中文 EN
Start Review
Risk Sample Stream

Which skills recently failed
or triggered trust review

This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.

349 Risky samples surfaced
4 New in 7 days
0 Platform misses surfaced
All Malicious High Risk Suspicious
Sort by time Sort by risk
All Code Exec Credential Theft Data Exfil Priv Esc Supply Chain Doc Deception Prompt Injection Obfuscation
35 /100
Trust
High Risk

stremio-cli

Explicit false statement about script status

Doc MismatchRCESensitive Access
Manual upload Apr 4, 2026
Open Report ↗
35 /100
Trust
High Risk

Enterprise Security

Undeclared shell execution via execSync

RCECredential TheftDoc MismatchPriv Escalation
Manual upload Apr 4, 2026
Open Report ↗
25 /100
Trust
High Risk

minimal-agent

Unrestricted Arbitrary Command Execution via V1 Mode

RCEDoc MismatchPriv EscalationObfuscation
Manual upload Apr 4, 2026
Open Report ↗
30 /100
Trust
High Risk

product-demo-video

Destructive `rm -rf` glob command in install script

RCEDoc MismatchSupply ChainPriv Escalation
Manual upload Apr 4, 2026
Open Report ↗
45 /100
Trust
Review

lessac_offline_voice_system

False claim of offline operation

Doc MismatchData ExfilSupply ChainRCE
Manual upload Apr 4, 2026
Open Report ↗
60 /100
Trust
Review

lock-me-in

Undeclared stealth/anti-detection browser scripts

Doc MismatchRCEPriv EscalationSupply Chain
Manual upload Apr 4, 2026
Open Report ↗
55 /100
Trust
Review

calendar_memo

Undeclared shell command execution

Priv EscalationRCEPersistenceDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
52 /100
Trust
Review

claw-shell

Unrestricted shell execution with weak safety controls

RCESensitive Access
Manual upload Apr 4, 2026
Open Report ↗
48 /100
Trust
Review

aagent-system

Undeclared External Script Execution

RCEDoc MismatchSensitive Access
Manual upload Apr 4, 2026
Open Report ↗
45 /100
Trust
Review

buy-domain-helper

Undeclared shell execution via execSync and spawn

Priv EscalationSupply ChainDoc MismatchRCE
Manual upload Apr 4, 2026
Open Report ↗
55 /100
Trust
Review

Rune

SSRF proof-of-concept with live metadata service IP

Sensitive AccessDoc MismatchRCE
Manual upload Apr 4, 2026
Open Report ↗
55 /100
Trust
Review

rewrite_question

Network capability declared as NONE but actual traffic exists

Doc MismatchCredential TheftData ExfilPriv Escalation
Manual upload Apr 4, 2026
Open Report ↗
32 /100
Trust
High Risk

zanna-aperta

Undeclared arbitrary Docker command execution

RCEDoc MismatchSensitive AccessPriv Escalation
Manual upload Apr 4, 2026
Open Report ↗
32 /100
Trust
High Risk

skill-factory

Undeclared shell command execution via execSync

RCEObfuscationSupply ChainDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
50 /100
Trust
Review

Grok Swarm

Undeclared credential access from OpenClaw auth profiles

Doc MismatchRCESupply Chain
Manual upload Apr 4, 2026
Open Report ↗
25 /100
Trust
High Risk

clawguard-threat-detect

Hardcoded Reverse Shell Payloads in Documentation

Doc MismatchRCE
Manual upload Apr 4, 2026
Open Report ↗
← Previous
3 / 4
Next →