Context-Inappropriate Capability
Medium
- Confidence
- 95% confidence
- Finding
- The plugin reads a local OpenClaw session transcript file from a user/home-scoped path and forwards matching message content to QQ. Even if this is the stated bridge behavior, accessing transcript/session artifacts creates a privacy and data-boundary risk because it can expose local conversation data and silently exfiltrate content across platforms without strong scoping, consent, or validation.
