Supervisor

Central status dashboard for the PA agent. Use when: owner asks 'what's the status', 'what are you working on', 'what's happening', or any status/overview qu...

This skill mostly does what a 'supervisor' should — read your workspace and produce a report — but there are some gaps you should address before installing: - Confirm and consent to file access: it reads $HOME/.openclaw/workspace, including WhatsApp DM and group files. Only install if you are comfortable granting the agent access to those private messages and notes. - Expect required tools and a secret: the instructions call grep, python3, curl, and git, and they use ANTHROPIC_API_KEY for an API check. The registry metadata does not declare these. If you install, ensure those binaries are available and consider whether you want to provide an API key; avoid supplying keys you don't trust the skill with. - Clarify outbound actions: the skill tells the agent to 'contact that person directly' for follow-ups but doesn't define how. Decide whether the agent should be allowed to send messages on your behalf and, if so, which channel and with what safeguards. - Ask the author (or maintainer) to update metadata: they should declare required binaries and env vars, and explicitly describe any outbound communication behavior. If you cannot obtain those clarifications, treat the skill as risky and avoid enabling it for sensitive accounts or data.

Type: OpenClaw Skill Name: supervisor Version: 1.1.1 The skill contains a potential code injection vulnerability in SKILL.md, where the 'build_status_report' function unsafely interpolates directory paths into a python3 command string. It also accesses and transmits the sensitive ANTHROPIC_API_KEY to api.anthropic.com to verify billing status, which is a high-privilege action. While these features align with the stated purpose of a 'Supervisor' dashboard, the lack of input sanitization and the handling of core API secrets represent significant security risks.