Shell command execution detected (child_process).
Critical
- Code
- suspicious.dangerous_exec
- Location
- dist/command-rpc-eLM_mtC7.js:424
- Evidence
const child = spawn(invocation.command, invocation.args, {
Security audit
Security checks across malware telemetry and agentic risk
This official OpenClaw Codex plugin has powerful Codex runtime controls, but they are disclosed and fit its purpose.
Install this if you want OpenClaw to run Codex-backed agents. Review advanced settings before enabling user home sharing, danger-full-access/yolo permissions, native Codex plugins, computer-use auto-install, remote WebSocket app-server endpoints, or diagnostics upload, because those options can expose local files, credentials, or connected app actions to Codex workflows.
62/62 vendors flagged this plugin as clean.
Detected: suspicious.dangerous_exec
const child = spawn(invocation.command, invocation.args, {const child = spawn(command, args, {return spawn(invocation.command, invocation.args, {