Security audit
S2 Mothership [3.28 Zero-Trust]
Security checks across malware telemetry and agentic risk
Overview
This smart-home/root-agent skill can run native code, control devices, and store long-term sensor data, but its permissions and automatic behaviors are broader than its registry disclosure.
Install only if you intentionally want a high-privilege smart-home/root-agent framework. Test it in an isolated environment, restrict OpenClaw/webhook access, disable exec and MCP auto-discovery unless needed, review the anti-theft hard-lock behavior, and set retention/privacy controls before connecting real devices.
VirusTotal
VirusTotal engine telemetry is currently stale for this artifact.
Static analysis
No suspicious patterns detected.
