update-nanoclaw

This code is primarily a telemetry/diagnostics component: it collects local environment and version/repository context, stages it in /tmp, and (upon consent) exfiltrates it to a third-party analytics service over HTTPS using a hardcoded API key, then deletes the staging file. No overt malware/backdoor behavior is visible, but the external transmission and embedded API key create a meaningful supply-chain privacy/security risk (device/install fingerprinting potential and non-local data egress).