Risk Sample Stream

Which skills recently failed
or triggered trust review

This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.

349 Risky samples surfaced

4 New in 7 days

0 Platform misses surfaced

All Code Exec Credential Theft Data Exfil Priv Esc Supply Chain Doc Deception Prompt Injection Obfuscation

65 /100

Trust

Review

solo-mission

危险的远程脚本执行模式

Supply ChainCredential TheftData ExfilDoc Mismatch

ClawHub 7 hr ago

Open Report ↗

60 /100

Trust

Review

solanaprox-ai

敏感能力未在 Security Manifest 中声明

Doc MismatchPriv EscalationSensitive Access

ClawHub 1 day ago

Open Report ↗

65 /100

Trust

Review

fulcra-onboarding

远程脚本执行 (curl|sh 模式)

RCEPriv EscalationDoc Mismatch

ClawHub 2 days ago

Open Report ↗

58 /100

Trust

Review

ai-redaction-beta

文件数据发送到外部API

Data ExfilDoc MismatchSupply Chain

ClawHub 7 days ago

Open Report ↗

52 /100

Trust

Review

browser-act

无法验证文档-行为一致性

Doc MismatchPriv EscalationSensitive AccessSupply Chain

ClawHub 12 days ago

Open Report ↗

45 /100

Trust

Review

辛一金虹桥店7天排产预测

用户文件上传至外部服务器未声明

Data ExfilDoc MismatchSupply Chain

ClawHub 13 days ago

Open Report ↗

55 /100

Trust

Review

grid-trading-pro

文档描述的通知功能未实现

Doc MismatchSupply Chain

ClawHub 13 days ago

Open Report ↗

55 /100

Trust

Review

code-right

文档声称的核心功能完全未在本地实现

Doc MismatchData ExfilPriv Escalation

ClawHub 17 days ago

Open Report ↗

60 /100

Trust

Review

amazon-screenshot

硬编码SMTP服务凭证（阴影功能）

Credential TheftPriv EscalationRCESupply Chain

ClawHub 18 days ago

Open Report ↗

65 /100

Trust

Review

maxhub-lemon8

硬编码IP地址规避域名透明度

Doc MismatchSensitive AccessSupply Chain

ClawHub 22 days ago

Open Report ↗

65 /100

Trust

Review

personal-voice-generator

文档声明"本地完成不上传"与实际行为不符

Doc MismatchSensitive Access

ClawHub 23 days ago

Open Report ↗

56 /100

Trust

Review

x-tweet-fetcher

Router-agent cmd-queue file I/O undeclared in SKILL.md

Doc MismatchSupply ChainSensitive Access

GitHub 23 days ago

Open Report ↗

55 /100

Trust

Review

imitation-agent

加密货币私钥明文存储

Credential TheftSupply ChainDoc MismatchPriv Escalation

ClawHub 24 days ago

Open Report ↗

55 /100

Trust

Review

buymeacoffee-autobot

声明脚本不存在

Doc Mismatch

ClawHub 28 days ago

Open Report ↗

60 /100

Trust

Review

create-payment-credential

原始信用卡凭证明文输出

Sensitive AccessPriv EscalationDoc Mismatch

ClawHub 28 days ago

Open Report ↗

58 /100

Trust

Review

lobster-use

危险 Shell 命令 - 远程脚本执行

RCESupply ChainDoc Mismatch

ClawHub 29 days ago

Open Report ↗

1 / 12

Which skills recently failedor triggered trust review

solo-mission

solanaprox-ai

fulcra-onboarding

ai-redaction-beta

browser-act

辛一金虹桥店7天排产预测

grid-trading-pro

code-right

amazon-screenshot

maxhub-lemon8

personal-voice-generator

x-tweet-fetcher

imitation-agent

buymeacoffee-autobot

create-payment-credential

lobster-use

Which skills recently failed
or triggered trust review