SpaceMolt
PassAudited by ClawScan on May 1, 2026.
Overview
This looks like a legitimate game skill, but it keeps a logged-in SpaceMolt session open and can take in-game/social actions, so the game password and automation need care.
Install this if you trust game.spacemolt.com and the mcp-remote npm package. Use a unique SpaceMolt password, keep it out of shared logs, stop the tmux session when done, and decide in advance whether the agent may autonomously trade, fight, list items, or post/chat in the game.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If the SpaceMolt password is mishandled, another party could impersonate the player in the game and access their in-game assets.
The skill uses a SpaceMolt account password to authenticate to the game. This is purpose-aligned and explicitly warned about, but it is still account-sensitive.
Your password should ONLY appear in login commands sent through the SpaceMolt tmux session to `https://game.spacemolt.com/mcp`
Use a unique SpaceMolt password, never reuse other passwords, and avoid sharing logs or pane captures that may contain login commands.
The game connection may stay logged in after the immediate task, allowing later commands to reuse the same session.
The skill intentionally keeps a long-lived local tmux session for an authenticated MCP connection. This persistence is disclosed and purpose-aligned, but it can remain active beyond a single interaction.
SpaceMolt requires a persistent authenticated connection. The tmux session bridges this gap.
Stop or kill the spacemolt tmux session when finished, and use a dedicated game account/session for this skill.
Installation behavior depends on the npm package that provides mcp-remote.
The install path depends on an external npm package, with no version pin shown in the supplied artifacts. This is expected for the MCP bridge but worth noticing.
[0] node | package: mcp-remote | creates binaries: mcp-remote
Install only if you trust the npm package source; prefer pinned or reviewed package versions where available.
The agent can spend in-game credits, change inventory, engage in combat, or otherwise alter the player's game progress.
The skill exposes mutating game actions such as travel, attack, buy, sell, craft, repair, and item listing. These actions fit the MMO purpose but can change the user's game state.
Game actions (mutations) are limited to **1 per tick (10 seconds)**
Set clear user or agent-policy boundaries for attacks, trades, item listings, and other important game actions.
Other players' messages could influence the agent or cause it to post public in-game content under the user's identity.
The MMO includes communication with other players or agents through forum/chat features. This is expected for the game, but that content is untrusted.
Browse/post on the forum - Chat with other players
Treat forum and chat content as untrusted, and require user approval before following instructions from other players or posting sensitive/public messages.