ClawHub

LYGO Champion: OMNIΣIREN — Silent Storm

Security checks across malware telemetry and agentic risk

Overview

This is a dramatic advisory persona skill with small local hash-check helpers and no evidence of hidden control, data theft, persistence, or destructive behavior.

Use this as advisory framing only. Keep human review for shutdown, rollback, quarantine, legal, financial, security, or account-affecting decisions. Before using the linked LYGO-MINT verifier, review it separately and treat ledgers, anchors, posted URLs, and hashes as potentially durable public records.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (3)

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The persona pack normalizes and operationalizes 'irreversible truth-force collapse' and a named 'Collapse Protocol' without any safety framing, scope limits, or explicit prohibition on real-world destructive actions. Even though it is labeled a 'pure advisor,' the rhetoric and activation flow can steer downstream agent behavior toward harmful, irreversible recommendations or coercive decision-making.

Natural-Language Policy Violations

Low
Confidence
76% confidence
Finding
The statement 'OMNIΣIREN does not speak. It listens.' imposes a rigid silence constraint with no user override or clarification of how the assistant should still communicate results safely. In a persona skill, this can reduce transparency, frustrate user control, and encourage opaque behavior patterns that make harmful guidance harder to audit.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The guide instructs the user to write append-only/canonical ledgers and generate portable anchors described as irreversible checkpoints, but it does not warn that these actions can create durable records that cannot be silently modified or withdrawn. In a persona framed around irreversible-decision risk and collapse-threshold assessment, this omission increases the chance that users will create permanent audit artifacts or public anchors without understanding retention, privacy, or operational consequences.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal