Back to plugin
Pluginv2.0.10
ClawScan security
@taco-trade/web-copilot · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 16, 2026, 9:19 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The plugin's code, manifest, and runtime instructions are coherent with its stated purpose: bridging OpenClaw to a Taco web copilot backend using a channel config containing an apiToken and userId.
- Guidance
- This plugin appears to do what it says: poll a Taco backend and forward messages to/from OpenClaw. Before installing, ensure you trust the plugin owner and the backend URL you configure (default is https://api.dev.taco.trading). Provide a dedicated apiToken with minimal scope and avoid reusing high-privilege credentials. Be aware that the plugin logs portions of inbound/outbound messages to the host logs (truncated to 300 chars), so sensitive user content may appear in system logs — route logs and access carefully. Finally, confirm you want an 'open' DM policy (no pairing) as indicated in the plugin metadata.
Review Dimensions
- Purpose & Capability
- okName/description declare a channel that polls a Taco backend and the code implements HTTP calls to /api/copilot endpoints, requires an apiToken and userId in the channel config, and exposes a channel named 'web-copilot' — all consistent.
- Instruction Scope
- okRuntime instructions (package/openclaw metadata) and the code only reference channel config, OpenClaw runtime APIs, and the declared Taco backend endpoints. There are no commands or file reads outside the plugin's domain. The plugin does log message content to console (truncated) which may surface user content in logs.
- Install Mechanism
- okNo install script or remote download is specified; this is an instruction-only plugin with included JS files. No external archives or untrusted URLs are fetched during install.
- Credentials
- okNo environment variables or unrelated credentials are requested. The plugin legitimately requires an apiToken and userId (declared in openclaw.plugin.json channel config) to authenticate to the Taco backend; this is proportionate to the stated purpose.
- Persistence & Privilege
- okalways is false and the plugin does not request elevated/always-on privileges or modify other plugins' configs. It registers a polling loop and outbound/inbound logic appropriate for a channel plugin.