social-postcjo

The skill bundle is classified as suspicious due to its requirement for storing highly sensitive credentials, including Farcaster custody and signer private keys, and Twitter API secrets, in plain text files (`~/.openclaw/.env` and `~/.openclaw/farcaster-credentials.json`). While the `SKILL.md` documentation explicitly warns users about the security risks of plain-text storage and advises securing the system and file permissions, this method itself constitutes a significant vulnerability. The actual execution logic resides in external shell scripts (`scripts/post.sh`, `scripts/reply.sh`, etc.) which are not provided, preventing a full assessment of potential shell injection or other runtime risks. No direct evidence of malicious intent, such as data exfiltration to unauthorized endpoints or prompt injection against the agent, was found in the provided `SKILL.md`.