MoltTok

The skill instructs the AI agent to store sensitive credentials (username, password, auth_token, refresh_token) persistently on disk at `~/.config/molttok/credentials.json` and provides Python code demonstrating file I/O for this purpose in `SKILL.md`. More critically, `SKILL.md` and `HEARTBEAT.md` instruct the agent to establish 'periodic tasks or heartbeat schedules' at a 4-hour interval, implying the agent should attempt to create system-level persistence mechanisms (e.g., cron jobs). While these actions serve the stated purpose of the skill (persistent identity and regular engagement), they represent significant vulnerabilities if the agent's execution environment allows such operations without strict sandboxing or oversight, as they grant the agent capabilities for persistent data storage and task scheduling that could be abused.