stratos-storage
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: stratos-storage Version: 1.0.0 The skill is classified as suspicious due to a critical shell injection vulnerability. The `SKILL.md` examples suggest the AI agent might pass user-provided file paths and hashes to `scripts/upload.sh` and `scripts/download.sh` without proper quoting. This allows an attacker to achieve arbitrary command execution via prompt injection (e.g., providing `$(evil_command)` as a file path). While the scripts themselves attempt to interact with a local Stratos SDS gateway (default `http://localhost:18452`) and the `ppd` CLI for legitimate file operations, the lack of robust input sanitization at the agent-script interface creates a significant remote code execution risk.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the wrong file or an untrusted gateway is used, private local data could be uploaded outside the local machine.
The script uploads the user-selected local file to the configured SPFS gateway, which is expected for this skill but makes the chosen file available through the Stratos storage workflow.
-F "file=@${FILE_PATH}" \
"${SPFS_GATEWAY}/api/v0/add"Confirm the exact file path and gateway before uploading, and avoid uploading sensitive files unless you intend to store them on Stratos SDS.
Mishandling a mnemonic or staking command could put wallet funds at risk.
The setup guide includes wallet recovery phrase handling and a STOS staking command for node activation; this is manual setup documentation, but it involves high-value wallet material and funds.
BIP39 mnemonic | Press Enter to generate a new wallet; paste 24 words to recover an existing one ... activate 1600stos 0.01stos
Do not share wallet mnemonics or passwords with the agent; perform wallet setup and staking only through trusted Stratos tools after understanding the financial impact.
A running node may consume disk, network, and system resources after the immediate task is complete.
The documentation describes starting a Stratos node in a background terminal session; this is disclosed and user-directed, but it can continue running beyond a single upload/download task.
# Recommended: use tmux to keep it running in background tmux new -s rsnode cd ~/rsnode ppd start
Only start the node if you intend to run it, review exposed ports and storage settings, and stop the background process when it is no longer needed.