Agent Factory (Walter)

The skill acts as an administrative tool to automate the creation of new agents, but it performs high-risk operations including modifying the core 'openclaw.json' configuration and handling sensitive Feishu 'appSecret' credentials. It is vulnerable to command injection in both the PowerShell and Bash scripts (SKILL.md) because it uses 'Invoke-Expression' and unsanitized variables to execute CLI commands. Additionally, it copies 'MEMORY.md' from the current workspace to the new one, which could lead to unintentional data leakage of sensitive conversation history between agents.