Back to plugin

Security audit

WebChat Background Notify

Security checks across malware telemetry and agentic risk

Overview

This appears to do what it claims—show local background reply notifications—but it works by modifying OpenClaw’s webchat UI bundle, which users should understand before installing.

This plugin looks internally consistent: it does not ask for secrets and the visible code only sends visibility state to a local OpenClaw plugin route, not to an outside server. The main thing to consider is whether you are comfortable with it patching OpenClaw’s webchat UI files on disk; that change may remain until restored, overwritten by an update, or manually removed. Also note that desktop notifications will display a short preview of assistant replies, which may expose sensitive chat content on your screen. Confidence is medium because the provided windows-notify.js content is truncated, so reviewing the full file would increase assurance.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec, suspicious.env_credential_access

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
ui-patch.js:152
Evidence
const result = spawnSync(process.execPath, ['--check', tempFile], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
windows-notify.js:18
Evidence
const result = spawnSync(

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
ui-patch.js:27
Evidence
const userHome = process.env.USERPROFILE || process.env.HOME || '';