Back to plugin

Security audit

Censgate OpenClaw Redact

Security checks across malware telemetry and agentic risk

Overview

This plugin appears to do what it advertises, but it should only be used with a trusted Redact API endpoint because prompts and tool parameters may be sent there.

Install only if you are comfortable sending potentially sensitive prompts and tool parameters to the configured Redact API. Keep the endpoint local or controlled by your organization for sensitive workflows, avoid audit-only mode when you need actual redaction, and enable Docker auto-start only with a trusted image and host configuration.

VirusTotal

62/62 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/docker-bootstrap.js:114
Evidence
const child = spawn(command, args, {