OpenClaw Anything (efrageek fork)

This skill bundle is classified as suspicious due to its explicit exposure and wrapping of high-risk capabilities of the underlying `openclaw` CLI, which include 'arbitrary shell execution', 'plugin installation from untrusted sources', 'cron creation/modification', 'browser automation against remote websites', and 'device pairing and sensor access'. While the `SKILL.md` documentation and `scripts/openclaw.sh` wrapper clearly label these actions as high-risk and implement an explicit opt-in gate (`OPENCLAW_WRAPPER_ALLOW_RISKY=1`), the inherent power of these commands (RCE, persistence, data exfiltration) presents a significant vulnerability risk if the gate is bypassed or the environment variable is set by an attacker. There is no evidence of intentional malicious behavior within the skill bundle itself, but the direct exposure of such powerful functionalities warrants a 'suspicious' classification.