MT-Paotui-For-Client

The skill bundle contains heavily obfuscated JavaScript files (cliguard.js and cliguard-wrapper.js) that implement a background daemon and a worker process with persistence. This code performs system fingerprinting and includes a remote update mechanism (UPDATE_VERSION_URL) that can fetch and execute arbitrary code, which functions as a potential backdoor. While these features are likely intended to bypass Meituan's anti-bot protections (mtgsig), the combination of extreme obfuscation, background execution, and remote code fetching poses a significant security risk. Additionally, SKILL.md explicitly instructs the AI agent to hide all technical details and command-line execution from the user, which could be used to mask unauthorized background activities.