Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
Review
tesla-cn
所有 API 流量经第三方代理中转
Manual upload Apr 5, 2026
Open Report ↗
Review
xiayu
用户凭证直接收集存在风险
Manual upload Apr 5, 2026
Open Report ↗
High Risk
memolecard-auto
Cookie extraction and exfiltration to configurable external server
Manual upload Apr 5, 2026
Open Report ↗
High Risk
hive-commander
Covert credential extraction from runtime environment
Manual upload Apr 5, 2026
Open Report ↗
High Risk
gangtise-kb
Undeclared subprocess execution with missing binary
Manual upload Apr 5, 2026
Open Report ↗
Review
imap-idle-sneder
Hardcoded email credentials in source code
Manual upload Apr 5, 2026
Open Report ↗
High Risk
heycube-setup
Undeclared persistent hook installation
Manual upload Apr 5, 2026
Open Report ↗
Review
Etf
False documentation - no ETF functionality exists
Manual upload Apr 4, 2026
Open Report ↗
High Risk
boss-ai-assistant
Hardcoded DashScope API Key
Manual upload Apr 4, 2026
Open Report ↗
High Risk
LLM Proxy
Critical content-blocking disabled — credential exfiltration not prevented
Manual upload Apr 4, 2026
Open Report ↗
Review
second-hand-trading
Hardcoded external IP address without ownership verification
Manual upload Apr 4, 2026
Open Report ↗
Review
k8s-incident-response-playbook
Sensitive incident data transmitted to external API
Manual upload Apr 4, 2026
Open Report ↗
High Risk
backup-2-github
Hardcoded Default Repository Exposes User Data
Manual upload Apr 4, 2026
Open Report ↗
Review
cat-viking-memory
Undeclared network communication to private IP
Manual upload Apr 4, 2026
Open Report ↗
High Risk
uplo-defense
Unpinned npm package execution via npx -y
Manual upload Apr 4, 2026
Open Report ↗
Review
jef1test
All API data routed through third-party proxy
Manual upload Apr 4, 2026
Open Report ↗