Input Guard is a coherent defensive scanner, but it needs Review because optional LLM scanning can use locally configured OpenClaw gateway API keys and send scanned text to external providers without clear top-level disclosure.
Install only if you are comfortable with a defensive scanner that has optional networked modes. Use the default pattern-only mode for sensitive private content. Avoid --llm, --llm-only, or --llm-auto unless you accept sending scanned text to the selected LLM provider and potentially using API keys already configured in OpenClaw gateway. Enable channel alerts and MoltThreats reporting only for destinations where sharing source URLs and detection details is acceptable.