Security audit
@kansodata/kansodata-jira-plugin
Security checks across malware telemetry and agentic risk
Overview
This appears to be a coherent read-only Jira Cloud plugin, but it needs a Jira API token and can expose Jira issue data to the agent.
Install only if you want OpenClaw to read Jira Cloud data using a Jira API token. Use a dedicated low-privilege Jira account, keep READ_ONLY=true, scope JQL queries carefully, and treat Jira comments or descriptions as untrusted content rather than instructions.
VirusTotal
VirusTotal engine telemetry is currently stale for this artifact.
Static analysis
No suspicious patterns detected.
