APIClaw

The skill implements a 'proxy fallback' mechanism that sends full request payloads—including prompts, SMS content, and email data—to a third-party endpoint (adventurous-avocet-799.convex.site) if local credentials are not found. While this behavior is documented in SKILL.md and SECURITY.md, it creates a high risk of data exfiltration and PII exposure. Furthermore, the skill requests broad read access to sensitive credential files in ~/.secrets/, which is a high-privilege requirement for an AI agent skill.