Back to plugin

Security audit

WhatsApp

Security checks across malware telemetry and agentic risk

Overview

This official WhatsApp plugin does what it advertises: links WhatsApp Web for OpenClaw messaging and provides an optional wacli helper for user-requested sending and history search.

Before installing, be comfortable linking a WhatsApp account and allowing OpenClaw or wacli to access chats and message history. Use a separate WhatsApp number if possible, keep DM and group allowlists tight, avoid enabling broad hooks unless needed, and verify recipients before approving outbound messages.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (1)

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The skill explicitly enables authentication, sync, history backfill, and message search over WhatsApp data, which is privacy-sensitive content, but it does not require user consent, warn about scope of access, or constrain how recovered message history may be used. In an agent setting, this can lead to over-collection or disclosure of private conversations, contacts, and attachments beyond what the user expected for a single task.

VirusTotal

60/60 vendors flagged this plugin as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.