Security audit
TubeAlfred YouTube
Security checks across malware telemetry and agentic risk
Overview
This plugin is a read-only TubeAlfred YouTube API connector with no evidence of hidden persistence, local data access, or destructive behavior.
Install only if you intend to let OpenClaw agents query TubeAlfred's YouTube and billing-usage APIs. Treat the TubeAlfred API key as a secret, avoid committing config files containing it, and grant only the youtube.read and billing.read scopes you actually need.
VirusTotal
61/61 vendors flagged this plugin as clean.
Static analysis
No suspicious patterns detected.
