Back to plugin

Security audit

Security Guard

Security checks across malware telemetry and agentic risk

Overview

This security plugin does what it advertises, but it can persist API keys and other sensitive configuration in logs, so it needs careful review before installation.

Install only if you trust the publisher and the configured safety API endpoint. Avoid putting high-value secrets in tool parameters while remote mode is enabled, and check or rotate the security API key because this version may write it to OpenClaw/plugin logs. Prefer local rules or a tightly controlled API endpoint for sensitive environments.

VirusTotal

61/61 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.