Shell command execution detected (child_process).
Critical
- Code
- suspicious.dangerous_exec
- Location
- dist/avatar/index.js:3695
- Evidence
const next = spawn(activeLaunchCommand.executable, activeLaunchCommand.args, {
Security audit
Security checks across malware telemetry and agentic risk
Avatar appears to be a legitimate video-avatar plugin, but it runs local helper code and uses your OpenClaw, LemonSlice, and LiveKit credentials and audio.
Install only if you trust the publisher and the LemonSlice/LiveKit data flow. Prefer a pinned or ClawHub version, use dedicated revocable API keys, protect your OpenClaw config and gateway token, and avoid sensitive conversations unless you are comfortable with the external provider processing.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dangerous_exec, suspicious.env_credential_access, suspicious.exposed_secret_literal
const next = spawn(activeLaunchCommand.executable, activeLaunchCommand.args, {execFile(file, args, { encoding: "utf8", maxBuffer: 1024 * 1024 }, (error, stdout) => {const value = process.env[name]?.trim();
apiKey: [REDACTED],
const password = [REDACTED](normalizedSettings.password, {...([REDACTED] !== undefined ? { apiKey: [REDACTED] } : {}),apiKey: [REDACTED](setup?.lemonSlice?.apiKey, setup?.lemonSlice?.apiKeyConfigured),