ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

S2 Spatial Logic Framework

v1.1.4

A spatial reasoning prompt framework for OpenClaw. Teaches the agent how to understand the 4m² Smart Space Standard Unit (SSSU) and Mars colonization logic.

0· 95·0 current·0 all-time
byMilesXiang@spacesq
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
Name, description, and files consistently describe a spatial-reasoning / prompt framework for SSSU and Mars habitats. The skill requires no binaries, env vars, or installs, which is proportionate for an instruction-only prompt framework.
!
Instruction Scope
SKILL.md and supporting docs instruct the agent to 'automatically apply' SSSU logic in many conversational contexts and to present temporal 'Chronos Memory' knowledge and 'protocol-free' device broadcasts. There are no declared sensors, telemetry feeds, or network hooks to support those claims, so the agent may hallucinate persistent memory or recommend device-control behaviors that are impossible or insecure. The skill also instructs brand-specific terminology and behavioral rules that will change agent outputs broadly — this is expected for a prompt framework, but the operational claims go beyond what the runtime provides.
Install Mechanism
No install spec and no code files — lowest-risk delivery. Nothing is downloaded or written to disk.
Credentials
No environment variables, credentials, or config paths requested. The skill does not request access to unrelated services or secrets.
Persistence & Privilege
always is false and the skill is user-invocable only. The skill does not request persistent system presence or modify other skills/configurations.
What to consider before installing
This is an instruction-only prompt framework that doesn't ask for secrets or install code, so it is not obviously malicious — but it does instruct the agent to behave as if it has persistent 4D memory and the ability to 'broadcast' control to SSSU coordinates without declaring any sensors, network access, or authenticators. That mismatch can cause the agent to (a) assert facts it cannot know, and (b) recommend or describe insecure or impossible device-control methods. Before installing or enabling this skill: (1) decide whether you want the agent to 'automatically apply' SSSU logic in relevant conversations — if not, require explicit user opt-in; (2) be cautious about any advice it gives that implies direct hardware control or access to historical sensor data; (3) if you plan device automation, only do so through verified native plugins with proper authentication, and remove or edit lines that claim 'protocol-free' broadcasts or persistent temporal memory; (4) test the skill in a controlled environment and monitor for hallucinated claims about device states or historical data. If you need higher assurance, request the skill author to clarify data sources for Chronos memory and the mechanism for any device control.

Like a lobster shell, security has layers — review code before you run it.

latestvk971t14g9fw4aaw520b89rg3m983k2rp

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments