Back to plugin

Security audit

Bitrouter Openclaw

Security checks across malware telemetry and agentic risk

Overview

The BitRouter integration is coherent for LLM routing, but it can download and run external installer/binary code and handle provider API keys, so it needs review before installation.

Install only if you trust BitRouter, its GitHub releases, and its installer domain. Consider installing the BitRouter binary manually from a verified source, require approval before using the installer or auth/key tools, keep the service bound to localhost, and review which provider API keys are available in your environment or BitRouter .env file.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.potential_exfiltration

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/binary.js:21
Evidence
const output = execSync(`"${binaryPath}" --version`, {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/bitrouter-cli.js:42
Evidence
execFile(binaryPath, ["--home-dir", homeDir, ...args], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/bitrouter-install-tool.js:29
Evidence
const child = spawn(command, args, { timeout: timeoutMs });

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/bitrouter-tool.js:106
Evidence
execFile(binaryPath, ["--home-dir", homeDir, ...args], { timeout: timeoutMs }, (err, stdout, stderr) => {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/index.js:157
Evidence
const result = spawnSync(binaryPath, ["--home-dir", state.homeDir, "init"], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/service.js:84
Evidence
const child = spawn(binaryPath, ["--home-dir", state.homeDir, "serve"], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/setup.js:41
Evidence
const result = spawnSync(binaryPath, ["--home-dir", homeDir, "auth", "login"], { stdio: "inherit" });

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/binary.ts:31
Evidence
const output = execSync(`"${binaryPath}" --version`, {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/bitrouter-cli.ts:52
Evidence
execFile(

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/bitrouter-install-tool.ts:40
Evidence
const child = spawn(command, args, { timeout: timeoutMs });

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/bitrouter-tool.ts:132
Evidence
execFile(

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/index.ts:190
Evidence
const result = spawnSync(

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/service.ts:127
Evidence
const child = spawn(binaryPath, ["--home-dir", state.homeDir, "serve"], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/setup.ts:55
Evidence
const result = spawnSync(

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
tests/integration.test.ts:32
Evidence
process.env.HOME ?? "/tmp",

Sensitive-looking file read is paired with a network send.

Warn
Code
suspicious.potential_exfiltration
Location
tests/integration.test.ts:1
Evidence
/**