OpenClaw: exec removed from Agent after update

exec disappeared and became not accessible because the tool profile switched to a restrictive mode.

Root cause

tools.profile was set to:

JSON

"tools": { "profile": "messaging" }

messaging does not expose broad runtime tools like exec.

The tools.profile can be set in openclaw.json, which is usually located in ~/.openclaw/openclaw.json

Official breaking reference

OpenClaw release notes document this change:

• v2026.3.2 (Breaking): default onboarding profile switched to messaging:

➡️ https://github.com/openclaw/openclaw/releases/tag/v2026.3.2

Fix

Switch profile back to broader access and define exec:

JSON

"tools": {
  "profile": "full",
  "allow": ["*"],
  "exec": { "host": "gateway", "security": "full", "ask": "off" }
}

Security warning

full is convenient but increases risk (prompt abuse, larger blast radius, broader data access).

Better approach (recommended)

Use granular policy instead of all-or-nothing:

• base profile + selective allow/deny
• per-agent profile override when needed

References

https://docs.openclaw.ai/tools

https://docs.openclaw.ai/gateway/security

Cheers!