...

v0.3.8

• Date: 2026-04-15
• Tag: v0.3.8
• Compare: v0.3.5...v0.3.8

中文说明

OpenViking v0.3.8 主要聚焦于 Memory V2、Agent/插件生态增强，以及一批配置、检索和稳定性修复。本次版本共整理了 35 个变更项，覆盖 Memory V2、CLI、OpenClaw、Codex、VikingBot、检索性能和部署体验，并包含 8 位新贡献者。

Memory V2 专题

Memory V2 是 v0.3.8 的核心主题之一。本节重点介绍其记忆格式设计，以及模板化、结构化更新和可扩展性带来的架构优化。

• 记忆格式：
  • Memory V2 不再把长期记忆限制在 v1 的固定类别里，而是改成基于 YAML 模板定义记忆类型。
  • 每种记忆模板都可以定义 directory、filename_template、fields、merge_op，必要时还可以定义 content_template。
  • 最终写入的仍然是可读的 Markdown 记忆文件，但文件路径、文件名、字段结构和更新方式都由模板控制，文件名也更语义化，便于导航和检索。
  • 内置模板已经覆盖 profile、preferences、entities、events、cases、patterns、tools、skills，并支持初始化 soul.md、identity.md 这类基础记忆文件。
• 重构与优化：
  • v1 的问题是记忆类别、抽取提示和合并逻辑相对固定，新增类型往往需要改核心代码；Memory V2 把这部分能力抽到模板层，新增记忆类型不再需要继续硬编码。
  • 抽取链路从“抽出来再做多轮合并”的思路，演进为基于 ReAct 编排的结构化 write/edit/delete 操作，更新路径更统一，也更适合后续扩展。
  • 通过 memory.custom_templates_dir，团队可以在不改主干逻辑的情况下扩展自己的业务记忆模板。
  • 本次版本同时补充了 Memory V2 full suite test，并修复了异常响应、越界范围、额外迭代终止等边界问题，使默认开启后的稳定性更可控。
• 对用户的直接价值：
  • 记忆文件更可读，目录结构和文件名更有语义。
  • 记忆类型更容易扩展，不再受限于固定类别。
  • 记忆更新逻辑更统一，后续做定制模板、行业知识卡片、事件索引、工具经验沉淀会更顺。
  • 在 LoCoMo 评测中，Memory V2 路径的准确率达到 80%，说明这套记忆格式和更新机制不仅更灵活，也已经具备实际效果支撑。

重点更新

• Memory V2 默认开启：
  • Memory V2 将长期记忆从 v1 的固定类别抽取，升级为基于 YAML 模板的记忆系统，核心链路由模板定义、ReAct 抽取编排和 write/edit/delete 结构化操作组成。
  • 记忆类型不再需要写死在核心代码里，内置模板可覆盖 profile、preferences、entities、events、cases、patterns、tools、skills，并可初始化 soul.md、identity.md 等基础记忆文件。
  • Memory V2 支持通过 memory.custom_templates_dir 扩展自定义模板，便于团队按业务场景定义新的记忆类型，而不必继续修改核心抽取逻辑。
  • 本次版本还补充了 Memory V2 full suite test，并修复了抽取循环中的异常响应、越界范围和额外迭代终止等边界问题，默认开启后更适合直接投入真实对话流量。
• 本地部署与初始化体验：
  • 新增 openviking-server init 交互式向导，面向本地 Ollama 模型部署场景，支持自动检测环境、推荐模型、拉取模型并生成可用的 ov.conf。
  • openviking-server doctor 与服务端健康检查增强了对 Ollama 的识别和联通性检查，降低本地部署排障成本。
• 插件与 Agent 生态增强：
  • VikingBot 新增 MCP client 支持，可连接 stdio、SSE、streamable HTTP 三类 MCP 服务，把第三方工具并入代理运行时。
  • VikingBot 新增可按 channel 关闭 OpenViking 的配置，并修复 heartbeat 消息误入对话、过期 heartbeat 重复检查等问题。
  • 新增 Codex memory plugin 示例，提供 openviking_recall、openviking_store、openviking_forget、openviking_health 四个工具，方便在 Codex 中接入 OpenViking 长期记忆。
  • OpenClaw 插件新增统一的 ov_import 和 ov_search，并补强会话消息捕获、tool_input 透传、commit 等待超时和 trace 日志，提升接入稳定性。
• 配置与部署体验改进：
  • ovcli.conf 新增 upload.ignore_dirs，支持为 add-resource 配置默认忽略目录。
  • rerank 配置支持 extra_headers，便于对接 OpenAI 兼容 provider、代理层或网关。
  • AGFS S3 插件默认启用；同时在 S3/OSS 兼容场景新增 disable_batch_delete，改善与部分 S3 兼容服务的适配。
  • 移除了仓库中的历史 Go 依赖和 AGFS 第三方代码，简化了构建、打包和仓库维护。
• 性能与稳定性：
  • 优化大目录检索，跳过冗余 target_directories 作用域过滤，减少不必要的搜索开销。
  • 修复 overview 生成时仓库层级丢失、embedding message ID 序列化丢失、legacy session row 重载、watch task 控制文件保护等问题。
  • 改善 Claude Code memory plugin 的 Windows 兼容性，并修复 PDF 书签页码映射、OpenAI-like embedding 的 Matryoshka 报错、VolcengineSparseEmbedder 异步状态初始化，以及默认 Doubao embedding 模型更新等问题。
  • 修复内存提取循环中的异常响应处理、越界范围处理和额外迭代终止逻辑，减少记忆抽取异常；同时补充 Memory V2 全量测试与一批安全/兼容性测试。
• 其他补充：
  • 文件系统新增目录描述支持，可在 mkdir 场景下为目录补充语义信息。
  • 仓库同步更新了新的微信交流群二维码。

升级提示

• 如果你经常通过 CLI 导入目录资源，建议在 ovcli.conf 中配置 upload.ignore_dirs，减少无关目录上传。
• 如果你需要保留旧行为，可在 ov.conf 中显式设置 "memory": { "version": "v1" } 回退到 legacy memory pipeline。
• 如果你之前使用 ov init 或 ov doctor，请改用 openviking-server init 和 openviking-server doctor。
• 如果你使用 OpenRouter 或其他 OpenAI 兼容 rerank/VLM 服务，可以通过 extra_headers 注入平台要求的 Header。
• 如果你的对象存储是阿里云 OSS 或其他 S3 兼容实现，且批量删除存在兼容问题，可开启 storage.agfs.s3.disable_batch_delete。
• 如果你在做 Agent 集成，建议查看 examples/codex-memory-plugin 与 examples/openclaw-plugin 中的新示例和工具能力。

致谢

感谢所有为 v0.3.8 提交特性、修复和文档改进的贡献者。

English Release Notes

OpenViking v0.3.8 focuses on Memory V2, stronger agent/plugin integrations, and a broad set of configuration, retrieval, and stability improvements. This release rolls up 35 tracked changes across Memory V2, the CLI, OpenClaw, Codex, VikingBot, retrieval performance, and local deployment, and it also welcomes 8 new contributors.

Memory V2 Spotlight

Memory V2 is one of the central themes of v0.3.8. This section highlights its memory format, along with the architectural improvements brought by templating, structured updates, and extensibility.

• Format:
  • Memory V2 no longer treats long-term memory as a fixed set of hard-coded v1 categories. Instead, memory types are defined through YAML templates.
  • Each memory template can define directory, filename_template, fields, and merge_op, and can optionally provide a content_template.
  • The final output is still readable Markdown memory files, but the path layout, filenames, field structure, and update behavior are now template-driven. Filenames are also more semantic and easier to navigate.
  • Built-in templates already cover profile, preferences, entities, events, cases, patterns, tools, and skills, and can initialize baseline files such as soul.md and identity.md.
• Refactor and optimization:
  • In v1, memory categories, extraction prompts, and merge behavior were relatively fixed, so adding a new memory type usually meant changing core code. Memory V2 moves that flexibility into the template layer.
  • The update path evolves from a mostly extract-then-merge flow into a ReAct-orchestrated structured operation model built around write/edit/delete.
  • Through memory.custom_templates_dir, teams can extend memory behavior with domain-specific templates without modifying the main extraction pipeline.
  • This release also adds a full Memory V2 test suite and fixes extraction edge cases around unexpected responses, out-of-bounds ranges, and extended-iteration termination, which matters now that the path is default-on.
• What users get from this:
  • More readable memory files with more meaningful directory and filename structure.
  • A memory system that is easier to extend beyond a fixed category list.
  • A more uniform update pipeline for future custom templates, event indexing, knowledge cards, and tool/skill experience capture.
  • In LoCoMo evaluation, the Memory V2 path reached 80% accuracy, which is a useful signal that the new format and update model are not only more flexible but also practically effective.

Highlights

• Memory V2 by default:
  • Memory V2 moves long-term memory beyond the fixed-category v1 pipeline into a YAML-templated system built around schema-defined memory types, ReAct-style extraction orchestration, and structured write/edit/delete operations.
  • Memory types are no longer hard-coded in the core extractor. Built-in templates cover profile, preferences, entities, events, cases, patterns, tools, and skills, and can initialize baseline files such as soul.md and identity.md.
  • Teams can extend the system through memory.custom_templates_dir, making it practical to define domain-specific memory types without changing core extraction code.
  • This release also adds a full Memory V2 test suite and fixes several extraction edge cases, making the default-on rollout materially safer.
• Local deployment and setup:
  • Added openviking-server init, an interactive setup wizard for local Ollama-based deployments that can detect the environment, recommend models, pull them, and generate a valid ov.conf.
  • Improved openviking-server doctor and server-side readiness checks so Ollama availability is easier to diagnose in local deployments.
• Plugin and agent ecosystem improvements:
  • VikingBot now supports MCP clients and can connect to third-party MCP servers over stdio, SSE, and streamable HTTP.
  • VikingBot also adds per-channel disable controls for OpenViking and fixes heartbeat behavior so health-check traffic no longer pollutes conversations.
  • Added a Codex memory plugin example with openviking_recall, openviking_store, openviking_forget, and openviking_health tools for explicit long-term memory operations in Codex.
  • The OpenClaw plugin now exposes unified ov_import and ov_search flows, and also improves session capture, tool_input propagation, commit wait behavior, and trace logging.
• Config and deployment improvements:
  • ovcli.conf now supports upload.ignore_dirs so add-resource can ignore default directories out of the box.
  • Rerank config now supports extra_headers, which helps when working with OpenAI-compatible providers, gateways, or custom proxies.
  • AGFS S3 is now enabled by default, and disable_batch_delete is available for S3/OSS compatibility scenarios.
  • Removed legacy Go-based dependencies and AGFS third-party code from the repository, simplifying builds, packaging, and maintenance.
• Performance and reliability:
  • Improved retrieval performance for large directories by skipping redundant target_directories scope filters when safe.
  • Fixed repository hierarchy loss in semantic overviews, embedding message ID serialization issues, legacy session row reload behavior, and watch-task control file protection.
  • Also improved Windows compatibility for the Claude Code memory plugin, fixed PDF bookmark page mapping, resolved OpenAI-like embedding Matryoshka errors, corrected async client initialization in VolcengineSparseEmbedder, and updated the default Doubao embedding model.
  • Fixed several memory extraction edge cases, including unexpected VLM response shapes, out-of-bounds extraction ranges, and extended-iteration termination behavior, and added broader Memory V2 and security test coverage.
• Other additions:
  • The filesystem now supports directory descriptions in mkdir flows.
  • The repository also updates the WeChat community QR code.

Upgrade Notes

• If you frequently upload directories through the CLI, consider setting upload.ignore_dirs in ovcli.conf to reduce noisy uploads.
• If you need legacy behavior, you can explicitly set `"memory": { "version...

v0.3.5

What's Changed

• fix(memory): define config before v2 memory lock retry settings access by @heaoxiang-ai in #1317
• fix: 优化测试关键词匹配和移除 Release Approval Gate by @kaisongli in #1313
• fix: sanitize internal error details in bot proxy responses by @sjhddh in #1310
• feat: add scenario-based API tests by @kaisongli in #1303
• fix(security): remove leaked token from settings.py by @kaisongli in #1319
• Fix/add resource cover by @myysy in #1321
• Revert "Fix/add resource cover" by @MaojiaSheng in #1322
• fix: litellm embedding dimension adapts by @MaojiaSheng in #1323
• ci: optimize runner usage with conditional OS matrix and parallel limit by @kaisongli in #1327
• fix(bot):Response language, Multi user memory commit by @yeshion23333 in #1329
• ci: remove lite and full test workflows by @zhoujh01 in #1331
• docs: fix docker deployment by @MaojiaSheng in #1332
• docs(openclaw-plugin): add health check tools guide by @mrj666 in #1326
• fix(queue): expose re-enqueue counts in queue status by @qin-ctx in #1337
• feat(s3fs): add disable_batch_delete option for OSS compatibility by @yuan7he in #1333
• Fix/add resource cover by @myysy in #1338
• afterTurn: store messages with actual roles and skip heartbeat messages by @wlff123 in #1340
• fix: fall back to prefix filters for volcengine path scope by @haosenwang1018 in #1342
• fix(session): auto-create missing sessions on first add by @qin-ctx in #1348
• Fix/api test issues by @kaisongli in #1341
• fix: derive context_type from URI in index_resource by @yc111233 in #1346

New Contributors

• @sjhddh made their first contribution in #1310
• @mrj666 made their first contribution in #1326
• @yuan7he made their first contribution in #1333

Full Changelog: v0.3.4...v0.3.5

更新内容

• 修复(memory)：在访问 v2 memory 锁重试配置前先定义 config，作者 @heaoxiang-ai，见 #1317
• 修复：优化测试关键词匹配，并移除 Release Approval Gate，作者 @kaisongli，见 #1313
• 修复：对 bot 代理响应中的内部错误详情进行脱敏处理，作者 @sjhddh，见 #1310
• 新增：添加基于场景的 API 测试，作者 @kaisongli，见 #1303
• 修复(security)：从 settings.py 中移除泄露的 token，作者 @kaisongli，见 #1319
• 修复/新增资源封面，作者 @myysy，见 #1321
• 回滚“修复/新增资源封面”，作者 @MaojiaSheng，见 #1322
• 修复：LiteLLM 的 embedding 维度自适应，作者 @MaojiaSheng，见 #1323
• CI：通过条件式 OS 矩阵和并行数量限制优化 runner 使用，作者 @kaisongli，见 #1327
• 修复(bot)：响应语言和多用户记忆提交，作者 @yeshion23333，见 #1329
• CI：移除 lite 和 full 测试工作流，作者 @zhoujh01，见 #1331
• 文档：修复 Docker 部署说明，作者 @MaojiaSheng，见 #1332
• 文档(openclaw-plugin)：新增健康检查工具指南，作者 @mrj666，见 #1326
• 修复(queue)：在队列状态中暴露重新入队次数，作者 @qin-ctx，见 #1337
• 新增(s3fs)：添加 disable_batch_delete 选项以兼容 OSS，作者 @yuan7he，见 #1333
• 修复/新增资源封面，作者 @myysy，见 #1338
• afterTurn：按实际角色存储消息，并跳过心跳消息，作者 @wlff123，见 #1340
• 修复：为火山引擎路径作用域回退到前缀过滤器，作者 @haosenwang1018，见 #1342
• 修复(session)：首次添加时自动创建缺失的会话，作者 @qin-ctx，见 #1348
• 修复：解决 API 测试问题，作者 @kaisongli，见 #1341
• 修复：在 index_resource 中从 URI 推导 context_type，作者 @yc111233，见 #1346

新贡献者

• @sjhddh 在 #1310 完成了首次贡献
• @mrj666 在 #1326 完成了首次贡献
• @yuan7he 在 #1333 完成了首次贡献

完整更新日志：v0.3.4...v0.3.5

v0.3.4

OpenViking v0.3.4

本次 v0.3.4 版本主要围绕 OpenClaw 插件与评测链路、Memory / 存储与写入稳定性、安全边界与网络控制，以及发布流程、Docker 与 CI 体系做了持续增强。相较 v0.3.3，这一版本一方面补齐了 OpenClaw 默认行为、eval 脚本、provider 扩展和多项兼容性问题，另一方面也显著加强了会话写入等待、锁与压缩器重试、HTTP 资源导入 SSRF 防护、trusted mode 限制和整体发布交付链路。

版本亮点

• OpenClaw 插件与评测体验继续完善：调整 recallPreferAbstract 与 ingestReplyAssist 的默认值以降低意外行为，PR #1204 PR #1206；新增 OpenClaw eval shell 脚本并修复评测导入问题，PR #1287 PR #1305；同时补齐 autoRecall 搜索范围与查询清洗、截断能力，PR #1225 PR #1297。
• Memory、会话写入与运行时稳定性明显增强：写接口引入 request-scoped wait 机制，PR #1212；补强 PID lock 回收、召回阈值绕过、孤儿 compressor 引用、async contention 和 memory 语义批处理等问题，PR #1211 PR #1301 PR #1304；并继续优化 memory v2 compressor 锁重试控制，PR #1275。
• 安全与网络边界进一步收紧：HTTP 资源导入补齐私网 SSRF 防护，PR #1133；trusted mode 在无 API key 时被限制为仅允许 localhost，PR #1279；embedding circuit breaker 与日志抑制也变得可配置，PR #1277。
• 生态与集成能力继续扩展：新增 Volcengine Vector DB STS Token 支持，PR #1268；新增 MiniMax-M2.7 与 MiniMax-M2.7-highspeed provider 支持，PR #1284；AST 侧补充 Lua parser，PR #1286；Bot 新增 channel mention 能力，PR #1272。
• 发布、Docker 与 CI 链路更稳健：发布时自动更新 main 并增加 Docker Hub push，PR #1229；修复 Docker maturin 路径并将 Gemini optional dependency 纳入镜像，PR #1295 PR #1254；CI 侧优化 API matrix、补充 timeout/SMTP 通知并修复 reusable workflow / action 问题，PR #1281 PR #1293 PR #1300 PR #1302 PR #1307。

升级说明

• OpenClaw 插件默认配置发生调整：recallPreferAbstract 与 ingestReplyAssist 现在默认均为 false。如果你之前依赖默认开启行为，升级后需要显式配置，见 PR #1204 和 PR #1206。
• HTTP 资源导入现在默认更严格地防护私网 SSRF；如果你有合法的内网资源采集场景，升级时建议复核现有接入方式与白名单策略，见 PR #1133。
• trusted mode 在未提供 API key 时已限制为仅允许 localhost 访问；如果你此前通过非本地地址使用 trusted mode，需要同步调整部署与鉴权配置，见 PR #1279。
• 写接口现在引入 request-scoped wait 机制，相关调用在并发写入下的等待与返回时机会更一致；如果你有依赖旧时序的外部编排逻辑，建议升级后复核行为，见 PR #1212。
• server 已支持 host=none 以使用双栈网络；如果你在 IPv4/IPv6 混合环境中部署，可考虑调整监听配置，见 PR #1273。
• Docker 镜像已纳入 Gemini optional dependency，并修复了 maturin 路径问题；如果你维护自定义镜像或发布流水线，建议同步检查构建脚本，见 PR #1254 和 PR #1295。

详细变更

OpenClaw 插件、评测与集成

• 默认将 openclaw-plugin 的 recallPreferAbstract 设为 false，PR #1204 by @wlff123
• 修复 eval 中的 async import 问题，PR #1203 by @yeshion23333
• 默认将 openclaw-plugin 的 ingestReplyAssist 设为 false，PR #1206 by @wlff123
• 向 OpenAIVLM client 增加 timeout 参数，PR #1208 by @highland0971
• 防止 redo recovery 中阻塞式 VLM 调用导致启动 hang 住，PR #1226 by @mvanhorn
• 为插件 autoRecall 增加 skills 搜索范围，PR #1225 by @mvanhorn
• 新增 bot channel mention 能力，PR #1272 by @yeshion23333
• 新增 OpenClaw eval shell 脚本，PR #1287 by @yeshion23333
• 新增 add_message 的 create time，PR #1288 by @wlff123
• 对 OpenClaw recall query 做清洗并限制长度，PR #1297 by @qin-ctx
• 修复 OpenClaw eval 导入到 OpenViking 时默认 user 的问题，PR #1305 by @yeshion23333

Memory、会话、存储与运行时

• 修复明文文件长度小于 4 字节时 decrypt 抛出 Ciphertext too short 的问题，PR #1163 by @yc111233
• 为短明文加密补充单元测试，PR #1217 by @baojun-zhang
• 修复 PID lock 回收、召回阈值绕过与 orphaned compressor refs 等问题，PR #1211 by @JasonOA888
• queuefs 去重 memory semantic parent enqueue，PR #792 by @Protocol-zero-0
• 为 decrypt 短明文场景补充回归测试，PR #1223 by @yc111233
• 为写接口实现 request-scoped wait 机制，PR #1212 by @zhoujh01
• 将 agfs 重组为 Rust 实现的 ragfs，PR #1221 by @MaojiaSheng
• 修复 session _wait_for_previous_archive_done 无限挂起问题，PR #1235 by @yc111233
• 修复 #1238、#1242 和 #1232 涉及的问题，PR #1243 by @MaojiaSheng
• Memory 侧继续做性能优化，PR #1159 by @chenjw
• 回滚 session _wait_for_previous_archive_done timeout 改动，PR #1265 by @MaojiaSheng
• memory v2 compressor 改进锁重试控制，PR #1275 by @heaoxiang-ai
• 降低 embedder 在 session 流程中的 async contention，PR #1301 by @qin-ctx
• 在 _process_memory_directory 中批量处理 semantic memory，PR #1304 by @chuanbao666

安全、网络与 Provider 生态

• 加固 HTTP 资源导入，防止私网 SSRF，PR #1133 by @13ernkastel
• Volcengine Vector DB 支持 STS Token，PR #1268 by @baojun-zhang
• server 支持 host none 以启用双栈网络，PR #1273 by @zhoujh01
• 无 API key 时将 trusted mode 限制为 localhost，PR #1279 by @zhoujh01
• embedding circuit breaker 与日志抑制支持配置化，PR #1277 by @baojun-zhang
• 新增 MiniMax-M2.7 与 MiniMax-M2.7-highspeed provider 支持，PR #1284 by @octo-patch
• 为 AST 新增 Lua parser 支持，PR #1286 by @Shawn-cf-o
• 为 Lark 集成补充 lark-oapi，PR #1285 by @zhoujh01

文档、打包、Docker 与 CI

• 增加 Claude Code Memory Plugin 示例链接与中文文档，PR #1228 by @Castor6
• add-resource 处理非 UTF-8 文件名，PR #1224 by @mvanhorn
• 发布时更新 main，并增加 Docker Hub push，PR #1229 by @MaojiaSheng
• 更新微信群二维码，PR #1282 by @yuyaoyoyo-svg
• 将 API 测试矩阵从 5 个 channel 优化为 3 个，PR #1281 by @kaisongli
• 增加中英文 prompt guide 文档，PR #1292 by @zhoujh01
• 增加面向 mem0 的 LoCoMo benchmark 脚本，PR #1290 by @yangxinxin-7
• 修复 Docker 中的 maturin 路径问题，PR #1295 by @zhoujh01
• 在 Docker 镜像中纳入 Gemini optional dependency，PR #1254 by @SeeYangZhi
• CI 增加 timeout 与 SMTP 失败通知，PR #1293 by @kaisongli
• 修复 reusable build workflow 的 YAML block 问题，PR #1300 by @zhoujh01
• 新增 ovpack 递归向量化所有导入文档的能力，PR #1294 by @sponge225
• 改进 oc2ov 自动化测试，PR #1280 by @kaisongli
• 移除不允许的 notify-failure action，PR #1302 by @kaisongli
• 修复 CI，PR #1307 by @zhoujh01

新贡献者

• @highland0971 made their first contribution in PR #1208
• @yc111233 made their first contribution in PR #1163
• @octo-patch made their first contribution in PR #1284
• @SeeYangZhi made their first contribution in PR #1254

Full Changelog: v0.3.3...v0.3.4

What's Changed

• fix(openclaw-plugin): default recallPreferAbstract to false by @wlff123 in https://github.com/volcengine/OpenVi...

v0.3.3

OpenViking v0.3.3

本次 v0.3.3 版本主要围绕评测与写入能力、OpenClaw 插件与集成体验、会话与资源导入链路、稳定性与安全性，以及测试与 CI 体系做了集中增强。相较 v0.3.2，这一版本一方面补齐了 benchmark / eval / write 等面向落地使用的能力，另一方面也明显加强了 OpenClaw 插件的可观测性、健康检查、容错和测试覆盖，同时修复了若干会直接影响生产使用的锁处理、任务权限、ZIP 编码、资源导入与 embedder 参数问题。

Highlights

• 评测与写入能力继续扩展：新增 RAG benchmark 评测框架 PR #825，补充 OpenClaw 的 LoCoMo eval 脚本与说明 PR #1152，并新增内容写入接口 PR #1151。
• OpenClaw 插件可用性显著增强：补充架构文档与图示 PR #1145，安装器不再覆盖 gateway.mode PR #1149，新增端到端 healthcheck 工具 PR #1180，支持 bypass session patterns PR #1194，并在 OpenViking 故障时避免阻塞 OpenClaw PR #1158。
• 测试与 CI 覆盖大幅补强：OpenClaw 插件新增大规模单测套件 PR #1144，补充 e2e 测试 PR #1154，新增 OpenClaw2OpenViking 集成测试与 CI 流水线 PR #1168。
• 会话、解析与导入链路更稳健：支持创建 session 时指定 session_id PR #1074，CLI 聊天端点优先级与 grep --exclude-uri/-x 能力得到增强 PR #1143 PR #1174，目录导入 UX / 正确性与扫描 warning 契约也进一步改善 PR #1197 PR #1199。
• 稳定性与安全性继续加固：修复任务 API ownership 泄露问题 PR #1182，统一 stale lock 处理并补充 ownership checks PR #1171，修复 ZIP 乱码 PR #1173、embedder dimensions 透传 PR #1183、语义 DAG 增量更新缺失 summary 场景 PR #1177 等问题。

Upgrade Notes

• OpenClaw 插件安装器不再写入 gateway.mode。如果你之前依赖安装流程自动改写该配置，升级后需要改为显式管理，见 PR #1149。
• 如果你使用 --with-bot 进行安装或启动，失败时现在会直接返回错误码；依赖“失败但继续执行”行为的脚本需要同步调整，见 PR #1175。
• 如果你接入 OpenAI Dense Embedder，自定义维度参数现在会正确传入 embed()；此前依赖默认维度行为的调用方建议复核配置，见 PR #1183。
• ov status 现在会展示 embedding 与 rerank 模型使用情况，便于排障与环境核对，见 PR #1191。
• 检索侧曾尝试加入基于 tags metadata 的 cross-subtree retrieval PR #1162，但已在本版本窗口内回滚 PR #1200，因此不应将其视为 v0.3.3 的最终可用能力。
• litellm 依赖范围更新为 >=1.0.0,<1.83.1，升级时建议同步检查锁文件与兼容性，见 PR #1179。

What's Changed

Benchmark, Eval, CLI, and Writing

• 新增 RAG benchmark 系统评测框架，PR #825 by @sponge225
• 优化 CLI chat endpoint 配置优先级，PR #1143 by @ruansheng8
• 新增 OpenClaw 的 LoCoMo eval 脚本与 README，PR #1152 by @yeshion23333
• 新增内容写入接口，PR #1151 by @zhoujh01
• ov cli grep 新增 --exclude-uri / -x 选项，PR #1174 by @heaoxiang-ai
• 更新 rerank 配置文档，PR #1138 by @ousugo

OpenClaw Plugin, OpenCode Plugin, Bot, and Console

• 刷新 OpenClaw 插件架构文档并补充图示，PR #1145 by @qin-ctx
• 修复 OpenClaw 插件安装器不应写入 gateway.mode，PR #1149 by @LinQiang391
• 处理 OpenViking 故障时不再阻塞 OpenClaw，PR #1158 by @wlff123
• 新增 OpenClaw 插件端到端 healthcheck 工具，PR #1180 by @wlff123
• 新增 bypass session patterns 支持，PR #1194 by @Mijamind719
• 修复 OpenCode 插件在当前 main 上恢复 stale commit state 的问题，PR #1187 by @13ernkastel
• 新增 Bot 单通道（BotChannel）集成与 Werewolf demo，PR #1196 by @yeshion23333
• console 支持 account user agentid，PR #1198 by @zhoujh01

Sessions, Retrieval, Parsing, and Resource Import

• 支持创建 session 时指定 session_id，PR #1074 by @likzn
• 修复 reindex 时 memory context_type 的 URI 匹配逻辑，PR #1155 by @deepakdevp
• ZIP 下载在可用时使用 GITHUB_TOKEN，PR #1146 by @jellespijker
• 统一异步 commit API 文档与示例，PR #1188 by @qin-ctx
• 目录导入时改善用户体验与正确性，PR #1197 by @yangxinxin-7
• 修复扫描 warning 契约与 Python SDK 默认值，PR #1199 by @yangxinxin-7
• 新增 .inl 文件扩展名支持，PR #1176 by @myysy
• 修复 semantic DAG 增量更新时 summary 缺失场景，PR #1177 by @myysy
• 引入 tags metadata 的 cross-subtree retrieval 尝试，PR #1162 by @13ernkastel
• 回滚 tags metadata 的 cross-subtree retrieval 变更，PR #1200 by @zhoujh01

Stability, Runtime, and Security

• 新增 OpenClaw 插件大规模单测套件，PR #1144 by @huangxun375-stack
• 新增 tests/ut/e2e 端到端测试，PR #1154 by @huangxun375-stack
• 新增 OpenClaw2OpenViking 集成测试与 CI 流水线，PR #1168 by @kaisongli
• Windows 上因 FUSE 兼容性问题跳过 filesystem tests，PR #1156 by @kaisongli
• 统一 stale lock 处理并增加 ownership checks，PR #1171 by @qin-ctx
• 修复 ZIP 文件乱码问题，PR #1173 by @zhoujh01
• --with-bot 失败时改为显式退出并返回错误，PR #1175 by @MaojiaSheng
• 修复 OpenAI Dense Embedder 未透传 dimensions 的问题，PR #1183 by @LinQiang391
• 修复 Task API ownership 泄露安全问题，PR #1182 by @13ernkastel
• ov status 现在展示 embedding 与 rerank 模型使用情况，PR #1191 by @MaojiaSheng

Build and Dependencies

• 更新 litellm 依赖范围到 >=1.0.0,<1.83.1，PR #1179 by @dependabot[bot]
• 升级 actions/cache 从 4 到 5，PR #1178 by @dependabot[bot]

New Contributors

• @ruansheng8 made their first contribution in PR #1143
• @jellespijker made their first contribution in PR #1146
• @heaoxiang-ai made their first contribution in PR #1174
• @ousugo made their first contribution in PR #1138

Full Changelog: v0.3.2...v0.3.3

What's Changed

• Feat(benchmark): Add benchmark/RAG : RAG system evaluation framework by @sponge225 in #825
• docs(openclaw-plugin): refresh architecture guides with diagrams by @qin-ctx in #1145
• fix(openclaw-plugin): stop writing gateway.mode from installers by @LinQiang391 in #1149
• test(openclaw-plugin): add comprehensive UT suite under tests/ut/ (27… by @huangxun375-stack in #1144
• feat(cli): improve chat endpoint configuration priority by @ruansheng8 in #1143
• feat(eval): add locomo eval scripts for openclaw and readme by @yeshion23333 in #1152
• add e2e test under tests/ut/e2e by @huangxun375-stack in #1154
• Handle OpenViking outages without blocking OpenClaw by @wlff123 in #1158
• fix(ci): skip filesystem tests on Windows due to FUSE compatibility by @kaisongli in #1156
• feat(write): add content write interface by @zhoujh01 in #1151
• fix(summarizer): use correct URI matching for memory context_type during reindex by @deepakdevp in #1155
• fix(parser): use GITHUB_TOKEN for ZIP downloads if available by @jellespijker in #1146
• feat: Add OpenClaw2OpenViking integration tests with CI pipeline by @kaisongli in #1168
• fix(transaction): unify stale lock handling with ownership checks by @qin-ctx in #1171
• fix(zip): Fix garbled characters by @zhoujh01 in #1173
• fix: exit with error if --with-bot fail by @MaojiaSheng in https://gi...

v0.3.2

What's Changed

• Chore/pr agent ark token billing by @qin-ptr in #1117
• Fix HTTPX recognition issue with SOCKS5 proxy causing OpenViking crash by @wlff123 in #1118
• refactor(model): unify config-driven retry across VLM and embedding by @qin-ctx in #926
• fix(bot): import eval session time by @yeshion23333 in #1121
• docs(examples): retire legacy integration examples by @qin-ctx in #1124
• fix(ci): skip filesystem tests on Windows due to FUSE compatibility by @kaisongli in #1111
• docs(docker): use latest image tag in examples by @qin-ctx in #1125
• upload the new wechat group qrcode by @yuyaoyoyo-svg in #1127
• Unify test directory in openclaw-plugin by @wlff123 in #1128
• docs(guides):Add concise OVPack guide in Chinese and English by @sponge225 in #1126
• docs(guides): reorganize observability documentation by @qin-ctx in #1130
• fix(installer): fall back to official PyPI when mirror lags by @qin-ctx in #1131
• feat(docker) add vikingbot and console by @zhoujh01 in #1134
• fix(vlm): rollback ResponseAPI to Chat Completions, keep tool calls by @chenjw in #1137
• feat(openclaw-plugin): add session-pattern guard for ingest reply assist by @Mijamind719 in #1136

Full Changelog: v0.3.1...v0.3.2