Back to plugin

Security audit

OpenClaw OneBot Plugin

Security checks across malware telemetry and agentic risk

Overview

The plugin largely matches its QQ messaging purpose, but it needs review because its voice conversion path can execute shell commands with insufficiently safe path handling.

Install only if you trust the publisher and can accept local code execution risk from the voice feature. Keep OneBot endpoints on localhost or a trusted network, configure a strong access token and allowFrom, use a dedicated sharedDir, and avoid running the optional CLI sync unless you have reviewed it and need that compatibility patch.

VirusTotal

64/64 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

Detected: suspicious.exposed_secret_literal

File appears to expose a hardcoded API secret or token.

Critical
Code
suspicious.exposed_secret_literal
Location
dist/src/config.js:68
Evidence
let accessToken = [REDACTED];