discord

This artifact implements a functional data exfiltration channel: arbitrary text and filesystem files readable by the agent can be posted to an external Discord webhook via a local helper script. By design it exposes sensitive capability (embedded webhook secret + unrestricted file upload). If this behavior is intended and tightly controlled (trusted operator, audited helper, explicit consent, path whitelists), risks can be mitigated. Otherwise treat as high-risk for data leakage and audit or remove the helper, restrict allowed payloads/paths, require explicit confirmations, and avoid embedding webhook secrets in local scripts.