Back to plugin
Pluginv0.1.6
ClawScan security
Fluent · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 1:20 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The package appears to do what it claims: an OpenClaw Fluent client plugin that manages hosted auth, MCP binding, and bundles several Fluent skills; its requirements, instructions, and included code are proportionate to that purpose.
- Guidance
- This package is internally coherent for providing Fluent integration in OpenClaw: it will manage hosted OAuth tokens and rewrite the mcp.servers.fluent entry in your OpenClaw config when you run the provided CLI commands. If you plan to install it: (1) review hosted-auth.js or the login flow if you want to understand how OAuth callbacks are handled (it likely opens a browser and stores a token), (2) back up your OpenClaw config before letting the plugin rewrite mcp.servers.fluent, and (3) verify you trust the package source (shaner-git). Although I found no incoherent or disproportionate requests, you should still inspect the hosted-auth and plugin-actions code if you require higher assurance about token storage and callback handling.
Review Dimensions
- Purpose & Capability
- okThe name/description (Fluent client plugin, auth helpers, MCP setup) match the included files and SKILL.md: CLI bindings, hosted-auth helpers, MCP config helpers, and multiple Fluent domain SKILL.md files. There are no unrelated credentials, binaries, or external services requested in the manifest that would contradict the stated purpose.
- Instruction Scope
- okSKILL.md and per-domain SKILL.md files instruct installing the plugin, running OpenClaw CLI commands (auth login/refresh/logout, mcp setup, doctor), and using visual widgets via visualize:show_widget/sendPrompt. The runtime instructions stay within Fluent/OpenClaw flows (binding mcp.servers.fluent, running compatibility probes, or rendering grocery widgets). There are no instructions to read unrelated local files or to exfiltrate arbitrary data.
- Install Mechanism
- okThere is no external install spec (no arbitrary downloads). The package is intended to be installed via OpenClaw's plugin installer (openclaw plugins install), and the repo includes source files (JS) consistent with a packaged plugin. No high-risk download/install steps or obscure URL-based installers are present.
- Credentials
- okThe registry metadata shows no required environment variables or declared primary credential. The code and docs describe handling hosted OAuth tokens and writing them into OpenClaw's MCP server config (mcp.servers.fluent), which is appropriate and proportional for a plugin that manages hosted auth. There are no requests for unrelated secrets or broad system credentials.
- Persistence & Privilege
- okThe skill is not force-included (always: false) and runs only when invoked. It does modify the OpenClaw MCP config (mcp.servers.fluent) as part of its advertised purpose (binding Fluent), which is expected for this plugin and scoped to Fluent server config rather than altering unrelated skill or system-wide credentials.