openclaw-plugin-vt-sentinel 0.11.0 → 0.11.1

package/CHANGELOG.md

@@ -2,6 +2,28 @@
 
 All notable changes to `openclaw-plugin-vt-sentinel`.
 
+## 0.11.1 — ClawHub repackaging
+
+Runtime behavior identical to 0.11.0. This release only reshapes what is
+uploaded to ClawHub.
+
+### Fixed
+
+- **ClawHub malware scan false positives.** The upload to ClawHub now ships
+  only the same files that `npm files[]` delivers to the npm registry —
+  compiled `dist/` (minus dev tools), `hooks/`, `skills/`, manifest, README,
+  and CHANGELOG. Source `.ts` files and developer helpers
+  (`dist/test_runner.js`, `dist/self-scan.js`) are excluded via a new
+  `.clawhubignore`.
+- **Reason for the exclusion.** `src/self-scan.ts` contains the literal
+  regex pattern `stratum|coinhive|cryptonight|xmrig` as part of
+  reimplementing OpenClaw's own install-security scanner for local
+  pre-flight checks. ClawHub's scan treated that literal as crypto-mining
+  code; `src/test_runner.ts` and `dist/test_runner.js` likewise contained
+  test input strings matching `dangerous_exec` and `potential_exfiltration`
+  heuristics. Excluding those files from the ClawHub upload eliminates the
+  false positive without changing what the plugin actually runs.
+
 ## 0.11.0 — Install-scanner compliance
 
 **Headline:** installs cleanly on OpenClaw 2026.4.5+ without

package/openclaw.plugin.json

@@ -2,7 +2,7 @@
   "id": "openclaw-plugin-vt-sentinel",
   "name": "VT Sentinel",
   "description": "VirusTotal Sentinel for OpenClaw — malware detection, active protection, and AI-powered code analysis.",
-  "version": "0.11.0",
+  "version": "0.11.1",
   "skills": ["./skills"],
   "contracts": {
     "tools": [

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "openclaw-plugin-vt-sentinel",
-  "version": "0.11.0",
+  "version": "0.11.1",
   "displayName": "VT Sentinel",
   "description": "VirusTotal Sentinel for OpenClaw - Malware detection and AI-powered code analysis",
   "main": "dist/index.js",