Back to plugin

Security audit

Openclaw langsmith

Security checks across malware telemetry and agentic risk

Overview

This is a real LangSmith observability plugin, but it broadly sends full agent prompts, responses, histories, and tool data to an external service with limited privacy controls.

Review this before installing. Use it only if you are comfortable sending full agent conversations, tool inputs/outputs, and memory-related LLM prompts to LangSmith or another configured endpoint. Avoid it for regulated, confidential, customer, credential-bearing, or proprietary workloads unless you add redaction/minimization controls and confirm LangSmith retention and access policies. Treat the unsafe-install override and fork/provenance mismatch as reasons to inspect the source and pin the exact artifact.

VirusTotal

65/65 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

Detected: suspicious.env_credential_access, suspicious.exposed_secret_literal

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
dist/index.js:6
Evidence
return value.replace(/\$\{([^}]+)\}/g, (_, name) => process.env[name] ?? "");

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/index.js:64
Evidence
this.apiKey = [REDACTED];

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
src/client.ts:20
Evidence
this.apiKey = [REDACTED]!;