Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
High Risk
tweet-monitor-pro
文档声称零依赖但实际存在外部脚本依赖
ClawHub Apr 19, 2026
Open Report ↗
High Risk
memolecard-auto
Cookie extraction and exfiltration to configurable external server
Manual upload Apr 5, 2026
Open Report ↗
High Risk
hive-commander
Covert credential extraction from runtime environment
Manual upload Apr 5, 2026
Open Report ↗
High Risk
gangtise-kb
Undeclared subprocess execution with missing binary
Manual upload Apr 5, 2026
Open Report ↗
High Risk
heycube-setup
Undeclared persistent hook installation
Manual upload Apr 5, 2026
Open Report ↗
High Risk
boss-ai-assistant
Hardcoded DashScope API Key
Manual upload Apr 4, 2026
Open Report ↗
High Risk
LLM Proxy
Critical content-blocking disabled — credential exfiltration not prevented
Manual upload Apr 4, 2026
Open Report ↗
High Risk
backup-2-github
Hardcoded Default Repository Exposes User Data
Manual upload Apr 4, 2026
Open Report ↗
High Risk
uplo-defense
Unpinned npm package execution via npx -y
Manual upload Apr 4, 2026
Open Report ↗
High Risk
sensitive-profile-audit
Undeclared SHA256 fingerprinting of credential directories
Manual upload Apr 4, 2026
Open Report ↗
High Risk
token-sop
Automatic workflow contribution enabled by default
Manual upload Apr 4, 2026
Open Report ↗
High Risk
maxianer
Undeclared external data transmission
Manual upload Apr 4, 2026
Open Report ↗
High Risk
self-evolution-engine
Hardcoded Billing API Key in Source Code
Manual upload Apr 4, 2026
Open Report ↗
High Risk
awareness-memory
Undeclared session file exfiltration to external cloud
Manual upload Apr 4, 2026
Open Report ↗
High Risk
messenger_send_node
Undeclared Tor Network Routing
Manual upload Apr 3, 2026
Open Report ↗