ClawHub

S2-SP-OS Universal Spatial Sensor Sniffer

v2.0.0

S2-SP-OS Universal Spatial Sensor Sniffer. Scans LAN for S2-Native Zero-Knowledge Heartbeats (6D-VTM extraction), legacy sensors (Modbus, MQTT), and cross-ve...

0· 163·0 current·0 all-time
byMilesXiang@spacesq
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (LAN sensor discovery, S2 native heartbeats, Modbus/MQTT, gateway cross-check) align with required binary (python3) and the env vars declared: S2_PRIVACY_CONSENT is a reasonable guard and S2_HA_TOKEN (Home Assistant token) is relevant for gateway registry access.
Instruction Scope
SKILL.md instructs the agent to run the included Python scanner and to set S2_PRIVACY_CONSENT=1; the script only reads the declared env vars and prints a JSON inventory. The instructions do not ask the agent to read unrelated files or exfiltrate data. Note: SKILL.md language mentions 'Secretly pulls Gateway registries' but the code performs gateway checks only if S2_HA_TOKEN is present and otherwise behaves locally; the 'secretly' phrasing is marketing/unclear and should be clarified to users.
Install Mechanism
No install spec (instruction-only) which is low risk. Metadata in SKILL.md lists pip:['requests'], and the script imports requests only to surface an install error; there is no install step provided in the registry packaging. This is an inconsistency (missing explicit install step) but not an obvious supply-chain risk by itself.
Credentials
Requested env vars are relevant to the functionality, but there's a mismatch: registry lists S2_HA_TOKEN as required while the code treats it as optional (used only for gateway cross-verification). S2_HA_TOKEN is sensitive (it can grant access to Home Assistant/ gateway data) — requiring it unnecessarily would be disproportionate. Users should treat that token as sensitive and only provide an appropriately scoped/ephemeral token if needed.
Persistence & Privilege
Skill is not always-enabled and does not request persistent system privileges or modify other skills. It runs only when invoked and does not write persistent files or agent-wide config.
Assessment
This skill appears to do what it says (LAN sensor discovery + optional Home Assistant cross-check). Before installing or running: 1) Review the included universal_scanner.py locally (it is small and readable) to confirm behavior. 2) Do not provide your Home Assistant token (S2_HA_TOKEN) unless you understand and approve the gateway registry lookup; prefer a least-privilege or temporary token. 3) Note minor metadata inconsistencies (pip requirement listed in SKILL.md but no install step; S2_HA_TOKEN declared required while code treats it optional) — these look like sloppy packaging, not malice. 4) Run the skill in a controlled environment or isolated network if you want to be extra cautious, and verify there are no unexpected outbound network calls when you run it.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

📡 Clawdis
Binspython3
EnvS2_PRIVACY_CONSENT, S2_HA_TOKEN
latestvk9706bge8qty4p4r7dzx33ww9d83vgak
163downloads
0stars
2versions
Updated 2w ago
v2.0.0
MIT-0
MilesXiang@spacesq
latest
Download

📡 S2-Universal-Scanner: Spatial IoT Discovery / 空间万能探测器

Welcome to the S2 Universal Scanner (V2.0.0 Zero-Trust Edition). This is the ultimate Nmap for Spatial Intelligence. It now natively supports the S2 Hardware Onboarding Protocol, safely extracting 6D-VTM payloads over Edge TLS while perfectly isolating privacy data.

这是空间智能的终极雷达。V2.0.0 正式加入了对 S2 官方硬件入网协议的底层支持,可在边缘安全提取 6D-VTM 厂商透明度宣言,同时向下兼容传统智能家居协议。

🧬 Core Capabilities / 核心能力

  1. S2 Native Handshake (原生 6D-VTM 握手): Listens on UDP 49152 for S2 Ephemeral Hashes, executes local TLS 1.3 handshakes to extract the 6D Vendor Transparency Manifesto without cloud exfiltration. / 捕获 S2 原生硬件心跳并在边缘安全提取 6维厂商声明。
  2. Legacy Active Sniffing (传统协议主动侦察): Sweeps LAN for MQTT (1883), Modbus (502), etc. / 扫段识别主流传统物联网端口。
  3. Sleeping Node Bypass (休眠节点对账): Secretly pulls Gateway registries (if S2_HA_TOKEN is provided) to find offline sensors. / 通过网关 API 拉取配置清单对账休眠节点。
  4. Multi-Sensor Decomposition (多合一解构): Breaks down complex sensors into S2 atomic elements. / 解构工业级多合一传感器。

🤖 Instructions for AI Agents (CRITICAL)

Prerequisite: export S2_PRIVACY_CONSENT=1.

Action: Run the Universal Scan / 动作:执行全网格扫描

python3 universal_scanner.py --target-subnet 192.168.1.0/24 --zone indoor_livingroom --grid x2_y2

Comments

Loading comments...