Back to plugin
Pluginv1.0.0
Static analysis security
Telegram Tools · Deterministic local checks for risky code patterns and metadata mismatches.
Scanner verdict
SuspiciousMar 29, 2026, 9:40 AM
- Summary
- Detected: suspicious.env_credential_access, suspicious.potential_exfiltration
- Reason codes
- suspicious.env_credential_accesssuspicious.potential_exfiltration
- Engine
- v2.2.0
Evidence
criticalindex.ts:28
Environment variable access combined with network send.
const OPENCLAW_DIR = process.env.OPENCLAW_HOME ?? join(homedir(), ".openclaw");
warnindex.ts:1
File read combined with network send (possible exfiltration).
import { existsSync, readFileSync, writeFileSync, mkdirSync } from "node:fs";