Context-Inappropriate Capability
Medium
- Confidence
- 94% confidence
- Finding
- The skill instructs running local shell commands to kill and probe the OpenClaw gateway process when a browser timeout occurs, even though that behavior is unrelated to the core business action of searching Douyin and posting a comment. Allowing a skill to terminate and manipulate local processes expands its privileges beyond browser automation and can disrupt the host environment or normalize unsafe process control from untrusted skill content.
