Quick Test

This skill is classified as suspicious due to multiple vulnerabilities and risky capabilities. The `SKILL.md` explicitly instructs the OpenClaw agent to allow arbitrary command execution via a `--command` parameter, which is a severe prompt injection vulnerability. It also instructs the agent to run `env | head -10` for debugging, and the `scripts/run_tests.py` script hardcodes `env head -5` as a test, both exposing environment variables. Furthermore, the `scripts/run_tests.py` uses `subprocess.run(cmd, shell=True, ...)` which is a critical shell injection vulnerability if user input were passed to it, even though the current script does not parse the `--command` argument.