Openforge

OpenForge is an orchestration framework that executes shell commands and spawns sub-agents based on instructions parsed from PRD markdown files. It utilizes high-risk OpenClaw capabilities such as `exec` and `sessions_spawn`, and while it includes a basic security filter for shell metacharacters in 'Gate' commands, it provides an explicit bypass mechanism (`Shell-Gate: true`) that could be exploited for arbitrary command execution. The skill's core logic (SKILL.md) relies on processing untrusted markdown input to drive agent actions, presenting a significant surface for prompt injection and unauthorized system operations if a malicious PRD is provided.