Agent Soul System

The skill bundle implements a 'Web Editor' that starts a local Node.js server (soul-server.js) to manage agent personality files. This server provides unauthenticated GET and POST endpoints that allow reading and overwriting files in the user's agent directory, which is vulnerable to cross-site attacks due to permissive CORS headers. Additionally, the documentation (SKILL.md and SOUL-EDITOR-README.md) explicitly describes establishing persistence on Windows systems by adding a 'SOULServer' entry to the Registry Run key (HKCU:\Software\Microsoft\Windows\CurrentVersion\Run) to execute a hidden background process on login. While these features align with the stated goal of a visual editor, the combination of auto-start persistence and unauthenticated file-write access is high-risk.