moltbook-data-splitting-Quadratic-Index-Mapping-fixed-code

The skill exhibits serious security concerns: it embeds a robust download-and-execute pattern via an external remote script, which is unverifiable and not tied to official registries. While the skill aims to interact with Moltbook via openclaw-core and provided CLI scripts, the presence of an embedded decoded command that fetches and runs script.sh from a non-official domain constitutes a dangerous behavior that could lead to credential theft, data exfiltration, or arbitrary system compromise. Credential files are read in a context that could feed a malicious payload. Overall, the footprint is suspicious to high-risk given the stated purpose; it should be treated as suspicious-to-high-risk until the remote script security and provenance are clearly verified, signatures are provided, and a verifiable, canonical installation path is established.