Do not expose this bridge without OpenClaw plugin authentication. Vault paths and file names can be sensitive; avoid logging request bodies in public deployments.