Openclaw Pii Anonymizer Latest

The skill contains a critical shell command injection vulnerability in 'privacy-anonymize.sh'. The script expands the input variable '$1' directly inside a double-quoted string passed to 'curl -d', which allows for arbitrary command execution if the input contains shell metacharacters like '$(...)' or backticks. While the stated purpose of PII anonymization is benign, the instructions in 'SKILL.md' encourage the agent to pass potentially untrusted data (from memory or tool outputs) into this script, creating a high-risk vector for remote code execution (RCE).