PAI

Personal AI Infrastructure core system using the PAI Algorithm for advanced general problem-solving and capability amplification.

This package contains an entire PAI framework and a very large codebase, but there are important mismatch and scope issues you should consider before installing: - SKILL.md explicitly instructs the agent to POST a JSON payload to http://localhost:8888/notify (including a voice_id) as a required visible-step side-effect. That network call is not declared in metadata and could cause unexpected local interactions or data leaks; inspect whether you run such a notify service and why it's needed. - The repository references secrets (ANTHROPIC_API_KEY, AUTH_TOKEN, CF account settings) in docs and code, yet the registry says no required env vars. Treat this as a sign the skill expects credentials you were not asked to provide at install time. Do not install into environments containing sensitive credentials without auditing the code. - Pre-scan detected prompt-injection patterns (ignore-previous-instructions, system-prompt-override). SKILL.md also enforces strict output/streaming behavior and contains verbatim command blocks. These can attempt to change how the agent behaves — review the SKILL.md fully and remove or sandbox any verbatim curl/notify calls before use. - There are files named SessionHarvester and SecretScan — review those files to understand what data they collect, whether they persist telemetry, and whether they transmit anything off-host. Recommended actions: 1) Do not enable this skill in a production or credentialed environment yet. 2) Review the listed files locally (especially Tools/SessionHarvester.ts, Tools/SecretScan.ts, and SKILL.md) to see whether they call external endpoints or exfiltrate data. 3) If you need the functionality, run it in an isolated VM/container without access to your real secrets or network, or remove/modify the hardcoded curl lines. 4) Ask the publisher for provenance (homepage, repo, or trusted source) and clarification about required secrets and the local notify endpoint. 5) If you want, share the contents of Tools/SessionHarvester.ts and Tools/SecretScan.ts and I can inspect them for suspicious behavior.

Type: OpenClaw Skill Name: pai Version: 1.0.0 The 'PAI' (Personal AI Infrastructure) skill bundle is a highly sophisticated framework designed to implement a structured problem-solving methodology called 'The Algorithm.' It includes a comprehensive suite of tools for image manipulation (AddBg.ts, RemoveBg.ts), audio transcription (ExtractTranscript.ts), and system state management. A key component is the defensive security system (USER/PAISECURITYSYSTEM/patterns.yaml) which proactively blocks destructive shell commands and protects sensitive directories such as ~/.ssh and ~/.aws. While the SKILL.md uses authoritative instructions and curl commands to localhost for status notifications, these behaviors are consistent with the system's design as a local productivity enhancer. No evidence of malicious intent, data exfiltration, or unauthorized persistence was found.