Skill Publisher Claw Skill

This OpenClaw skill bundle is designed to audit, fix, scaffold, and publish other OpenClaw skills. All included shell scripts (`audit.sh`, `fix.sh`, `publish.sh`, `scaffold.sh`, `analyze.sh`, `score.sh`, `validate-links.sh`, `changelog.sh`) and the `SKILL.md` instructions are clearly aligned with this stated purpose. The `SKILL.md` and `audit.sh` contain `grep` commands to search for secrets (e.g., API keys, passwords) and personal data, but these are intended to *find* and *remove* such sensitive information from the *audited skill*, not to exfiltrate data from the agent's environment or the host system. Network calls (e.g., `git push`, `gh repo create`, `curl` for link validation) are legitimate actions for publishing and validating a skill. There is no evidence of intentional harmful behavior, prompt injection with malicious objectives, or unauthorized data exfiltration.