From f7aaa55f10e241604ddfd5e33eb624cf2defb2da Mon Sep 17 00:00:00 2001 From: tewatia Date: Wed, 28 Jan 2026 00:35:03 +0530 Subject: [PATCH] docs(whatsapp): clarify self-message dmPolicy bypass Self messages from the linked WhatsApp number bypass dmPolicy and allowFrom checks automatically. Clarified that users don't need to add their own number to the allowlist. Self messages from the linked WhatsApp number bypass dmPolicy checks entirely (via isSamePhone check in access-control.ts)... --- docs/channels/whatsapp.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/channels/whatsapp.md b/docs/channels/whatsapp.md index 4759cf4c9..cb37086ae 100644 --- a/docs/channels/whatsapp.md +++ b/docs/channels/whatsapp.md @@ -125,7 +125,7 @@ the prefix (use `""` to remove it). - **DM policy**: `channels.whatsapp.dmPolicy` controls direct chat access (default: `pairing`). - Pairing: unknown senders get a pairing code (approve via `clawdbot pairing approve whatsapp `; codes expire after 1 hour). - Open: requires `channels.whatsapp.allowFrom` to include `"*"`. - - Self messages are always allowed; “self-chat mode” still requires `channels.whatsapp.allowFrom` to include your own number. + - Self messages (from the linked WhatsApp number) automatically bypass `channels.whatsapp.dmPolicy` and `channels.whatsapp.allowFrom` checks — your own number is implicitly trusted. ### Personal-number mode (fallback) If you run Clawdbot on your **personal WhatsApp number**, enable `channels.whatsapp.selfChatMode` (see sample above).