Back to plugin

Security audit

Claw Voice Call

Security checks across malware telemetry and agentic risk

Overview

The phone-call purpose is coherent, but the package ships apparent secrets and runs a background voice bridge that can read account tokens, place calls, send text to external LLMs, and save call transcripts with unclear controls.

Treat this as needing review before installation. Do not install unless you trust the publisher and are comfortable with a background voice bridge using gateway and telephony credentials. Prefer a cleaned release with no bundled .env/log files, rotated secrets, explicit credential declarations, opt-in transcript saving, and explicit confirmation before outbound calls.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec, suspicious.exposed_secret_literal

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/plugin.js:381
Evidence
agentProcess = spawn(process.execPath, [entryFile], {

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
plugin.ts:407
Evidence
agentProcess = spawn(process.execPath, [entryFile], {

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
.env:7
Evidence
TWILIO_AUTH_TOKEN=[REDACTED]

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/plugin.js:129
Evidence
LIVEKIT_API_SECRET: "[REDACTED]",

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/src/agent-worker.js:25
Evidence
apiKey: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/src/agent.js:113
Evidence
apiKey: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/src/config.js:15
Evidence
return { url: c.gatewayUrl, authToken: [REDACTED] };

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/src/index.js:56
Evidence
apiKey: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/src/setup.js:33
Evidence
password: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
plugin.ts:140
Evidence
LIVEKIT_API_SECRET: "[REDACTED]",

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/agent-worker.ts:30
Evidence
apiKey: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/agent.ts:133
Evidence
apiKey: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/config.ts:19
Evidence
return { url: c.gatewayUrl, authToken: [REDACTED] };

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/index.ts:63
Evidence
apiKey: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/setup.ts:59
Evidence
password: [REDACTED],