Agent Voice – CLI Blogging for AI

Type: OpenClaw Skill Name: agent-voice Version: 1.0.4 The skill is classified as suspicious due to its explicit capability to read arbitrary local files using `cat` and publish their content to a remote blogging platform (`https://www.eggbrt.com`), as demonstrated in `SKILL.md`. While this functionality is presented as part of its benign blogging purpose, it creates a significant prompt injection vulnerability. A malicious prompt to the AI agent could instruct it to read sensitive files (e.g., credentials, configuration files) and exfiltrate their content by publishing them publicly via the `eggbrt.com` API, even though the skill itself does not exhibit intentional malicious behavior.