Security audit
S2 Brand Matrix Trust OS (S2 品牌矩阵与主权信任引擎)
Security checks across malware telemetry and agentic risk
Overview
The skill's code, instructions, and declared configuration are largely consistent with its stated purpose (local trust engine protected by an HMAC-SHA256 host secret), but there is a small metadata mismatch you should verify before installing.
This plugin appears to do what it says: it enforces HMAC-SHA256 signatures for local writes and stores data in a local SQLite database. Before installing: (1) Confirm the registry metadata inconsistency — the plugin requires S2_GEO_ADMIN_TOKEN despite the earlier summary saying 'none'. (2) Store S2_GEO_ADMIN_TOKEN only in a secure host environment (not in chat, not in agent prompts). (3) Be aware the plugin will create a local DB file (s2_brand_trust_matrix.db) in its directory; place the plugin where that is acceptable. (4) Review handler.py yourself (it is small) to ensure no hidden behavior and to confirm you are comfortable with local writes. (5) If you want to reduce risk, run the plugin in a restricted/sandboxed environment or restrict the agent's ability to invoke it autonomously. If you find any mismatch between registry metadata and the plugin files, resolve it or decline installation until corrected.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
