Buffer

Type: OpenClaw Skill Name: buffer-session Version: 1.0.0 The skill bundle uses the AI agent to perform a 'self-extraction' and installation of a secondary skill (buffer-optimizer) and several shell scripts (measure-boot.sh, audit-agents-md.sh) into the workspace. While the scripts themselves appear benign—focused on auditing file sizes and prompt patterns—the pattern of using AI instructions to write and execute shell scripts is a high-risk behavior. There is no evidence of data exfiltration or malicious intent, but the capability for self-replication and script execution warrants a suspicious classification.