Security audit
Concept Forge
Security checks across malware telemetry and agentic risk
Overview
Concept Forge is a local terminology-memory plugin whose persistence and prompt reuse fit its stated purpose and are disclosed in the README.
Install only if you want project terminology to be remembered locally across sessions. Review ~/.openclaw/concept-forge for stored ledgers, use separate projectId values for separation, and avoid letting sensitive client or secret-bearing terminology be captured if local retained memory is not acceptable.
VirusTotal
60/60 vendors flagged this plugin as clean.
Static analysis
No suspicious patterns detected.
