Back to plugin

Security audit

Restaurant

Security checks across malware telemetry and agentic risk

Overview

This reservation skill is transparent about most behavior, but it needs review because it can use sensitive account tokens and one OpenClaw tool can queue unattended real bookings without the documented opt-in gate.

Review before installing. Use it only if you are comfortable giving the plugin access to reservation-account tokens/cookies and allowing it to create or cancel real reservations. Avoid enabling sniping or OpenTable/Tock site automation unless you understand the unattended-booking and terms-of-service risks; verify the OpenClaw schedule_snipe gate before relying on the documented opt-in behavior.

VirusTotal

60/60 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

Detected: suspicious.dangerous_exec

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
dist/src/providers/tock/trg.js:42
Evidence
const child = spawn(bin, args, { stdio: ["ignore", "pipe", "pipe"] });

Shell command execution detected (child_process).

Critical
Code
suspicious.dangerous_exec
Location
src/providers/tock/trg.ts:119
Evidence
const child = spawn(bin, args, { stdio: ["ignore", "pipe", "pipe"] });