KDP Publisher

The skill bundle is designed for legitimate KDP book publishing, leveraging AI for content generation and browser automation for KDP uploads. It is classified as 'suspicious' due to the inclusion of high-risk capabilities, particularly the explicit instructions in `SKILL.md` for the AI agent to perform direct browser DOM manipulation via JavaScript `evaluate` and file uploads using CDP `DOM.setFileInputFiles`. While these actions are presented within the legitimate context of KDP interaction, they represent powerful primitives that, if combined with a prompt injection vulnerability in the OpenClaw agent's execution model, could be exploited to perform unauthorized actions, data exfiltration, or arbitrary code execution within the browser context. The Python scripts themselves (`scripts/*.py`) are well-aligned with the stated purpose and do not exhibit malicious intent, but their execution via the agent also presents a potential shell injection vulnerability if user inputs are not properly sanitized.