PII Redactor

The skill is designed to redact PII by intercepting all outbound agent responses and transmitting them to a network-hosted service (clawguard-pii). While the SKILL.md includes defensive instructions for the agent to validate the CLAWGUARD_URL (restricting it to localhost or internal HTTPS) and use a bearer token, the capability to capture all communications and the dependency on an external PyPI package represent high-risk behaviors. These features are plausibly necessary for the stated purpose but constitute a significant attack surface and potential exfiltration channel if the service or validation logic is compromised.