Summary

Describe the problem and fix in 2–5 bullets:

• Problem: The sanitizeSurrogates() utility in @mariozechner/pi-ai mutates Anthropic thinking blocks, which breaks cryptographic signatures during conversation history replay and causes session stalls.
• Why it matters: Users with long-running sessions (e.g., heartbeat agents) experience permanent data corruption when compacted context is saved with invalid signatures.
• What changed: Added a boot-time runtime patch in openclaw.mjs. This dynamically removes the sanitizer wrapper using regex before the app boots.
• What did NOT change (scope boundary): Sanitization remains active for standard text blocks and system prompts where signature integrity isn't a factor.

Change Type (select all)

• Bug fix
• Feature
• Refactor
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Closes sanitizeSurrogates() corrupts thinking block content before API replay #27825

User-visible / Behavior Changes

List user-visible changes (including defaults/config).
Displays patch applied message on boot when debug mode (OPENCLAW_DEBUG=1) is enabled, and prints a helpful warning if file permissions block the patch.

Security Impact (required)

• New permissions/capabilities? No
• Secrets/tokens handling changed? No
• New/changed network calls? No
• Command/tool execution surface changed? No
• Data access scope changed? No

Repro + Verification

Environment

• OS: WSL
• Runtime/container: pnpm (Node.js)
• Model/provider: Anthropic
• Integration/channel (if any): Telegram/OpenClaw session replay

Steps

1.Enable "Extended Thinking" for a Claude-based assistant.
2.Generate a response that includes a reasoning trace (thinking block).
3.Send a follow-up message to trigger a history replay.

Expected

-The session continues normally as the thinking block is sent back to the API unmodified.

Actual

-The API returns an error or stalls because the thinking block content was mutated by the surrogate sanitizer, breaking the signature.

Human Verification (required)

What you personally verified (not just CI), and how:

• Verified scenarios: Manually verified that the patch runs and has desired effects.
• Edge cases checked: Verified that standard text blocks still undergo sanitization.
• What you did not verify: Did not verify performance overhead (should be negligible).

Compatibility / Migration

• Backward compatible? Yes
• Config/env changes? No
• Migration needed? No
• If yes, exact upgrade steps: None. Automatic execution on initiation and works universally

Failure Recovery (if this breaks)

• How to disable/revert this change quickly: Remove the applyAnthropicThinkingPatch() block from the top of openclaw.mjs.
• Known bad symptoms reviewers should watch for: If the upstream pi-ai library drastically rewrites its file structure or code in a future update, the Regex won't match. The patch will safely skip itself without crashing, but users will revert to the "stalled session" bug. Reviewers can watch the boot logs for [OpenClaw Patch] Skipped patch: to diagnose.

Risks and Mitigations

List only real risks for this PR. Add/remove entries as needed. If none, write None.

• Risk: Deployments in strictly read-only environments (e.g., some Docker containers or serverless functions) will block the runtime patch from modifying node_modules.
  -Mitigation: Caught EROFS and EACCES errors in the boot script. It will gracefully skip the patch and log a clear warning rather than crashing the app, leaving the user no worse off than before the PR