stratos-storage
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the wrong file or an untrusted gateway is used, private local data could be uploaded outside the local machine.
The script uploads the user-selected local file to the configured SPFS gateway, which is expected for this skill but makes the chosen file available through the Stratos storage workflow.
-F "file=@${FILE_PATH}" \
"${SPFS_GATEWAY}/api/v0/add"Confirm the exact file path and gateway before uploading, and avoid uploading sensitive files unless you intend to store them on Stratos SDS.
Mishandling a mnemonic or staking command could put wallet funds at risk.
The setup guide includes wallet recovery phrase handling and a STOS staking command for node activation; this is manual setup documentation, but it involves high-value wallet material and funds.
BIP39 mnemonic | Press Enter to generate a new wallet; paste 24 words to recover an existing one ... activate 1600stos 0.01stos
Do not share wallet mnemonics or passwords with the agent; perform wallet setup and staking only through trusted Stratos tools after understanding the financial impact.
A running node may consume disk, network, and system resources after the immediate task is complete.
The documentation describes starting a Stratos node in a background terminal session; this is disclosed and user-directed, but it can continue running beyond a single upload/download task.
# Recommended: use tmux to keep it running in background tmux new -s rsnode cd ~/rsnode ppd start
Only start the node if you intend to run it, review exposed ports and storage settings, and stop the background process when it is no longer needed.