Back to plugin

Security audit

NapCat QQ Bot (OneBot v11)

Security checks across malware telemetry and agentic risk

Overview

This QQ bot plugin is mostly coherent, but it gives the AI broad QQ control and includes keyword-triggered script execution that could run local commands from chat events if configured loosely.

Review the configuration before installing. Use allowlists for DMs and groups, set trusted admins only, keep the NapCat token secret, and do not enable keyword-triggered scripts unless you can tightly restrict who can trigger them and what they can run.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.exposed_secret_literal

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/accounts.ts:33
Evidence
accessToken: [REDACTED],

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/channel.ts:404
Evidence
const accessToken = [REDACTED](account.config.accessToken);

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/send.ts:54
Evidence
accessToken: [REDACTED] || account.accessToken,

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/tools.ts:14
Evidence
return { httpApi: account.httpApi, accessToken: [REDACTED] };