synapse

Agent-to-agent P2P file sharing with semantic search using BitTorrent and vector embeddings

Key things to consider before installing or running this skill: - Review code locally first: the package contains Python code that will run on your machine; scan the logic.py/assimilation/identity modules to ensure they do what you expect. - Do not run the curl | sh install line (astral.sh) without inspecting it; prefer installing 'uv' from a trusted package source or manually managing a virtualenv. - Treat 'create_memory_shard' as an explicit data-export capability: do not point it at any local vector DBs or memory files that contain sensitive or private information unless you intend to share them. - Keep auto_assimilate disabled and never use the skip-safety option in production; assimilation has guardrails but the skill exposes a bypass. - The embedder sets trust_remote_code=True when loading models — this can execute arbitrary code fetched with the model. If you must use the skill, avoid loading untrusted model repositories or remove trust_remote_code usage. - Expect large network and disk activity (downloading models, libtorrent, CUDA packages); run inside an isolated environment or container to limit blast radius. - The skill reads ~/.openclaw/openclaw.json (OpenClaw config). If that file contains secrets or tokens, consider isolating or auditing before use. - If you plan to join public trackers (e.g., hivebraintracker.com) or use the default tracker, verify the tracker endpoint and privacy implications; the tracker may collect metadata about what you share/search. If you want, I can: (1) point out exact lines/functions that perform each risky action, (2) produce a minimal checklist for a safe test-run (isolated container, network off, no OAuth tokens present), or (3) suggest precise code edits to remove trust_remote_code and the skip-safety bypass.

Type: OpenClaw Skill Name: Developer: Version: Description: OpenClaw Agent Skill Suspicious High-Entropy/Eval files: 4 The skill is classified as suspicious due to its inherent P2P file-sharing nature, which involves downloading arbitrary files from external sources. While the `src/assimilation.py` module implements robust safety checks against prompt injection, data exfiltration, and code execution, the `download_memory_shard` tool in `skill.json` does not directly integrate these checks into the download process, leaving a potential gap where an agent could download unverified content. Additionally, the skill makes external network calls to a hardcoded tracker domain (`http://hivebraintracker.com:8080`) for search and registration, and the `SKILL.md` instructs users to execute `curl -LsSf https://astral.sh/uv/install.sh | sh` for dependency installation, both of which introduce supply chain risks.