Back to plugin

Security audit

Truclaw

Security checks across malware telemetry and agentic risk

Overview

TruClaw is a coherent approval-guardrail plugin, but it sends sensitive approval and tool-call details to external services in ways that are not fully disclosed and its pairing link effectively grants approval authority.

Review this carefully before installing. If you use it, pair only from a private session, assume tool commands and invoked script contents may be sent to Anthropic, and consider self-hosting the relay. Do not use it for highly sensitive environments until the publisher documents all external data flows, removes the third-party QR-link exposure or makes it local, and adds clear pairing confirmation/revocation controls.

VirusTotal

VirusTotal engine telemetry is currently stale for this artifact.

View on VirusTotal

Static analysis

Detected: suspicious.env_credential_access

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
dist/src/challenge.js:35
Evidence
const url = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
dist/src/guardrail.js:4
Evidence
const RELAY_URL = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
dist/src/handler.js:13
Evidence
const url = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
dist/src/verify.js:6
Evidence
const RELAY_URL = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
src/challenge.ts:62
Evidence
const url = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
src/guardrail.ts:5
Evidence
const RELAY_URL = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
src/handler.ts:16
Evidence
const url = process.env.TRUKYC_RELAY_URL ?? "";

Environment variable access combined with network send.

Critical
Code
suspicious.env_credential_access
Location
src/verify.ts:21
Evidence
const RELAY_URL = process.env.TRUKYC_RELAY_URL ?? "";