OpenClaw: suspicious
VirusTotal: benign
StaticScan: suspicious
OpenClaw: suspicious
The plugin's behavior matches its stated purpose (wrapping an OpenTangl CLI), but it will execute code from your specified workspace and inherits the agent process environment (including any secrets),... [内容已截断]
VirusTotal: benign VT 报告
静态扫描: suspicious
Detected: suspicious.dangerous_exec
README 未提供
无文件信息
{
"latestVersion": {
"_creationTime": 1774452177763,
"_id": "k97d8yezm3qbrpk0axg8m9zkf583jx9j",
"changelog": "Fix shell injection vulnerability: replace execSync(string) with spawnSync(file, argsArray) to bypass the shell entirely. Add input validation for all user-controlled string parameters (project IDs, workflow paths, var keys).",
"changelogSource": "user",
"createdAt": 1774452177763,
"version": "0.1.1"
},
"owner": {
"_creationTime": 0,
"_id": "s17dqwewnx0p9j18ya34edd63x83jh23",
"displayName": "8co",
"handle": "8co",
"image": "https:\/\/avatars.githubusercontent.com\/u\/1120377?v=4",
"kind": "user",
"linkedUserId": "kn7d6zjdd157wv2c7cfbmnntbh81rq3t"
},
"ownerHandle": "8co",
"skill": {
"_creationTime": 1774445675348,
"_id": "kd7ah5bndkmdf3ncqmvc4yyfyn83jz9f",
"badges": [],
"createdAt": 1774445675348,
"displayName": "OpenTangl Plugin",
"latestVersionId": "k97d8yezm3qbrpk0axg8m9zkf583jx9j",
"ownerPublisherId": "s17dqwewnx0p9j18ya34edd63x83jh23",
"ownerUserId": "kn7d6zjdd157wv2c7cfbmnntbh81rq3t",
"slug": "opentangl-plugin",
"stats": {
"comments": 0,
"downloads": 19,
"installsAllTime": 0,
"installsCurrent": 0,
"stars": 0,
"versions": 2
},
"summary": "Integrates OpenTangl lifecycle tools into OpenClaw, enabling task queue viewing, task proposing, workflow execution, autopilot, wiring audits, and merge pipe...",
"tags": {
"latest": "k97d8yezm3qbrpk0axg8m9zkf583jx9j",
"openclaw-plugin": "k97d8yezm3qbrpk0axg8m9zkf583jx9j",
"plugin": "k97d8yezm3qbrpk0axg8m9zkf583jx9j"
},
"updatedAt": 1774457208307
}
}