Sovereign Intelligence System - Equilibrium-native reasoning for OpenClaw

ReviewAudited by ClawScan on May 10, 2026.

Overview

Review recommended: the skill is mostly a symbolic reasoning library, but one module changes Python imports to a hard-coded external path that could load unreviewed code.

Before installing, ask the publisher to remove the hard-coded /home/claude/sis import path and verify that the skill only imports its bundled files. Use the vault feature carefully because it can write data to local storage, and do not treat the advertised equilibrium checks as a guaranteed safety mechanism.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

ConcernHigh Confidence

ASI04: Agentic Supply Chain Vulnerabilities

What this means

If the skill is imported or invoked, it may use unreviewed local Python modules instead of the reviewed bundled code, causing unpredictable behavior.

Why it was flagged

The module prepends an absolute local path before importing core code, so if that path exists it can take precedence over the bundled skill files and load code that was not part of this review.

Skill content

import sys
sys.path.insert(0, '/home/claude/sis')

from core.symbol import SISSymbol, Layer

Recommendation

Remove the hard-coded sys.path modification and use package-relative imports such as from . or from the bundled core package only.

NoteMedium Confidence

ASI06: Memory and Context Poisoning

What this means

Data supplied to the skill could be retained locally if the file vault backend is used.

Why it was flagged

The skill includes an optional local persistence backend that can write symbol values and state records to disk.

Skill content

class FileVault(VaultBackend):
    """File-based vault using JSON (simple persistence)"""
    
    def __init__(self, path: str = "./nexuseternal_vault"):
        self.path = path
        os.makedirs(path, exist_ok=True)

Recommendation

Use the in-memory backend for sensitive work, or clearly choose and review the vault path, retention, and contents before enabling file persistence.

NoteMedium Confidence

ASI09: Human-Agent Trust Exploitation

What this means

A user might rely on the skill as a stronger correctness or safety guarantee than the reviewed code supports.

Why it was flagged

The skill presents strong safety and consistency guarantees that users may over-trust, while the artifacts primarily show a symbolic validation framework rather than an enforcement boundary for all OpenClaw operations.

Skill content

S.I.S.: Operations that violate equilibrium constraints **cannot execute**.

Recommendation

Treat the equilibrium framework as an advisory reasoning aid, not as a security, correctness, or policy-enforcement guarantee.