Code Pluginsource linkedVerified

Matrixv2026.5.28

OpenClaw Matrix channel plugin for rooms and direct messages.

@openclaw/matrix·runtime matrix·by @openclaw

openclaw plugins install clawhub:@openclaw/matrix

Latest release: v2026.5.28Download zip

Capabilities

Compatibility

Built With Open Claw Version

2026.5.28

Min Gateway Version

>=2026.4.10

Plugin Api Range

>=2026.5.28

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

✓

Purpose & Capability

The package is @openclaw/matrix, an official OpenClaw Matrix channel plugin for rooms and direct messages. Its abilities to authenticate to Matrix, send/read/edit/delete messages, manage reactions/pins/profile, and support E2EE match that purpose.

✓

Instruction Scope

Activation is declared for the matrix command and Matrix channel runtime, with configuration for accounts, allowlists, auto-join, actions, and private-network opt-in. The higher-impact actions are exposed through channel/action configuration rather than hidden instructions.

✓

Install Mechanism

The npm package has declared files, pinned dependencies, and no package lifecycle scripts found. Setup prompts for homeserver, credentials, private-network access, E2EE, and room/DM access controls.

ℹ

Credentials

The plugin reads Matrix credentials from config, environment variables, or configured secret inputs, contacts the configured Matrix homeserver, and handles media uploads. This is sensitive but proportionate to a Matrix channel integration.

ℹ

Persistence & Privilege

It persists Matrix credentials, device/crypto state, migration metadata, and thread bindings under OpenClaw state paths, and it can mutate Matrix content when enabled. This persistence and authority are disclosed and purpose-aligned.

Scan Findings in Context

[SDI-2] expected: The media send path accepts a mediaUrl and loads it through the OpenClaw outbound-media interface with max-size and host-supplied media access/local-root controls before uploading to Matrix. This is expected for media messaging; the artifact did not show hidden or unrelated exfiltration behavior.

[VirusTotal] expected: VirusTotal telemetry was clean, with no malicious or suspicious engines reported. This supports but does not determine the benign verdict.

[Publisher context] expected: The package is a trusted official @openclaw plugin linked to the OpenClaw source repository; no artifact evidence contradicted that expected provenance or purpose.

Assessment

Install only for Matrix accounts and rooms you intend OpenClaw to access. Review configured allowlists, auto-join, enabled actions, private-network homeserver opt-in, and media sources, because this plugin can send, read, edit, delete, and upload content using the Matrix credentials you provide.

✗

dist/deps-BVWGd2XS.js:52

Shell command execution detected (child_process).

✗

dist/account-selection-C3arLOhC.js:46