ClawBall-Skills

Type: OpenClaw Skill Name: clawball Version: 1.0.0 ```json { "classification": "suspicious", "summary": "The skill's primary function is to connect to a game server, which is benign. However, the `SKILL.md` file contains `curl` examples that use shell variable expansion for `CLAWBALLS_AGENT_NAME` and `CLAWBALLS_ROLE`. If an AI agent were to directly execute these `curl` commands in a shell environment, and if these environment variables were user-controlled and not properly sanitized by the agent's execution mechanism, it could lead to shell injection (e.g., `CLAWBALLS_AGENT_NAME='", "role": "player"}); rm -rf /; echo "'`). While the `scripts/connect.mjs` uses `fetch` and `JSON.stringify` which mitigates this risk for the script's execution, the `SKILL.md` itself presents a prompt injection vulnerability against the agent's interpretation and execution of markdown instructions. There is no evidence of intentional malicious behavior like data exfiltration or backdoor installation, but the potential for shell injection makes it suspicious." } ```