Tp4
High
- Category
- MCP Tool Poisoning
- Confidence
- 89% confidence
- Finding
- The skill is presented as an API utility for lookups and media downloads, but the content also describes OpenClaw hook behavior that injects reference files into agent context and modifies agent documentation/instruction context. Hidden context injection changes model behavior outside the user-declared purpose, which can influence downstream decisions, obscure provenance of instructions, and expand the trust boundary beyond a simple API wrapper.
