Revolut Business

The OpenClaw Revolut Business skill is benign. It provides a CLI for the Revolut Business API, storing necessary credentials (private key, certificates, OAuth tokens) in the standard `~/.clawdbot/revolut/` directory. All network communication observed in `scripts/revolut.py` and `scripts/setup.py` is directed to the official Revolut Business API endpoint (`https://b2b.revolut.com/api/1.0`) or `ifconfig.me` for public IP discovery during setup. There is no evidence of data exfiltration to unauthorized endpoints, malicious execution, persistence mechanisms, or prompt injection attempts in `SKILL.md` or `README.md` to manipulate the AI agent into harmful actions.