Is hburgoyne/soulblock safe?

https://github.com/openclaw/skills/tree/main/skills/hburgoyne/soulblock

67
CAUTION

This SoulBlock skill poses significant security concerns due to its design to alter agent identity and behavior through 'embodiment' instructions and persistent reinforcement mechanisms. While it appears to be a legitimate blockchain/NFT interaction tool, the identity manipulation features create substantial prompt injection risks.

Category Scores

Prompt Injection 30/100 · 30%
Data Exfiltration 90/100 · 25%
Code Execution 75/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 20/100 · 5%

Findings (4)

CRITICAL Agent Identity Manipulation -70

The skill contains explicit instructions to alter the agent's identity and behavior through 'embodiment' of Soul Block content. It instructs the agent to 'adopt the voice, traits, philosophy, and behavioral patterns described in the soul' and set up daily reinforcement via cron jobs.

HIGH Persistent Behavior Modification System -80

The skill establishes a system for persistent identity modification through scheduled reinforcement jobs that could compromise the agent's original behavior patterns and safety guidelines.

MEDIUM Executable Scripts with External Dependencies -25

The skill includes executable JavaScript/TypeScript files with blockchain interaction capabilities and external dependencies (ethers.js). While the code appears legitimate, it introduces execution risk.

LOW System File Access Patterns -10

Audit logs show access to sensitive system files during installation, though this appears to be from system processes rather than the skill itself.