Release Notes
NVIDIA NemoClaw is available in early preview starting March 16, 2026. Use this page to track the highlights of the latest release. For more detailed release notes, refer to the NemoClaw GitHub announcements.
v0.0.76
NemoClaw v0.0.76 adds opt-in OTLP observability and a dedicated documentation guide for LangChain Deep Agents Code, makes Nemotron 3 Ultra the managed NVIDIA Endpoints default for Deep Agents Code, contains shared-gateway inference-route conflicts, and improves upgrade recovery, MCP diagnostics, local inference, messaging, and day-two commands.
- LangChain Deep Agents Code now defaults to
nvidia/nemotron-3-ultra-550b-a55bfor NVIDIA Endpoints and uses the native Nemotron 3 Ultra profile from hash-locked Deep Agents Code0.1.34. Managed interactive sessions preserve the optional first-run name prompt while skipping dependency and model selection, and existing sandboxes should be rebuilt after upgrading. The docs site now publishes a dedicated Deep Agents guide. For more information, refer to Quickstart with LangChain Deep Agents Code and NemoClaw Inference Options. - Deep Agents sandboxes can opt into backend-neutral OTLP/HTTP tracing during onboarding or rebuild with
--observability. The managed exporter sends bounded model and tool content only to a fixed host-local receiver, while an operator-managed collector holds remote backend credentials and controls forwarding. Treat exported trace content as sensitive application data. For more information, refer to Quickstart with LangChain Deep Agents Code, Credential Storage, and Network Policies. - Shared OpenShell gateways now reject inference-route changes that conflict with another registered sandbox, including stopped sandboxes.
Compatibility checks cover provider, model, normalized custom endpoint, API family, legacy metadata, and gateway binding before onboarding,
inference set, or connect-time repair changes state.inference setalso accepts onboarding provider aliases and gives actionable model-only and Deep Agents re-onboarding guidance, while OpenClaw onboarding validates Anthropic-compatible streaming event sequences by default. For more information, refer to Switch Inference Providers, NemoClaw Inference Options, and Troubleshooting. - Installer upgrades require a fresh backup of every registered sandbox before replacing the gateway. Pre-fingerprint OpenClaw and Hermes sandboxes can recover only after exact-name managed-image confirmation, recorded custom-image cases remain blocked, and successful recovery restores the recorded provider and route without starting generic onboarding. For more information, refer to Manage Sandbox Lifecycle, NemoClaw CLI Commands Reference, and Credential Storage.
- Startup and onboarding recover more bounded local drift.
OpenClaw can bootstrap the same-device CLI pairing request when device listing is itself pairing-gated, startup safely reclaims an exact root-owned mutable-config posture while rejecting ambiguous states, and interrupted resumable onboarding points to
onboard --resume. For more information, refer to Security Best Practices, Troubleshooting, and NemoClaw CLI Commands Reference. - Managed MCP diagnostics can now verify OpenShell credential replacement at the wire boundary.
mcp addand single-servermcp statusrun a gated differential probe and report verified or inconclusive credential resolution without capturing endpoint response bodies;--probeand--no-probecontrol the check. For more information, refer to Set Up MCP Servers and NemoClaw CLI Commands Reference. - Managed local inference enables automatic tool choice with the
qwen3_coderparser for the generic-Linux Nemotron 3 Nano vLLM default. Linux arm64 DGX Spark and DGX Station onboarding warns that some NIM images may lack an arm64 manifest, and troubleshooting now distinguishes direct sandbox DNS limitations from policy-covered inference, messaging, and search health. For more information, refer to Use a Local Inference Server, NemoClaw Inference Options, and Troubleshooting. - Messaging setup handles more runtime and installation edge cases.
OpenClaw WhatsApp pairing renders a terminal QR code with a four-module quiet zone, Teams plugin installation tolerates verbose npm metadata, and newly generated OpenClaw config no longer references the uninstalled
qqbotplugin. For more information, refer to Messaging Channels. - Day-two commands behave more predictably in automation and across agents.
Non-terminal
execcloses stdin unless--stdinexplicitly forwards a pipe, session passthrough selects the sandbox’s native agent binary, resumed Hermes one-shot turns append to the selected session, andgcfinds orphaned gateway-built and locally prebuilt sandbox images. For more information, refer to NemoClaw CLI Commands Reference and Manage Sandbox Lifecycle.
v0.0.75
NemoClaw v0.0.75 upgrades the bundled OpenClaw runtime to 2026.6.10 and improves sandbox upgrade and prepared-backup recovery, custom endpoint inference routing, and local Docker-driver sandbox JWT handling.
- The bundled OpenClaw runtime upgrades to
2026.6.10with reviewed package pins, fail-closed archive and patch validation, safer same-device pairing repair, and stricter rebuild route and credential recovery. For more information, refer to the OpenClaw 2026.6.10 Dependency Review. - Upgrading an existing install now recovers a previously onboarded sandbox instead of failing when the recreated gateway has not yet reconfigured its inference route.
Prepared-backup recovery defers the live route check to authoritative onboarding, which restores and verifies the gateway provider and inference route before sandbox recreation; in-place upgrades recover gateway-orphaned sandboxes, and a same-name
--freshre-onboard preserves the newly selected LangChain Deep Agents Code routing. For more information, refer to NemoClaw CLI Commands Reference and Troubleshooting. - Hermes custom Anthropic-compatible inference now uses the OpenAI frontend, and OpenAI-only agents keep the
/v1base URL when pointed at an Anthropic-compatible endpoint, so switching a managed sandbox to a compatible endpoint routes and reports the provider and model correctly. For more information, refer to NemoClaw Inference Options and Switch Inference Providers. - Local Docker-driver sandbox JWTs now use OpenShell’s non-expiring local contract, which keeps a long-running local sandbox reachable without a manual gateway restart. For more information, refer to OpenShell 0.0.71 Gateway Authentication Review.
- Hermes runtime and managed MCP state reconcile after a runtime change, and Hermes installs accept a pinned base platform digest. For more information, refer to Set Up MCP Servers and NemoClaw CLI Commands Reference.
- OpenClaw local CLI pairing restores its previous connection path so a local sandbox reconnects without re-pairing. For more information, refer to NemoClaw CLI Commands Reference.
v0.0.74
NemoClaw v0.0.74 upgrades the OpenShell policy boundary, adds managed MCP and progressive tool disclosure, strengthens the experimental LangChain Deep Agents Code integration, and improves onboarding, local inference, messaging, recovery, and contributor workflows.
- Stable installs pin OpenShell
0.0.72release artifacts and the supervisor image, adding MCP Streamable HTTP and JSON-RPC request-policy enforcement. Policy mutations read the round-trippable base policy instead of the effective policy, which preserves existing MCP rules without sending provider-composed_provider_*entries back throughpolicy set. For more information, refer to OpenShell 0.0.72 Compatibility Review and Customize the Network Policy. - Managed MCP commands use
add,list,status,restart, andremoveto manage authenticated HTTPS Streamable HTTP servers for OpenClaw, Hermes, and experimental LangChain Deep Agents Code through native OpenShell policy enforcement and provider-backed credential replacement. The LangChain Deep Agents Code rebuild path validates the recorded gateway, route, image, staged build context, and prepared replacement inputs before deleting the previous sandbox, then restores managed MCP state after the recreated runtime is ready. For more information, refer to Set Up MCP Servers, Quickstart with LangChain Deep Agents Code, and the accepted architecture decision. - New sandboxes default to progressive tool disclosure across OpenClaw, Hermes, and LangChain Deep Agents Code, while
--tool-disclosure directrestores the full visible catalog. The selected mode persists through resume and transactional rebuilds, and model-specific compatibility safeguards can keep an incompatible model on direct disclosure. Sandbox-firstinference getandinference setcommands now provide the same route controls as their global forms. For more information, refer to Tool Calling Reliability, Model Capability Audit, and NemoClaw CLI Commands Reference. - LangChain Deep Agents Code now provides managed
status,whoami, andidentitycommands without launching the interactive UI, validates the installed agent version during onboarding, and keeps credential-shaped or tracing configuration out of persisted runtime metadata. Its rebuild path validates recreation before destructive handoff and preserves the managed proxy, tool-disclosure, and MCP boundaries. For more information, refer to Quickstart with LangChain Deep Agents Code, NemoClaw CLI Commands Reference, and Security Best Practices. - Onboarding uses BuildKit prebuilds with bounded progress heartbeats, reuses validated release and source-commit sandbox images, and rejects stale or incompatible image contracts before sandbox creation.
Readiness handling tolerates a bounded run of transient OpenShell
Errorphases, while preflight output distinguishes an unreachable container DNS resolver from one that answers but rejects the query. On Windows on Arm N1X systems, automatic Local Ollama setup treats the integrated GPU as compute-constrained and selectsqwen3.5:9binstead of the 30B and 35B starter models. For more information, refer to NemoClaw CLI Commands Reference, Install OpenClaw Plugins, Use a Local Inference Server, Prepare Windows for NemoClaw, and Troubleshooting. - Messaging configuration now keeps channel policy ownership with the enabled channel, persists selected policy presets through onboarding and rebuilds, reports Telegram mention mode in channel status, and detects credential conflicts before a destructive rebuild starts. For more information, refer to Messaging Channels, Customize the Network Policy, and NemoClaw CLI Commands Reference.
- Day-two commands provide safer recovery and clearer automation behavior.
update --freshcan reinstall the current version, anddestroy --forcecan remove a local record when the OpenShell gateway is unavailable while warning that the sandbox and retained volume may still exist. Failedexeccommands can surface recent policy-denial context, tunnel stop releases its gateway port, WSL keeps a usable loopback dashboard URL, and affected CLI user-error surfaces preserve a nonzero exit status. For more information, refer to NemoClaw CLI Commands Reference, Troubleshooting, and NemoClaw Inference Options. - Contributor workflows now provide idempotent one-command setup, read-only readiness checks, diff-scoped local verification, and validated Git signing configuration while preserving development dependencies during installation. The new agent-runnable value benchmark emits machine-readable and Markdown reports for inference latency and trace-backed sandbox startup without turning advisory timings into a release gate. For more information, refer to the NemoClaw Contributor Guide and NemoClaw Value Benchmark.
v0.0.73
NemoClaw v0.0.73 improves custom endpoint safety, Linux GPU onboarding, agent-aware policy validation, upgrade recovery, LangChain Deep Agents Code inference, and operator documentation.
- Custom endpoint handling now fails closed before downstream handoff when an HTTPS endpoint relies on DNS and NemoClaw cannot pin the validated peer across the OpenShell runtime boundary. Public HTTP endpoints continue to use DNS-pinned IP URLs, and HTTPS IP-literal endpoints remain accepted. For more information, refer to NemoClaw CLI Commands Reference, NemoClaw Inference Options, and Troubleshooting.
- GPU sandbox onboarding now uses OpenShell native GPU injection by default on ordinary native Linux hosts with usable CDI. Docker Desktop WSL and Jetson/Tegra retain the compatibility path, which preserves the OpenShell supervisor boundary, captures bounded redacted diagnostics, and attempts rollback when a recreated container fails. For more information, refer to NemoClaw CLI Commands Reference, Troubleshooting, and Use a Local Inference Server.
- Messaging policy presets now respect agent support before
policy-addchanges state. Terminal runtimes such as LangChain Deep Agents Code reject unsupported channel presets before endpoint disclosure or confirmation, matching the existingchannels addboundary. For more information, refer to NemoClaw CLI Commands Reference, Messaging Channels, and Platform Support and Launch Claims. - Pre-upgrade backups can skip a running sandbox whose in-sandbox SSH endpoint is unreachable when
NEMOCLAW_SKIP_UNREACHABLE_SANDBOX_BACKUP=1is set. Installer-driven upgrades restore skipped sandboxes from the latest validated backup, while standalonebackup-allruns only skip the failure and do not schedule a restore. Any uncommitted state since the latest successful backup is not preserved. For more information, refer to NemoClaw CLI Commands Reference, Manage Sandbox Lifecycle, and Host Files and State. - LangChain Deep Agents Code now reaches
inference.localthrough the managed OpenShell proxy across interactive, login-shell, direct-exec, and connect-probe paths. The runtime normalizes proxy environment state, clears inherited bypass settings, and keeps credential-shaped values out of persisted proxy configuration. Rebuild existing LangChain Deep Agents Code sandboxes after upgrading so they receive the corrected image scripts. For more information, refer to Quickstart with LangChain Deep Agents Code and Troubleshooting. - Setup and recovery guidance now covers the Docker CLI requirement for Homebrew Colima, Cursor terminal restrictions on Windows, stale Kubernetes namespace cleanup, OpenShell and OpenClaw gateway startup order, and stopped-container recovery.
The new Host Files and State reference explains files under
~/.nemoclaw/and which registry and backup state uninstall preserves. For more information, refer to Prerequisites, Prepare Windows for NemoClaw, Host Files and State, and Troubleshooting.
v0.0.72
NemoClaw v0.0.72 improves installer recovery, sandbox diagnostics, inference setup, credential handling, and custom policy safety.
- Installer and upgrade flows now recover eligible non-Ready sandboxes before generic onboarding.
The installer runs
backup-allwhen available, runsupgrade-sandboxes --auto, restores only validated latest backups with matching sandbox identity and managed-image provenance, and exits before onboarding if any eligible recovery is blocked or fails. For more information, refer to NemoClaw Quickstart with OpenClaw and Manage Sandbox Lifecycle. - Day-two commands provide clearer diagnostics before work reaches a lower-level failure.
channels statusprints a compact summary for configured channels and non-secret rendered-config comparisons,credentials addregisters provider credentials by provider name and type,statusseparates host inventory from per-sandbox health,execrejects newline-containing arguments with recovery guidance, and connect shells point policy-denial failures at logs. For more information, refer to NemoClaw CLI Commands Reference and Troubleshooting. - Inference setup and model switching fail with safer context. NVIDIA Endpoints onboarding uses a public featured-model catalog with safe bundled fallback behavior, provider-not-found errors list registered providers and point back to onboarding, Hermes Provider endpoint URLs are validated before credentials are dispatched, and curl-based probes keep API keys out of process arguments. For more information, refer to NemoClaw Inference Options, Switch Inference Providers, and Security Best Practices.
- Custom policy and sandbox credential boundaries are tighter.
User-supplied custom presets reject
allowed_ipsexcept the explicit host bridge, OpenClaw processes receiveAWS_EC2_METADATA_DISABLED=true, Hermes runtime configuration output masks API key fields, andexecrestores mutable OpenClaw config permissions after one-shot commands. For more information, refer to Customize the Network Policy, Security Best Practices, and NemoClaw CLI Commands Reference. - Runtime repair covers more sandbox-specific drift. OpenClaw gateway watchdog exits respawn the gateway instead of ending PID 1, Hermes upgrade checks compare agent versions in the Hermes runtime scheme, Tavily access is restored for managed Python workflows, and prompt-stdin EOF during onboarding is treated as cancellation. For more information, refer to Manage Sandbox Lifecycle, Common NemoClaw Integration Policy Examples, and NemoClaw CLI Commands Reference.
v0.0.71
NemoClaw v0.0.71 improves gateway recovery, OpenShell gateway authentication, policy provenance, uninstall safety, Windows bootstrap diagnostics, messaging behavior, and inference guidance.
- Gateway lifecycle operations use a host-mediated control path for built-in OpenClaw and Hermes sandboxes.
recoverandgateway restarttarget the supervised gateway through the supported topology controller, re-check forwards after replacement, preserve explicit runtime model overrides during OpenClaw reconciliation, and write guard-chain recovery warnings into the gateway log for crash-loop diagnosis. For more information, refer to Manage Sandbox Lifecycle, NemoClaw CLI Commands Reference, Troubleshooting, and Trusted Computing Base. - OpenShell 0.0.71 is the validated gateway release for this train. NemoClaw generates local TLS, mTLS, and sandbox JWT material for Docker-driver gateways, keeps gateway binds on loopback while JWT auth is active, and documents the explicit compatibility-container boundary for older trusted Linux hosts. For more information, refer to OpenShell 0.0.71 Review, Security Best Practices, and Troubleshooting.
- Network policy output now explains why active presets are present.
policy-listannotates verified active presets with tier, agent, user-added, or source-unverified provenance; Restricted onboarding suppresses agent-required preset additions; the Balanced tier no longer includesweather; and theweatherpreset covers read-onlywttr.inlookups when you add it explicitly. For more information, refer to Network Policies, NemoClaw CLI Commands Reference, and Common NemoClaw Integration Policy Examples. - Day-two maintenance paths are more explicit.
nemo-deepagents uninstall --destroy-user-dataprovides a visible full-purge flag while keeping--yesnon-destructive for preserved user data, custom Dockerfile onboarding documents cold and warm build-cache behavior, and host-side OpenClawagentdispatch warns on stderr when a recent shields auto-relock may explain a failed one-shot command. For more information, refer to Manage Sandbox Lifecycle and NemoClaw CLI Commands Reference. - Messaging and inference setup have clearer runtime defaults and selection guidance. Microsoft Teams channel setup uses final-message delivery by default and runtime mention hints, non-interactive Ollama setup refuses unsafe loopback rewrites when sudo evidence is unavailable, compatible local endpoint docs explain the default chat-completions path, and the inference guide adds model task-fit and capability-audit guidance. For more information, refer to Messaging Channels, Use a Local Inference Server, NemoClaw Inference Options, and Model Capability Audit.
- Windows setup output is safer to share during troubleshooting. The Windows bootstrap redacts PowerShell transcript metadata and temporary paths from WSL install output, and it asks for a reboot only when WSL reports one is required. For more information, refer to Prepare Windows for NemoClaw and Troubleshooting.
v0.0.70
NemoClaw v0.0.70 completes the E2E migration and improves day-two operation, inference setup, messaging repair, Windows bootstrap guidance, and documentation.
- Day-two CLI operations are easier to steer from the host.
nemo-deepagents use <name>selects the default registered sandbox, and mistyped sandbox names now receive the closest registered-sandbox suggestion. For more information, refer to NemoClaw CLI Commands Reference. - Onboarding and inference validation handle more common setup drift.
Docker Desktop gateway bridge checks retry through the short first-start race, OpenAI-compatible endpoints can opt into reasoning-mode validation with
NEMOCLAW_REASONING, and Windows bootstrap failures preserve WSL recovery guidance. For more information, refer to NemoClaw Inference Options, Prepare Windows for NemoClaw, and Troubleshooting. - Messaging and Hermes repair paths carry less stale state forward.
Rebuilds write the effective policy preset set back to the sandbox registry,
channels startreapplies the matching network policy preset before rebuilding, and Hermes image repair removes inherited OpenClaw state from older base layers. For more information, refer to Messaging Channels, NemoClaw CLI Commands Reference, and Troubleshooting. - Documentation now covers the operator workflows added during this release. The OpenClaw quickstart explains the two-terminal network approval workflow, and the messaging guide separates Teams direct-message allowlists from OpenClaw group and channel policy. For more information, refer to NemoClaw Quickstart with OpenClaw, Approve or Deny Agent Network Requests, and Messaging Channels.
- Release validation now runs through one Vitest scenario system. GitHub Actions owns orchestration and reporting, while the scenario runner keeps scheduled failure routing, scorecards, trace-timing summaries, docs validation, and two-agent security-posture coverage in the same selection model.
v0.0.69
NemoClaw v0.0.69 improves sandbox recovery, Deep Agents Code workflows, Hermes messaging, inference setup, policy approval guidance, and release validation.
- Sandbox lifecycle and onboarding flows now preserve state more predictably across destroy, recreate, rebuild, recovery, and validation failures. Destroy wipes persistent workspace and state directories, GPU recreate rolls back failed pre-patch sandboxes, recovery can rediscover live sandboxes when the local registry is empty, and hosted endpoint validation failures keep a nonzero exit status. For more information, refer to Manage Sandbox Lifecycle, Backup and Restore, and Troubleshooting.
- Deep Agents Code workflows now have clearer terminal and CLI behavior.
Session export reports actionable guidance for dash-prefixed arguments, warm-up sessions stay out of normal history,
nemo-deepagentsaliases share a consistent command surface, terminal runtime dispatch and version probes are more accurate, and status reports out-of-memory degradation with useful context. For more information, refer to Quickstart with LangChain Deep Agents Code and NemoClaw CLI Commands Reference. - Deep Agents Code rebuild and snapshot operations now protect more user state.
Skills created with
skill-creatorpersist across rebuilds, the managed Python environment stays onPATH, rebuild warns before dropping user-managed files, and snapshot creation refuses to capture an active Deep Agents Code session. For more information, refer to Workspace Files, Backup and Restore, and Security Best Practices. - Hermes, messaging, and provider switching now use more explicit runtime state. Hermes moves to the 2026.6.19 release line, supported messaging channels come from manifests, invalid channel values fail fast, reused sandboxes refresh stale messaging plans, Hermes preserves Slack-compatible aliases after upgrades, and provider switches retain endpoint, credential, and inference API metadata. For more information, refer to Messaging Channels, NemoClaw Quickstart with Hermes, and Switch Inference Providers.
- Inference setup now handles local and compatible endpoints with tighter validation. DGX Station managed vLLM defaults to DeepSeek V4 Flash, Ollama setup records explicit interaction state, compatible endpoint smoke checks retry only recognized transient failures, and validation redacts sensitive error details. For more information, refer to NemoClaw Inference Options and Use a Local Inference Server.
- Security, policy, and observability paths now report safer runtime state. Auto-restore seals the expected configuration hash, sandbox connect and login apply process and file-descriptor limits quietly, JSON agent failures keep parseable output with provenance warnings, log collection preserves per-source breadcrumbs, and in-sandbox Shields status no longer claims host posture it cannot verify. For more information, refer to Security Best Practices, Credential Storage, NemoClaw CLI Commands Reference, and Monitor Sandbox Activity.
- Documentation and release gates now cover more policy, approval, and live validation paths. The docs include clearer policy round-trip and network-request approval examples, while the live release gates distinguish public NVIDIA API keys from hosted inference keys and exercise Deep Agents Code terminal behavior more directly. For more information, refer to Network Policies, Customize the Network Policy, and Approve or Deny Agent Network Requests.
v0.0.68
NemoClaw v0.0.68 improves onboarding recovery, messaging setup, agent-specific CLI behavior, local inference defaults, and release validation:
- Installer and onboarding paths now stop on real setup failures and recover more cleanly after interrupted runs. Scripted installs propagate onboarding exit codes, interrupted installer runs start fresh when no sandbox exists to resume, and resume behavior stays tied to onboarding sessions with a real sandbox. For more information, refer to NemoClaw Quickstart with OpenClaw and Troubleshooting.
- Messaging setup adds experimental Microsoft Teams channel onboarding for OpenClaw and Hermes, including Bot Framework credentials, webhook forwarding, the
teamsnetwork policy preset, and local webhook port conflict checks. NemoClaw also derives channel availability from each channel manifest’ssupportedAgentsdeclaration and rejectschannels addbefore policy, provider, registry, credential, or rebuild mutations when no channel manifest supports the selected agent. LangChain Deep Agents Code therefore fails closed for messaging until a real channel bridge and matching manifest support land. For more information, refer to Messaging Channels and Platform Support and Launch Claims. - Agent-specific CLI commands now route more accurately and fail earlier with clearer local guidance.
sessions exportroutes by sandbox agent kind, Hermesgateway-tokenpoints users todashboard-url, bare OpenClawagentinvocations print wrapper help locally, and omitted extra-agentworkspaceandagentDirfields use canonical OpenClaw paths. For more information, refer to NemoClaw CLI Commands Reference. - LangChain Deep Agents Code sandboxes now stay alive with a stable entrypoint, use their own product branding, reject unsupported messaging mutations, and preserve the hosted-compatible default model ID without doubling the provider namespace. For more information, refer to Quickstart with LangChain Deep Agents Code, NemoClaw Inference Options, and Platform Support and Launch Claims.
- DGX Spark express install now selects managed local vLLM by default, while hosted NVIDIA inference setup preserves the provider, namespace, and model ID shape used by the compatible endpoint path. For more information, refer to NemoClaw Quickstart with OpenClaw, NemoClaw Inference Options, and Platform Support and Launch Claims.
- Platform-support docs now rely on the canonical support matrix, so users and agents see one source of truth for supported platforms, inference providers, agents, messaging integrations, deployment paths, capabilities, and out-of-scope items. For more information, refer to Platform Support and Launch Claims.
v0.0.67
NemoClaw v0.0.67 improves onboarding recovery, messaging reliability, OpenClaw agent workflows, and AI-agent documentation routing:
- Onboarding and OpenClaw agent operations recover more reliably after interrupted or scripted runs.
NemoClaw keeps repair backstops active when
onboard --resumecontinues from later nonterminal onboarding phases, andagents applyremoves orphan OpenClaw agents without forwarding a delete flag that the OpenClaw CLI rejects. For more information, refer to NemoClaw CLI Commands Reference. - Discord messaging now uses the managed proxy path that OpenClaw accepts. NemoClaw no longer writes a non-loopback per-account Discord proxy, while Telegram keeps its per-account proxy behavior, and WhatsApp policy E2E checks avoid brittle shell-pipeline failures on large policy output. For more information, refer to Messaging Channels.
- AI-agent documentation now uses one compact routing skill instead of generated page-copy skills.
The
nemoclaw-user-guideskill points agents to the docs MCP server,llms.txt, and canonical Markdown routes so the docs site remains the source of truth. For more information, refer to Use NemoClaw Agent Prompts, Docs MCP Server, and Skills with Your AI Coding Agent.
v0.0.66
NemoClaw v0.0.66 improves gateway serving, OpenClaw agent workflows, messaging defaults, local inference setup, and release validation:
- Gateway and recovery paths now fail more clearly while preserving sandbox boundaries. NemoClaw pins OpenClaw gateway hot reload behavior, watches for sustained serving state, auto-detects resumable onboarding sessions, reuses gateway-held NVIDIA credentials during non-interactive recreate flows, enforces the Hermes environment-secret boundary during recovery probes, and hardens temporary-file creation in sandbox helper paths. For more information, refer to Troubleshooting, Manage Sandbox Lifecycle, Credential Storage, and Security Best Practices.
- OpenClaw sandboxes gained new agent workflows.
The release adds the LangChain Deep Agents Code harness,
agents.yamldeclarative multi-agent manifests, liveagents applyreconciliation, and the non-interactivenemo-deepagents <name> agentpassthrough command for automation that needs direct OpenClaw agent access. For more information, refer to Quickstart with LangChain Deep Agents Code, Declarative Multi-Agent Manifest, and NemoClaw CLI Commands Reference. - Messaging setup has clearer OpenClaw Telegram group defaults.
NemoClaw records explicit channel defaults during onboarding, defaults OpenClaw Telegram group access to
TELEGRAM_GROUP_POLICY=open, and lets operators chooseallowlistordisabledwhen they need stricter group behavior. For more information, refer to Messaging Channels. - Day-two CLI operations validate local and sandbox paths earlier.
nemo-deepagents <name> exec --workdir <dir>checks that the sandbox directory exists before running the inner command, anddownload,upload, andsessions exportresolve relative host paths from the caller’s current working directory. For more information, refer to NemoClaw CLI Commands Reference and Workspace Files. - Local inference setup avoids more misleading failures. NemoClaw skips false-negative host verification for local providers when the sandbox-routed endpoint is the source of truth, keeps the first Local Ollama TUI turn under OpenClaw’s compaction budget, and refreshes the DGX Spark Qwen3.6 managed-vLLM recipe to match current model-card guidance. For more information, refer to Use a Local Inference Server and NemoClaw Inference Options.
v0.0.65
NemoClaw v0.0.65 improves gateway recovery, sandbox state restore, local inference setup, and messaging activation:
- Gateway and sandbox recovery now wait for sustained serving state, recover sandboxes whose active gateway has lost its spec, preserve gateway routing state across more rebuilds, and allocate dashboard ports across multiple NemoClaw gateways. For more information, refer to Manage Sandbox Lifecycle and Troubleshooting.
- Rebuild and restore flows preserve more OpenClaw and registry state. Config restore fails closed when a merge cannot be applied safely, reporter-owned model metadata survives rebuild restore, Shields auto-restore locks are re-confirmed after settle, and persisted agents survive registry recovery. For more information, refer to Backup and Restore and NemoClaw CLI Commands Reference.
- Onboarding and inference setup fail earlier with clearer diagnostics.
NemoClaw now handles Docker Desktop WSL CDI injection failures, surfaces silent OpenClaw runtime fallback, preflights managed vLLM model selection before side effects, accepts managed vLLM extra serve arguments, aligns the DGX Spark Qwen3.6 NVFP4 managed-vLLM recipe with NVIDIA’s current model card (
qwen3_xml,--max-model-len 262144,--gpu-memory-utilization 0.4, and no Spark-specific serve environment exports), bounds compatible-endpoint probes, summarizes inference validation failures, and recomputes context windows after runtime model switches. For more information, refer to Troubleshooting, NemoClaw Inference Options, and Switch Inference Providers. - Day-two CLI operations gained safer file and session workflows.
nemo-deepagents <name> download,nemo-deepagents <name> upload, andnemo-deepagents <name> sessions exportwrap the underlying sandbox file transfer and OpenClaw session export paths, while uninstall handles TTY confirmation and model-router teardown more predictably. For more information, refer to NemoClaw CLI Commands Reference and Manage Sandbox Lifecycle. - Messaging activation stores and exposes less credential-adjacent state. NemoClaw avoids logging WeChat QR poll tokens, resolves Discord per-account proxy settings for gateway WebSocket connections, compacts persisted messaging plans, completes manifest-based channel migration, and removes provider credential hashes from sandbox registry entries. For more information, refer to Messaging Channels and Credential Storage.
- Hermes defaults and sandbox compatibility are narrower and easier to recover. The Hermes baseline policy no longer includes GitHub by default, NemoClaw reserves Hermes port
8642across agent variants, and spawned OpenClaw sub-agents dial back through the sandbox interface instead of blocked loopback paths. For more information, refer to Network Policies, NemoClaw Quickstart with Hermes, and Set Up Task-Specific Sub-Agents.
v0.0.64
NemoClaw v0.0.64 improves sandbox restore, onboarding stability, inference routing, messaging setup, and release validation:
- Snapshot restore preserves custom policy presets applied with
policy-add --from-fileorpolicy-add --from-dir, so restored sandboxes keep the custom egress rules that were recorded with the source sandbox. For more information, refer to Backup and Restore and Customize the Network Policy. - OpenClaw onboarding keeps Brave Search pinned to the NemoClaw-managed runtime and preserves the
BRAVE_API_KEYplaceholder through build doctor. Docker-driver gateway health checks now follow the entrypoint path that actually launches the in-container gateway, which avoids misleading health reports on host-gateway setups. For more information, refer to NemoClaw CLI Commands Reference. - Inference routes choose chat completions for providers that do not expose
/v1/responses, including NVIDIA Endpoints, NVIDIA NIM, and Gemini-compatible routes. NemoClaw also adds a targeted Nemotron Ultra 550B compatibility fix for tool-less requests. For more information, refer to NemoClaw Inference Options. - Messaging setup refreshes stale render plans during rebuild, recovers replaced OpenClaw scope-upgrade approvals, and preinstalls Hermes WhatsApp bridge dependencies when the upstream lockfile is present. For more information, refer to Messaging Channels.
v0.0.63
NemoClaw v0.0.63 improves sandbox recovery, OpenClaw configuration restore safety, local inference onboarding, messaging safeguards, and release validation:
- Sandbox lifecycle commands preserve and recover more state.
rebuild --yescan recreate a locally registered sandbox that is missing from a healthy gateway, Docker-driver sandboxes can restart from OpenShell container labels after a host reboot, andupgrade-sandboxesdetects recorded NemoClaw image drift even when the agent version itself matches. For more information, refer to Manage Sandbox Lifecycle. - Snapshot-backed rebuilds preserve OpenClaw configuration more safely. Rebuilds now carry forward user-owned
openclaw.jsonsettings, merge restored config with freshly generated runtime state, and fail when restored config cannot be applied safely. For more information, refer to Backup and Restore. - Onboarding diagnoses host setup and local inference issues earlier. The installer reports unusual Docker daemon access when a Linux user is outside the
dockergroup, host DNS blocks are caught before NVIDIA provider validation, Ollama auth-proxy port conflicts recover during startup, and managed vLLM offers an interactive model picker for supported host profiles. For more information, refer to Use a Local Inference Server. - Messaging and Hermes startup paths enforce clearer runtime boundaries. Slack setup validates Socket Mode credentials and warns or blocks duplicate Slack Socket Mode sandboxes on a shared gateway, while Hermes direct gateway launch keeps environment-secret protections active and handles wrapped gateway arguments. For more information, refer to Messaging Channels.
v0.0.62
NemoClaw v0.0.62 improves onboarding reliability for GPU sandboxes, local inference, gateway pairing, Hermes configuration, and release validation:
- GPU sandbox creation and local inference checks now match the runtime paths agents use. Docker-driver recreation prefers NVIDIA CDI when the host advertises a CDI spec, Jetson/Tegra sandboxes inherit the device-node group needed for CUDA, and local GPU inference is verified through
inference.localfrom inside the sandbox runtime before onboarding reports success. For more information, refer to Use a Local Inference Server. - Onboarding and recovery fail earlier and stay quieter on common host drift. NemoClaw no longer requires
ncfor port readiness checks, clears pending gateway scope approvals after onboard and recover, preserves install-version fingerprints in package installs without.git, and suppresses fresh-sandbox provider cleanup probe noise. For more information, refer to NemoClaw CLI Commands Reference.
v0.0.61
NemoClaw v0.0.61 improves sandbox network visibility, onboarding recovery, Hermes isolation, local inference restart behavior, and release validation:
- Agents and operators can inspect a redacted policy context that lists active presets, allowed host categories, approval paths, and policy drift states. Strict SSRF fetches now route through the sandbox proxy, stale
sandboxes.jsonlocks held by recycled PIDs are reclaimed, and dashboard tool-scope approvals can recover through doctor after sandbox startup. For more information, refer to Customize the Network Policy. - Sandbox hardening now caps open file descriptors at entrypoint, preserves the tunnel service PID directory across restarts, and keeps build-time plugin install state from forcing runtime npm calls offline. NemoClaw also closed coordinated code-scanning findings and consolidated HTTP probe policy handling without changing the operator contract. For more information, refer to Security Best Practices.
- Onboarding and rebuild paths recover more reliably across host and provider drift. ARM64 image-tar upload failures receive a clear classification with an image-reference workaround, rebuild detaches sandbox providers before delete, rebuilt resume snapshots keep session state, and messaging selector key sequences work during onboarding. For more information, refer to NemoClaw CLI Commands Reference.
- Local inference and Hermes setup cover more restart and configuration edge cases. Managed inference hostnames bypass host proxies, managed vLLM restarts after host reboot, DGX Station managed vLLM defaults to
Qwen/Qwen3.6-27B-FP8, Hermes rejects dashboard port collisions during configuration, and Hermes recovery enforces the environment-secret boundary. For more information, refer to Use a Local Inference Server. - Messaging setup gives clearer feedback and stores more deterministic state. Slack now notifies the sender when a channel
@mentionis denied, operator-supplied placeholder keys can be registered during onboarding,messagingPlanpersists into resume state, and channel conflict detection now uses the manifest-plan architecture. For more information, refer to Messaging Channels. - Release validation now runs real shell-boundary assertions through E2E support, includes an opt-in live project, shards CLI coverage, adds a docs-only PR fast path, and trims slow CLI subprocess coverage.
v0.0.60
NemoClaw v0.0.60 improves runtime guidance, sandbox lifecycle reliability, local inference setup, messaging enrollment, and maintainer safeguards:
- OpenClaw runtime guidance stays active without appearing in the visible chat transcript, and sandbox network and filesystem context now tells agents to try allowed in-sandbox actions before reporting them unavailable. OpenClaw device-approval policy also uses the same allowlist and scope behavior during startup and connect. For more information, refer to Architecture.
- Onboarding and sandbox lifecycle paths preserve more host state. NemoClaw uses the package-managed OpenShell gateway user service when available, scopes gateway and dashboard cleanup by sandbox instance, detects Docker-driver sandboxes without writing the local gateway marker, rolls back failed Docker GPU patches, honors
.dockerignorefor custom--from <Dockerfile>contexts, and can skip default workspace-template seeding withNEMOCLAW_MINIMAL_BOOTSTRAP=1. For more information, refer to NemoClaw CLI Commands Reference. - Local inference setup is more predictable across NVIDIA NIM, Ollama, vLLM, DGX Spark, DGX Station, Anthropic-compatible routes, and Hermes. NemoClaw pulls NIM images by platform digest, uses stable managed-vLLM images and updated DGX model profiles, tightens Ollama fit checks, synchronizes Anthropic route metadata, preserves Hermes proxy API-key placeholders, and serves the prebuilt Hermes dashboard assets from the sandbox image. For more information, refer to NemoClaw Inference Options.
- Messaging and day-two CLI operations share more common plumbing. Messaging enrollment uses manifest hooks across Telegram, Discord, Slack, WeChat, and WhatsApp,
nemo-deepagents tunnel statusreports Cloudflare tunnel state directly, globalstatusandlisthonor sandbox environment overrides consistently, and installed OpenClaw skills are mirrored into the agent home directory for session startup. For more information, refer to Messaging Channels. - Policy and secret-handling safeguards cover more edge cases. Non-interactive
NEMOCLAW_POLICY_TIERvalidation fails before side effects, interactive onboarding ignores invalid environment values and prompts normally, safe common egress presets are available where supported, persistent-memory scanning catches additional OpenAI and Slack token shapes, and Hermes remote secrets stay out of sandbox-visible surfaces. For more information, refer to Security Best Practices.
v0.0.59
NemoClaw v0.0.59 improves OpenClaw runtime compatibility, inference setup, credential reuse, messaging safeguards, and sandbox startup diagnostics:
- OpenClaw sandboxes stay aligned with the live gateway and current runtime layout. Sandbox startup reconciles the agent model from the live gateway, refreshes the OpenClaw plugin registry after gateway startup, pins OpenClaw home, state, and workspace paths inside the sandbox, and handles OpenClaw 2026.5.27 approval compatibility. For more information, refer to NemoClaw CLI Commands Reference.
- Inference setup has newer model choices and longer first-start budgets for local runtimes. NVIDIA Endpoints includes the Nemotron 3 Ultra 550B option, Local Ollama uses
qwen3.5:9bas the starter fallback, managed vLLM on DGX Spark uses a 128K context window fornvidia/Qwen3.6-35B-A3B-NVFP4, and Local NVIDIA NIM waits longer for first container startup while still failing fast when the container exits. For more information, refer to NemoClaw Inference Options. - Hermes sandboxes can route Anthropic Messages API traffic through managed inference, and runtime model switches keep the Hermes config synchronized with the OpenShell route. For more information, refer to Switch Inference Models at Runtime.
- Credential and messaging boundaries are clearer during day-two operations. Rebuild and remote-provider update paths can reuse credentials already stored in the OpenShell gateway when the host environment is empty,
channels addwarns or aborts before multiple sandboxes compete for the same token-based messaging credential, andstatusreports cross-sandbox channel overlaps. For more information, refer to Messaging Channels. - Sandbox startup and host preflight failures provide more actionable recovery guidance. NemoClaw heals
~/.nemoclawdirectory and config-file permissions on read paths, detects missing or stale NVIDIA CDI specs before GPU containers fail, probes legacy gateway containers before host-alias operations, and preserves argument validation before runtime probing. For more information, refer to Troubleshooting.
v0.0.58
NemoClaw v0.0.58 improves GPU proof reporting, local-inference metadata, policy failure handling, Hermes messaging reliability, OpenClaw diagnostics, and release-prep documentation:
- GPU and local-inference setup report more accurate state. WSL Docker Desktop on ARM64 can accept a reported NVIDIA GPU only after a bounded Docker CUDA proof succeeds,
nemo-deepagents <name> statusshows whether sandbox CUDA usability is verified, unverified, or failed, managed vLLM uses runtimemax_model_lenmetadata for the baked context window when available, and DeepSeek managed-vLLM startup receives the runtime keyword arguments it expects. For more information, refer to Use a Local Inference Server. - Onboarding and installer failures stop earlier with clearer recovery guidance. The installer checks for
stringsfrombinutilsbefore clone, build, or OpenShell download work; Docker-driver gateway startup fails fast when Docker is unreachable; WSL Docker Desktop diagnostics explain unsupported native Docker-in-WSL routes; Windows-host Ollama detection also checks the installed Windows process when the daemon is stopped; and custom proxy host and port settings are forwarded into the runtime container. For more information, refer to Prerequisites. - Policy and sandbox hardening paths avoid misleading success.
policy-addrefuses to merge a preset when the live policy read returns unparseable output, custom preset application reports when the gateway accepted a preset but the sandbox registry could not record it, andNEMOCLAW_REQUIRE_CAP_DROP=1lets operators make entrypoint capability dropping fail closed. For more information, refer to NemoClaw CLI Commands Reference. - OpenClaw runtime diagnostics can export conversation traces through the
diagnostics-otelplugin. SetNEMOCLAW_OPENCLAW_OTEL=1before onboarding or rebuilding an OpenClaw sandbox to bake the plugin config and apply the local OTLP policy preset. For more information, refer to NemoClaw CLI Commands Reference. - Hermes sandboxes are more reliable across messaging, inference, and startup repair paths. Slack channel rebuilds enable the Hermes Slack platform block,
inference.localroutes include the placeholder API key LiteLLM expects, Telegram pseudo-tool text is normalized only for the active chat platform, the messaging response patch preserves Hermes method binding, retry markers are cleared before explicit command dispatch, and Hermes state repair preserves writable history and background dispatcher behavior in locked runtime state. For more information, refer to Messaging Channels.
v0.0.57
NemoClaw v0.0.57 improves multi-agent command workflows, local inference setup, messaging channel reliability, sandbox diagnostics, policy persistence, and installer pinning:
- OpenClaw sandboxes can manage conversation sessions and secondary agents from the host CLI. Use
nemoclaw <name> sessionsto list sessions, reset a session key through the OpenClaw gateway, or delete a non-main session, and usenemoclaw <name> agents addornemoclaw <name> agents deleteto invoke the in-sandbox OpenClaw agent commands. Build-time config also acceptsNEMOCLAW_EXTRA_AGENTS_JSONso operators can bake validated secondary-agent entries intoagents.listwithout replacing the primarymainagent. For more information, refer to NemoClaw CLI Commands Reference. - Local inference setup is more observable and more resilient. Managed vLLM on DGX Spark defaults to
nvidia/Qwen3.6-35B-A3B-NVFP4, streams Hugging Face model-download progress, polls/v1/modelsfor readiness, and uses a progress-aware Docker pull watchdog. Local Ollama routes request streaming usage metadata so OpenClaw token counters can update, andconnectwarns when the recorded inference route diverges from the live gateway route instead of reverting silently. For more information, refer to Use a Local Inference Server. - Onboarding and re-onboarding preserve more operator intent. Linux Docker-driver onboarding can auto-apply a narrow UFW rule for the sandbox-to-gateway bridge when
NEMOCLAW_AUTO_FIX_FIREWALL=1, verifies host-network local-inference reachability before reporting success, reuses healthy containerized gateways, binds gateway state by port, rolls back a freshly-created sandbox when setup is cancelled at the policy preset step, and carries finalized policy preset selections across later re-onboard runs. For more information, refer to NemoClaw CLI Commands Reference. - Messaging channel setup fails earlier and leaves fewer partial changes. Slack setup validates both Socket Mode tokens before saving credentials,
channels addchecks the matching built-in policy preset before prompting or persisting channel state, failed preset application rolls back staged bridge changes when possible, WhatsApp pairing renders a compact QR code with clearer gateway diagnostics, and Slack runtime placeholders are normalized before OpenClaw starts. For more information, refer to Messaging Channels. - Sandbox status and repair output are more actionable.
nemo-deepagents <name> statusreports Docker daemon, stopped-container, dashboard-port-conflict, and paused-container layers without running misleading inference probes,doctorskips stale Kubernetes-only gateway container checks on Docker-driver installs, and stale local registry entries are preserved so the suggestedrebuild --yesrecovery path still has the metadata it needs. For more information, refer to NemoClaw CLI Commands Reference. - Installer and policy guidance tightened. Piped installs show the correct
NEMOCLAW_INSTALL_TAGplacement and fail clearly when a requested ref is unavailable, thepypipreset allows theuvpackage manager binary, and Jira validation now uses a body-visible Atlassian API probe so operators can distinguish blocked and approved curl traffic. For more information, refer to Common NemoClaw Integration Policy Examples.
v0.0.56
NemoClaw v0.0.56 improves install safety, local-inference validation, messaging diagnostics, sandbox lifecycle reporting, and day-two command behavior:
- Public installer and
nemo-deepagents updateflows now follow the admin-promotedlkgrelease tag by default, so curl-piped installs and update checks target the maintained build while validation catches up to newer semver tags. Non-interactive Linux installs can also reactivate Docker group membership throughsg dockerand continue in the same installer run when that path is available. For more information, refer to Manage Sandbox Lifecycle. nemo-deepagents <name> status,nemo-deepagents <name> connect, andnemo-deepagents upgrade-sandboxesnow probe the live sandbox agent version before deciding whether a rebuild is needed, instead of trusting stale host metadata. Status output reports when the version cannot be verified and points at rebuild when the running agent may predate the current install. For more information, refer to NemoClaw CLI Commands Reference.- GPU Docker-driver local-inference onboarding now verifies that host-network sandboxes can reach the selected Ollama or vLLM health endpoint before onboarding reports success. Failures now include the provider endpoint, container network mode, and recovery guidance, which avoids discovering the broken route only after the first agent prompt. For more information, refer to Use a Local Inference Server.
- Messaging setup is more diagnosable. Slack setup validates both required Slack credentials before enabling the channel, WhatsApp pairing renders a compact scan-friendly QR for OpenClaw sandboxes and separates gateway close errors from QR rendering, and Telegram DM allowlist aliases continue to work for existing automation. For more information, refer to Messaging Channels.
- Command ergonomics are clearer for common day-two paths.
nemo-deepagents inference setwithout both--providerand--modelnow points users to the underlyingopenshell inference setcommand,nemo-deepagents <name> skill remove <skill>removes uploaded skills bySKILL.mdname,nemo-deepagents <name> status --jsonsupports per-sandbox automation, andnemo-deepagents debug --sandboxvalidates explicit sandbox names before writing diagnostics. For more information, refer to NemoClaw CLI Commands Reference. - Policy and sandbox base-image compatibility improved. The
pypipreset allows theuvpackage manager binary, the sandbox base image includestmuxfor OpenClaw’s bundled tmux-session flow, and Jira preset validation docs now use observable status probes. For more information, refer to Common NemoClaw Integration Policy Examples. - Uninstall, rebuild, and snapshot flows protect user state more consistently.
nemo-deepagents uninstallpreserves host-side backups and the sandbox registry by default, rebuilds preserve explicit CPU-only sandbox intent, and snapshot restore blocks ambiguous existing-destination rollbacks unless you opt in with--force. For more information, refer to Manage Sandbox Lifecycle.
v0.0.55
NemoClaw v0.0.55 improves local Ollama onboarding reliability, plugin secret-scanner resilience, and messaging-channel prompt clarity:
- Local Ollama validation retries host-side curl process timeouts with a larger timeout before failing, and Docker runtime detection retries
docker infobefore choosing the local inference route. For more information, refer to Use a Local Inference Server. - The NemoClaw OpenClaw plugin keeps the memory secret scanner active when OpenClaw runs in embedded fallback mode without a usable path resolver. The scanner falls back to literal memory and workspace-relative paths instead of crashing before the first write-tool call. For more information, refer to Security Best Practices.
- The onboarding messaging-channel picker now states that pressing Enter with no channels selected skips messaging setup. For more information, refer to Messaging Channels.
v0.0.54
NemoClaw v0.0.54 updates messaging activation, Windows WSL onboarding, NemoHermes dashboard access, and sandbox repair paths:
- Generated OpenClaw config now marks Telegram, Discord, Slack, and WhatsApp as enabled at the channel level. Selected messaging plugins are pinned during the image build, and
channels addverifies Telegram, Discord, and Slack bridge startup after the rebuild instead of leaving silent channel failures for later debugging. For more information, refer to Messaging Channels. - The Windows bootstrap flow waits for Ubuntu account creation before touching Docker settings, enables Docker Desktop WSL integration for the target distro, avoids changing the global WSL default distro, and adds WSL-specific Docker reachability hints during onboarding. For more information, refer to Prepare Windows for NemoClaw.
- Windows-host Ollama setup inside WSL now requires the Docker Desktop WSL integration path. NemoClaw still shows Windows-host Ollama options when it detects them, but labels the Docker Desktop requirement and blocks unsupported native Docker-in-WSL selections before it tries to start or install Ollama. For more information, refer to Use a Local Inference Server.
- NemoHermes can expose the optional native Hermes web dashboard separately from the OpenAI-compatible API. Set
NEMOCLAW_HERMES_DASHBOARD=1before onboarding to start and forward the dashboard on port9119, withNEMOCLAW_HERMES_DASHBOARD_PORTandNEMOCLAW_HERMES_DASHBOARD_TUIavailable for port and TUI tab control. For more information, refer to NemoClaw Quickstart with Hermes. - Onboarding diagnostics include more copy-paste-ready recovery hints. Invalid sandbox names now include a
Try: <suggested-slug>line when NemoClaw can derive a valid name, and non-interactive NVIDIA Endpoints setup prints the exactexport NVIDIA_INFERENCE_API_KEY=nvapi-...shape when the key is missing. For more information, refer to NemoClaw CLI Commands Reference. - Homebrew stays on the Linuxbrew prefix while exposing installed formula commands in sandbox shell sessions, the
/nemoclawslash command activates at OpenClaw startup again, Hermes rebuilds tolerate older release tarballs that lack optional UI package lockfiles, and device scope-upgrade approvals recover without being pinned to the old gateway-scoped request. For more information, refer to Common NemoClaw Integration Policy Examples. - The host-gateway allowance for OpenClaw
web_fetchis confined to the trusted proxy path, while strict and direct paths continue to block host-gateway names. Hermes Provider onboarding skips the host-side smoke probe only for OAuth-backed setup and keeps direct validation for Nous API key setup. For more information, refer to NemoClaw Inference Options.
v0.0.53
NemoClaw v0.0.53 focuses on safer sandbox recreation, stricter onboarding preflight defaults, local inference reliability, policy coverage, and day-two repair workflows:
nemoclaw onboardbacks up workspace state before deleting an existing sandbox during recreation, including sandboxes that are registered but not ready. If the backup is partial or fails, onboarding aborts before delete so workspace, skills, extensions, identity, memory, messaging state, and credentials are not silently dropped. SetNEMOCLAW_RECREATE_WITHOUT_BACKUP=1only when you intentionally want a fresh workspace.- Under-provisioned container-runtime warnings now default to abort in interactive onboarding. Pressing Enter at the warning stops the run so you can resize Docker Desktop or Colima before the sandbox build stalls. Non-interactive runs continue with a warning, and
NEMOCLAW_IGNORE_RUNTIME_RESOURCES=1still suppresses the check when you have already accepted the resource trade-off. - OpenClaw sandboxes can use the new
openclaw-pricingpolicy preset for model-pricing reference fetches from LiteLLM and OpenRouter. NemoClaw suggests this preset during OpenClaw onboarding so session JSONL records can populateusage.costwithout widening egress beyond the two read-only pricing endpoints. - Local Ollama onboarding is more accurate. NemoClaw validates the
/api/tagsresponse body through the authenticated proxy, honors accepted no-tools overrides through validation and proxy setup, and uses Ollama’s reported runtime context length forcontextWindowunless you setNEMOCLAW_CONTEXT_WINDOW. - Onboarding and gateway reuse recover from more host-runtime drift. NemoClaw recovers stopped gateways before preserving PVC-backed state, verifies gateway containers before reusing port-conflict state, defers Docker-driver gateway teardown until step
[2/8], records Docker-driver sandboxes on macOS, and uses Docker--gpusrather than CDI repair on WSL Docker Desktop. - The sandbox and integration paths handle more common failures cleanly, including Brave Search credential rewrite through OpenShell providers, Telegram placeholder repair, host-gateway
web_fetchrouting, read-only host targets forshare mount, live gateway drift inlist, host-alias Kubernetes invocations, Jetson bridge DNS preflight failures, and non-ready sandboxes during maintenance backups. - Hermes startup no longer treats a fresh root-entrypoint layout as locked state, which avoids false locked-layout detection during sandbox boot.
- Maintainer tooling can export a signed skills catalog, detect untracked files during skills refresh diffs, and run the stale-issue verification workflow added for maintainers.
v0.0.52
NemoClaw v0.0.52 upgrades the bundled OpenClaw runtime, repairs Hermes sandbox startup, restores onboarding ready output, and hardens Slack onboarding, Windows bootstrap, and private-network handling:
- Bundles OpenClaw 2026.5.22 as the NemoClaw runtime target through
OPENCLAW_VERSIONin the NemoClaw Dockerfiles. The runtime upgrade addresses Telegram, Discord, and Slack channel registration issues seen on the 2026.5.18 runtime.nemoclaw-blueprint/blueprint.yamlkeepsmin_openclaw_versionas a compatibility floor for direct blueprint consumers, so the blueprint floor can be lower than the Dockerfile target. Runnemoclaw <name> rebuildto pick up the new OpenClaw runtime in existing sandboxes. - Hermes sandbox startup is more reliable on the v0.14 root entrypoint. NemoClaw precreates
hooks,image_cache,audio_cache, andlogs/curatorunderHERMES_HOME, makes/sandbox/.hermessticky group-writable so thegatewayuser can create runtime state without removing sandbox-owned config files, stops precreating/sandbox/.hermes/gateway.pidas a symlink that Hermes v0.14 treats as a PID race, and clears legacy PID and lock state before launch. nemo-deepagents onboardready output points users atnemo-deepagents <name> dashboard-url --quietagain, restoring the dashboard guidance that regressed during an earlier onboarding refactor.- Slack onboarding validates preconfigured Slack tokens before treating Slack as configured. Invalid
SLACK_BOT_TOKENvalues from the environment or stored credentials no longer cause onboarding to skip the Slack prompt, so the wizard re-prompts for a validxoxb-...token instead of silently advancing with a token Slack cannot use. - The Windows bootstrap script defers first-run Ubuntu account setup to a separate WSL handoff window again, which keeps PowerShell prompt alignment intact during install. The default distro is
Ubuntu-24.04, andbootstrap-windows.ps1 -DistroName Ubuntureuses an existingUbuntudistribution. - The blueprint private-network blocklist reloads when
private-networks.yamlchanges on disk, so long-running NemoClaw processes validate SSRF and private-network rules against the current file instead of stale cached data.
v0.0.51
NemoClaw v0.0.51 improves messaging controls, local inference setup, sandbox diagnostics, policy validation, and onboarding recovery:
- Slack setup now supports channel allowlisting. During onboarding,
channels add slack, and non-interactive rebuilds, setSLACK_ALLOWED_CHANNELSto restrict channel@mentionhandling to selected Slack channel IDs. Combine it withSLACK_ALLOWED_USERSwhen you want both channel and member checks. - Local Ollama setup now detects host installations that are below the minimum supported version and offers an explicit upgrade path. On macOS, NemoClaw uses Homebrew. On Linux, NemoClaw uses the system installer for upgrades and refuses non-interactive upgrade paths that would require a hidden sudo prompt.
- Non-interactive Linux Ollama setup can use a sudo-free user-local install path when passwordless sudo is unavailable. The docs now describe
NEMOCLAW_OLLAMA_INSTALL_MODE, the user-local install trade-offs, and the manualzstdrequirement. - Managed Ollama model selection now uses a memory-aware registry for starter models. If a known bootstrap model does not fit currently available GPU memory, NemoClaw warns and falls back to the largest known model that does fit instead of starting a model that is likely to fail.
nemo-deepagents onboardrestores the managed vLLM menu entry for DGX Spark and DGX Station hosts, which had been hidden after a previous onboard refactor dropped thegpu.platformvalue the vLLM menu builder relies on.nemo-deepagents resourcesandNEMOCLAW_RESOURCE_PROFILEexpose sandbox CPU and memory profiles. Profiles can be selected during onboarding, andNEMOCLAW_CPUorNEMOCLAW_RAMcan override the selected profile for scripted runs.- Cloudflare named tunnels are supported through
CLOUDFLARE_TUNNEL_TOKEN.nemo-deepagents tunnel startpasses the token through the environment and expects the named tunnel route to already point at the dashboard port. - Jira policy validation guidance now matches the maintained preset. Use a Node HTTPS status probe for Atlassian API access and the body-visible
api.atlassian.com/oauth/token/accessible-resourcescurl probe when validating approved requests manually. Plaincurl -sagainstauth.atlassian.comcan return empty output even when reachable, so it is not a pass/fail signal. - Sandbox logs merge OpenClaw gateway output and OpenShell audit events into one stream, and
--tailapplies once to the merged result so policy denials appear beside gateway logs. - Onboarding recovers more cleanly across host and runtime edge cases, including root-owned config sync directories, stale dashboard port allocation, unreachable Docker daemons, stale dashboard forwards, default NVIDIA CDI spec directories, and Linux Docker-driver health checks.
v0.0.50
NemoClaw v0.0.50 focused on onboarding reliability, local inference hardening, messaging diagnostics, and sandbox lifecycle cleanup:
nemo-deepagents onboarddetects DGX Spark hosts where managed Ollama falls back to CPU execution. Local inference setup fails the Ollama validation step with a tailored diagnostic, adds a SparkOLLAMA_LLM_LIBRARY=cuda_v13systemd override when that backend is installed, and enables the managed Linux Ollama service so local inference survives reboot.- Compatible endpoint setup rejects
host.docker.internalinference URLs because OpenShell sandboxes do not have a portable host-service route through that name. Use Local Ollama’s authenticated proxy path or a policy-managed host service instead. - Telegram setup now surfaces BotFather group privacy guidance. Disable privacy mode, then remove and re-add the bot to each group before testing group delivery.
- Maintenance commands recover the OpenShell gateway before retrying sandbox-list operations, which makes rebuild, recover, upgrade, and backup flows more resilient after gateway drift.
- NemoClaw no longer writes proxy hooks into sandbox shell startup files. Local proxy configuration stays on supported OpenShell and NemoClaw paths rather than mutating user shell rc files.
- Windows bootstrap installs Ubuntu 24.04 when WSL is present but no Ubuntu distribution is registered.
v0.0.49
NemoClaw v0.0.49 is a hardening release focused on reliability, clearer diagnostics, OpenClaw compatibility, and stronger validation coverage:
- Gateway failures now fail faster and explain more.
nemo-deepagents statusclassifies gateway probe failures by layer, distinguishing a named gateway port that is not accepting connections, a named gateway that is present but not Connected, the active OpenShell gateway pointing at a different name, and a named gateway that is not configured at all.nemo-deepagents <name> connectexits early with recovery guidance when the OpenShell gateway is down. - Gateway upgrade and fallback paths are more stable. The release hardens older gateway fallback coverage, OpenShell gateway upgrade checks, crash-loop detection tests, and Brev GPU bridge gateway traffic coverage.
- Status and doctor now report a fresh mutable sandbox as not configured instead of
down, andnemo-deepagents <name> logs --tail <lines>is locked in as a NemoClaw line count rather than OpenShell’s follow-flag pun.nemo-deepagents debug --quickreports restricted kernel-log access as a skipped section instead of surfacing rawdmesgpermission errors. - OpenClaw compatibility is more resilient across runtime changes. Kimi mixed tool calls are normalized more consistently, compatible OpenClaw JSON envelope changes are tolerated in tests, and OpenClaw patch drift is easier to classify during image builds.
- Messaging channel removal is now a clean teardown. The sandbox registry and onboard session policy preset state stay in sync so removed presets do not return during later
onboard --resumeor rebuild flows; QR-paired channels also have their durable in-sandbox session directory wiped before the rebuild and removal aborts cleanly when that wipe cannot be confirmed; and~/.nemoclaw/config.jsonis re-synced from the host across every rebuild resume path so the OpenClaw plugin no longer crashes on the Dockerfile placeholder. - Hermes sandboxes apply only the messaging channel policies the operator selects instead of pre-enabling every Hermes messaging provider, and dynamic preset application resolves Hermes-specific policy content so Discord on Hermes no longer falls back to generic Node allowlists.
nemo-deepagents <name> snapshot restore --to <existing-sandbox>now refuses to overwrite an existing destination unless you pass--force, which makes destructive clone restores an explicit opt-in.- Source-checkout installs bootstrap OpenShell when needed before running preflight, so
git clonebased installs can reach the same managed OpenShell setup path as packaged installs. The Linux installer, onboard preflight, and prerequisites docs also explain why NemoClaw needs Docker group membership and the privilege impact of granting it. - NVIDIA NIM preflight rejects WDDM placeholder GPU names on hosts without NVIDIA firmware, and Jetson onboarding refuses sandbox GPU passthrough instead of creating a configuration the sandbox cannot use.
- CLI and E2E coverage cover more real user paths. Missing
channelsarguments now print the correct usage, E2E suites use supported sandbox subcommands, E2E tests build against the full repository CLI, and security-sensitive credential paths have broader coverage. - Release infrastructure now targets Node 24 in GitHub Actions. The E2E advisor also comments with clearer target guidance and waits for required PR checks before deciding.
v0.0.48
NemoClaw v0.0.48 improves onboarding, sandbox builds, local inference, messaging, and day-two sandbox operations:
- Windows WSL onboarding detects Windows-host Ollama through both the HTTP endpoint and a Windows process probe, so the installer can offer start or restart actions even when the daemon is installed but not yet reachable from WSL.
- Onboarding no longer prints a noisy
No active forward foundwarning when it performs best-effort dashboard forward cleanup before rebuilding or recovering a sandbox. nemo-deepagents <name> share mountverifies the requested remote path against the target sandbox name, so probes for non-default sandboxes no longer accidentally inspect the default sandbox.- The OpenClaw plugin tolerates an empty or malformed onboard
config.jsonby falling back to default onboard status instead of failing during startup. - Hermes messaging policies are scoped to Hermes-supported channel behavior, keeping unsupported OpenClaw-specific messaging access out of Hermes sandboxes.
- Onboard session snapshots persist machine-readable state for resume flows, which makes provider and policy decisions more durable across retries.
- DGX Spark GPU sandbox recreation restores the startup path for Hermes by patching Docker GPU state and preserving the marker files the Hermes entrypoint needs.
- Discord messaging routes REST and gateway traffic through the sandbox proxy path, including a loopback proxy for gateway traffic, so Discord channels work through the same policy-controlled egress model as other sandbox traffic.
- Sandbox base images now include Homebrew and a
pythontopython3compatibility symlink, reducing first-run setup for package and script workflows inside the sandbox. - The NemoClaw sandbox image includes a Docker health check so container runtimes can report whether the in-sandbox gateway is responding.
- Sandbox startup resolves workspace template files from the installed package when source-relative files are not available, which helps package installs seed a fresh workspace consistently.
- Installer checksum verification prefers
sha256sumand falls back when needed, improving compatibility on Linux hosts whereshasumis not installed. - VM-driver snapshot health checks now use gateway metadata instead of stale local assumptions, so snapshot operations fail less often after gateway state changes.
v0.0.47
NemoClaw v0.0.47 focused on release hardening and validation coverage:
- The E2E fixture layer gained baseline onboarding coverage for CLI setup, OpenShell gateway creation, sandbox state, inference routing, and smoke tests.
- Messaging provider targets now validate provider attachment, placeholder configuration, secret-leak prevention, bridge reachability, Discord gateway routing, Slack provider state, Telegram injection safety, and token-rotation isolation.
- CLI command registration was refactored so public display defaults stay consistent across sandbox channel, host, log, policy, skill, and snapshot commands.
- PR review advisor automation was added for maintainers, with deterministic GitHub context gathering and structured review comments.
- The release refreshed v0.0.46 documentation, AI-agent docs guidance, navigation, and version metadata.
v0.0.46
NemoClaw v0.0.46 improves Windows setup, messaging channels, Hermes sandboxes, inference routing, and command compatibility:
- Windows users can start from the bootstrap PowerShell script, and WSL installs can accept express install to use the Windows-host Ollama path automatically.
- Messaging channels add WhatsApp support.
channels add whatsapprecords the channel, rebuilds the sandbox, and then pairs through the agent-specific QR command inside the sandbox. nemo-deepagents <name> execruns non-interactive commands inside a running sandbox through OpenShell and exits with the remote command’s status.- Hermes sandboxes can use the managed tool gateway broker for supported tool routes, and Hermes startup recovers its readiness marker more reliably.
- Compatible Anthropic endpoint setup auto-detects Amazon Bedrock Runtime endpoints and starts the local adapter needed for OpenShell routing.
- Local Ollama setup on WSL native Docker now routes through NemoClaw’s authenticated proxy, and subprocesses inherit the proxy bypass settings used by onboarding.
- Model Router setup probes supported host Python interpreters and falls back to the next usable one when virtual environment creation fails.
- The NemoClaw OpenClaw plugin registers the
/nemoclawcommand again after package metadata changes, and sandbox extension backups restore compatibility with current snapshots. - Sandbox builds patch OpenClaw’s tool catalog to reduce startup latency for Nemotron-focused sandboxes.
nemo-deepagents uninstalldocs now show how to pass flags through the hosted install script form.
v0.0.45
NemoClaw v0.0.45 improves onboarding recovery, local inference behavior, channel cleanup, sandbox sharing diagnostics, and uninstall cleanup:
nemo-deepagents onboardhandles GPU setup failures more directly. It can replace a stale CPU-only gateway when doing so is safe, skips GPU advice when you explicitly pass--no-gpu, points working-driver hosts toward NVIDIA Container Toolkit setup, and enforces the 63-character sandbox name limit before names reach OpenShell.- Preflight checks catch more host setup issues before the sandbox build starts. Container DNS probing uses a fresh
.invalidlookup so cached DNS answers do not hide blocked resolver egress, and restrictive checkout file modes no longer make model-specific setup manifests unreadable inside the image. - Local inference setup is more predictable. Managed vLLM accepts
NEMOCLAW_VLLM_MODELfor supported registry slugs and checks Hugging Face tokens before pulling gated models. Ollama-backed sandboxes now enable streamed usage accounting so OpenClaw token counters update after each turn. - Messaging channel removal is a clean inverse of channel add.
nemo-deepagents <name> channels remove <channel>detaches live bridge providers before deleting them and un-applies the matching built-in network policy preset when it was active. nemo-deepagents <name> share mountfails earlier with clearer guidance when the sandbox path cannot be verified or the host mount target is on a read-only filesystem.nemo-deepagents uninstallstops hostopenshell-gatewayprocesses, and subprocesses add IPv6 loopback plus wildcard local bind addresses toNO_PROXYso local traffic stays off forwarded proxies.- Diagnostics and internal command output redact more credential-shaped values and use private temporary directories for generated SSH and config files.
v0.0.44
NemoClaw v0.0.44 improves onboarding reliability, GPU sandbox networking, local inference verification, messaging recovery, and remote dashboard access:
nemo-deepagents onboardhandles DGX Spark and Jetson hosts more conservatively. Unified-memory GPU detection works for Spark, Jetson defaults to CPU-only sandbox passthrough unless you opt in, and local Ollama validation tolerates slow unified-memory model loads that still fit host memory.- Linux Docker-driver GPU sandboxes preserve
host.openshell.internalduring recreation and inject a reachable DNS resolver when the host uses a systemd-resolved loopback nameserver, which keeps local inference and external DNS working after GPU patching. - Onboarding and sandbox builds fail less often on first run. Preflight can guide missing NVIDIA Container Toolkit setup, Docker builds force BuildKit for Dockerfile bind mounts, npm installs retry transient registry resets, and compatible-endpoint onboarding runs a final inference smoke check before reporting success.
nemo-deepagents <name> connectrepairs staleinference.localroutes before opening the shell, reports local Ollama backend and auth-proxy diagnostics when repair fails, and--probe-onlykeeps dashboard and process recovery from failing because inference repair needs follow-up.nemo-deepagents <name> channels add <channel>applies the matching built-in network policy preset before rebuild, and rebuilds preserve paused channel state so stopped messaging channels stay disabled after destroy and recreate.- Remote hosts can opt into dashboard forwarding on all interfaces with
NEMOCLAW_DASHBOARD_BIND=0.0.0.0, and gateway drift checks now stop backup, status, rebuild, recover, and upgrade flows before they trust stale OpenShell state. - Workspace restore uploads backed-up directories file by file, dashboard forwards retry while stopped ports are still releasing, and the in-sandbox OpenClaw gateway respawns after unexpected exits.
v0.0.43
NemoClaw v0.0.43 improves GPU onboarding and uninstall cleanup on Linux Docker-driver hosts:
- The standard installer can repair missing NVIDIA CDI device specs before onboarding by enabling the NVIDIA CDI refresh service, then falling back to direct
nvidia-ctkspec generation when needed. - Linux Docker-driver GPU onboarding handles the Docker flags and sandbox policy needed for NVIDIA GPU proof writes to
/proc/<pid>/task/<tid>/comm, which fixes DGX Spark installs that previously failed with a permission error during direct GPU proof. nemo-deepagents uninstallremoves the Linux gateway state directory under~/.local/state/nemoclaw, including gateway PID, SQLite, audit log, and VM-driver state left by Docker-driver gateways.
v0.0.42
NemoClaw v0.0.42 improves onboarding, status diagnostics, local inference checks, and messaging setup:
nemo-deepagents onboarduses the Docker-driver OpenShell gateway path on macOS and no longer requires VM driver helper assets for standard macOS onboarding.- Dashboard port selection probes occupied ports more thoroughly, including root-owned listeners on macOS, and rolls back a newly-created sandbox if the dashboard forward cannot start after the image build.
nemo-deepagents statusshowsInferenceandConnectedfields for each listed sandbox, and cloudflared service output now distinguishes stopped, invalid PID file, and stale PID states with anemo-deepagents tunnel startrecovery hint.- Local Ollama status and doctor checks now probe the authenticated proxy in addition to the backend, so a broken proxy is reported separately from a healthy
127.0.0.1:11434backend. - Compatible OpenAI endpoint validation retries reasoning-only smoke responses with a larger output budget before classifying the setup as a model output budget problem instead of a route failure.
channels addandchannels removenormalize channel names before saving or rebuilding, andchannels addhints when a matching built-in policy preset exists but is not applied yet.- GPU recovery and uninstall output now use registry-aware recovery commands and clearer gateway removal wording.
- Onboarding applies selected built-in policy presets in a single policy update when possible, while preserving the final live policy and registry state.
- The installer handles unchanged user-local CLI shims idempotently, avoiding duplicate shim-creation messages during install-plus-verify flows.
v0.0.41
NemoClaw v0.0.41 improves Docker-driver onboarding and release compatibility:
nemo-deepagents onboardcan pin fresh OpenShell installs to a published release that fits the blueprint’s tested version range, while retaining the installer fallback when release metadata is unavailable.- Docker-driver gateway startup verifies that sandbox containers can reach
host.openshell.internalbefore reporting the gateway healthy, and Linux firewall failures include a targetedufwremediation. - Local Ollama setup probes sandbox-to-proxy reachability before it commits the inference route, so blocked
11435traffic stops onboarding with a rerun-safe fix instead of leaving a broken route. - Linux Docker-driver GPU onboarding can recreate the OpenShell-managed sandbox container with NVIDIA GPU access and leaves diagnostics plus cleanup guidance when GPU readiness fails.
nemo-deepagents uninstallremoves all installer-managed OpenShell helper binaries unless you pass--keep-openshell.
v0.0.40
NemoClaw v0.0.40 improves onboarding reliability, local inference setup, and sandbox recovery:
nemo-deepagents onboarduses the Docker-driver OpenShell gateway path on macOS with OpenShell 0.0.37, repairs incomplete Docker-driver installs before startup, and installs the platform-specific gateway asset it needs.- The Docker-driver gateway startup check waits for the gateway port to accept TCP connections before it reports the gateway as healthy, and startup failures now include child process exit details.
- Local Ollama setup requires the authenticated reverse proxy token on every native Ollama API route, including
GET /api/tags. - The Linux Ollama install path preflights
zstdbefore running the official installer and explains why each sudo-backed setup step needs elevated privileges. - The onboarding provider menu offers an already-running local vLLM server directly when
localhost:8000responds. Managed vLLM install and start options now appear by default on DGX Spark and DGX Station, while generic Linux NVIDIA GPU hosts remain behind the experimental opt-in. - Policy tier defaults are filtered by active agent support, so presets such as Brave Search are not reapplied to agents that do not support that integration.
nemo-deepagents <name> connectchecks dashboard forward reachability with a TCP probe before it reports a forward as stale.- Sandbox startup captures a known-good OpenClaw config baseline and restores it on restart if
/sandbox/.openclaw/openclaw.jsonbecomes empty. - The NemoClaw OpenClaw plugin package declares compatibility metadata for OpenClaw package tooling.
v0.0.39
NemoClaw v0.0.39 improves several day-two workflows:
- The installer checks Docker earlier on Linux, can install and start Docker when needed, and stops with
newgrp dockerguidance when the current shell has not picked up thedockergroup yet. - DGX Spark and DGX Station users can accept an express install prompt that preselects the local inference path and suggested policy defaults.
- NemoClaw now creates GPU-capable OpenShell Docker sandboxes by default when an NVIDIA GPU is available, with explicit
--sandbox-gpu,--no-sandbox-gpu, and--sandbox-gpu-devicecontrols. nemohermessupports Hermes Provider onboarding and runtime model switches throughnemohermes inference set.nemo-deepagents <name> hosts-add,hosts-list, andhosts-removemanage sandbox host aliases for LAN-only services.nemo-deepagents updatechecks and runs the maintained installer flow, whilenemo-deepagents upgrade-sandboxesremains responsible for rebuilding existing sandboxes.nemo-deepagents <name> destroypreserves the shared gateway by default unless--cleanup-gatewayis selected.nemo-deepagents <name> connectrepairs staleinference.localDNS proxy routes before opening the session.- Windows-host Ollama onboarding relaunches the daemon with the reachable binding after install or restart.
- Local NVIDIA NIM onboarding passes
NGC_API_KEYorNVIDIA_INFERENCE_API_KEYinto the managed container without putting the secret in process arguments, detects early container exits during health checks, and prints a per-GPU preflight breakdown on mixed-model hosts. - The sandbox startup path strips additional Linux capabilities before and during privilege step-down.
- OpenClaw workspace template files are seeded when bootstrap is skipped and the workspace is still empty.
- Kimi K2.6 and related NVIDIA-hosted chat-completions paths include model-specific compatibility handling for reasoning output.
v0.0.38
NemoClaw v0.0.38 improves several day-two workflows:
nemo-deepagents <name> statusshows the gateway’s active policy version in the displayed policy YAML when OpenShell reports one.nemo-deepagents uninstallstops matching Local Ollama auth proxy processes before it removes~/.nemoclaw, which prevents stale listeners from blocking a later reinstall.- Local Ollama onboarding validates structured chat-completions tool calls and rejects models that leak tool-call payloads as plain text.
- Blueprint policy additions under
components.policy.additionsare validated, merged into the live policy, applied through OpenShell, and recorded in run metadata. - Rebuild backups tolerate partial archive output when usable data was produced, then report only the manifest-defined paths that could not be archived.
- NemoHermes uninstall output uses NemoHermes-specific help, progress, and completion text.
v0.0.34
Starting with NemoClaw v0.0.34, the curl -fsSL https://www.nvidia.com/nemoclaw.sh | bash installer pipeline no longer auto-accepts the third-party software notice when stdin is piped and /dev/tty is unavailable (for example, deeply detached SSH sessions or some container shells).
In environments without a TTY, accept upfront in the pipe:
Or pass the flag through to the installer:
Or re-run from a terminal with a controlling TTY:
The installer error message in v0.0.35+ surfaces all three invocations directly so users can copy-paste a recovery without leaving the terminal.
Component Version Policy
NemoClaw pins the OpenClaw version inside the sandbox at build time via OPENCLAW_VERSION in the NemoClaw Dockerfiles.
The min_openclaw_version field in nemoclaw-blueprint/blueprint.yaml is the compatibility floor for direct blueprint consumers and may be lower than the NemoClaw runtime target.
Existing sandboxes do not auto-upgrade.
Run nemoclaw <name> status to see the OpenClaw version currently running in a sandbox, and nemoclaw <name> rebuild to pick up a newer pin from a NemoClaw upgrade.
Refer to Checking the OpenClaw version for the full policy.