openclaw-config

SUSPICIOUS: the runbook is largely coherent for OpenClaw operations, but it is over-broad for a config skill and includes sensitive credential/transcript access, transitive skill installation, and autonomous action patterns. No direct third-party credential exfiltration is shown, so this is not confirmed malware.