File appears to expose a hardcoded API secret or token.
Critical
- Code
- suspicious.exposed_secret_literal
- Location
- dist/index.js:321
- Evidence
const apiKey = [REDACTED](PROVIDER_ID).apiKey;
Security audit
Security checks across malware telemetry and agentic risk
This is a coherent Eden AI provider plugin that uses a user-supplied Eden AI API key and does not show hidden or unrelated behavior.
Install only if you intend to route OpenClaw model traffic through Eden AI. Use a dedicated Eden AI API key, understand that prompts and files sent to models may be processed by Eden AI or its upstream providers, and review Eden AI billing/data-handling terms before use.
62/62 vendors flagged this plugin as clean.
Detected: suspicious.exposed_secret_literal
const apiKey = [REDACTED](PROVIDER_ID).apiKey;
const apiKey = [REDACTED](PROVIDER_ID).apiKey;