OpenClaw 2026.3.2 Release: Production Secrets, PDF Tool, and Safer Defaults
What Changed in OpenClaw 2026.3.2
OpenClaw 2026.3.2 is a feature release focused on security, tooling, and developer experience. The update makes several practical improvements to how agents handle sensitive data, process documents, and operate safely by default.
Key Features and Changes
Production-Grade Secrets System
- SecretRef support now covers 64 credential targets including Stripe, Slack, and GitHub
- Unresolved secret references now fail fast instead of breaking mid-run
- New workflow:
openclaw secrets audit→ fix →openclaw secrets reloadwithout restarting the gateway
First-Class PDF Tool
- Native support for Anthropic and Google models
- Extraction fallback for other models
- Configurable page and size limits
- Built-in routing and validation
Practical applications mentioned: summarizing contracts by party, comparing research paper methodologies, and creating structured response outlines from RFPs.
Unified Outbound Adapter
- Discord, Slack, WhatsApp, Zalo, and Telegram now share a single
sendPayloadadapter - Telegram streaming defaults to "partial" instead of "off" for new setups
- Live typing previews work out of the box with zero configuration
Safer Defaults for New Installs
- New installations default
tools.profileto "messaging" — no filesystem or shell access unless explicitly opted in - ACP dispatch enabled by default
- Plugin HTTP routes now require explicit authentication
For Plugin/Skill Builders
session_startandsession_endhooks now includesessionKey- New hook events:
message:transcribedandmessage:preprocessed api.runtime.stt.transcribeAudioFile(...)— transcribe local audio through configured providerschannelRuntimeexposed onChannelGatewayContext— build new channels without internal imports
Other Notable Updates
openclaw config validate --json— lint configuration before startup- MiniMax-M2.5-highspeed is now first-class — cheaper fast model option for rote tasks
- Ollama embeddings work for memory search — long-term memory can stay fully local
- Diff tool can export as PDF with quality/scale controls
The release addresses common pain points for developers integrating OpenClaw into production workflows, particularly around credential management and document processing.
📖 Read the full source: r/openclaw
👀 See Also
Claude Code 2.1.76 adds MCP elicitation, worktree improvements, and fixes for context limits
Claude Code version 2.1.76 introduces MCP elicitation support for structured input during tasks, adds worktree.sparsePaths for large monorepos, and fixes 'Context limit reached' errors on 1M-context sessions. Version 2.1.75 made 1M context windows default for Opus 4.6 on Max, Team, and Enterprise plans.
Anthropic enforces policy: third-party Claude harnesses no longer covered by subscription limits
Anthropic is enforcing a policy change effective April 4 where third-party harnesses like OpenClaw no longer draw from Claude subscription usage limits, requiring users to turn on extra usage or cancel by April 9 for a refund.
Claude's Five-Seat Minimum Creates Privacy Gap for Solo Practitioners
Anthropic's business-tier privacy protections require a five-seat minimum, forcing solo practitioners to either pay for empty seats or use consumer plans with inadequate privacy terms. This gap contrasts with Google Workspace and OpenAI Business Plans, which offer enterprise-grade privacy at single-seat pricing.
Microsoft's BitNet Enables 100B Parameter LLM Inference on Single CPU
Microsoft's open-source BitNet project achieves 100B parameter LLM inference at 5-7 tokens/second on a single CPU, with the 2B parameter model using 0.4GB memory and 29ms latency while matching full-precision models on benchmarks.