Just putting it out there:
Rmdta / Smooth apparently was able to 'bypass local auth' (afaik impossible) and allegedly created a new BLHack. If you distribute a malicious script once, you're probably gonna do it again.
I'm mentioning this because Clay may have some sort of malicious script.