Shell command execution detected (child_process).
- Code
- suspicious.dangerous_exec
- Location
- ui-patch.js:152
- Evidence
const result = spawnSync(process.execPath, ['--check', tempFile], {
Security audit
Security checks across malware telemetry and agentic risk
This appears to do what it claims—show local background reply notifications—but it works by modifying OpenClaw’s webchat UI bundle, which users should understand before installing.
This plugin looks internally consistent: it does not ask for secrets and the visible code only sends visibility state to a local OpenClaw plugin route, not to an outside server. The main thing to consider is whether you are comfortable with it patching OpenClaw’s webchat UI files on disk; that change may remain until restored, overwritten by an update, or manually removed. Also note that desktop notifications will display a short preview of assistant replies, which may expose sensitive chat content on your screen. Confidence is medium because the provided windows-notify.js content is truncated, so reviewing the full file would increase assurance.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dangerous_exec, suspicious.env_credential_access
const result = spawnSync(process.execPath, ['--check', tempFile], {const result = spawnSync(
const userHome = process.env.USERPROFILE || process.env.HOME || '';