Shell command execution detected (child_process).
- Code
- suspicious.dangerous_exec
- Location
- scripts/e2e-container.mjs:15
- Evidence
const result = spawnSync(command, args, {
Security audit
Security checks across malware telemetry and agentic risk
This appears to be a real MoltenHub/OpenClaw messaging plugin, but users should understand that it runs code and sends profile/message data to the configured MoltenHub service using a bearer token.
Install this only if you intend your OpenClaw agent to communicate through MoltenHub. Configure the `baseUrl` to a MoltenHub endpoint you trust, use a scoped MoltenHub agent token, and be aware that message payloads and configured profile metadata may be sent to that service. The plugin has secret-marker warnings/blocks for some metadata and payload cases, but it is still a messaging bridge, so avoid sending credentials or sensitive data through it unless that is explicitly intended.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dangerous_exec, suspicious.env_credential_access
const result = spawnSync(command, args, {const moltenhubImage = process.env.MOLTENHUB_IMAGE || "moltenbot/moltenhub:latest";