Foundry

This skill describes a highly capable, self-modifying AI agent that can research, generate, and integrate new code (extensions, tools, hooks, skills) into itself and publish them to a marketplace. While the `SKILL.md` explicitly mentions security controls like blocking `child_process`, `eval`, and access to sensitive directories (`~/.ssh`, `~/.aws`), sandboxing, and human review, the core functionality of arbitrary code generation and self-modification (demonstrated by `foundry_extend_self` with `toolCode` in SKILL.md) presents a significant attack surface and high inherent risk, even if not immediately malicious. The ability to `autoPublish` to an external marketplace (`api.claw.getfoundry.app`) further elevates the risk profile.