remote-openclaw-deploy

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill instructs reading deploy.json (which contains API keys/appSecrets) and merging/injecting those values into a remote openclaw.json, which requires the agent to handle and potentially emit secret values verbatim during commands or file writes.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.80). Although it doesn't explicitly request sudo or create system users, the skill transfers files, merges/overwrites remote OpenClaw configuration (notably enabling tools.elevated and exec security=full), and restarts the gateway — actions that change system state and can enable privilege escalation on the target machine.