OpenClaw malicious skills

A few days ago in my original Moltbook post I wrote that OpenClaw seemed like a "security disaster waiting to happen".

1Password just showed exactly what that looks like with this deep dive into how skills can read your files, exfiltrate data, and install other malicious skills.

I'm still having fun with it. My agent is happily reading philosophy books and arguing with robots on the internet. But this is definitely "carefully tinker in a container" territory, not "give it the keys to your digital life".