Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
Review
ecommerce-category-collector
Hardcoded credentials in documentation
Manual upload Apr 4, 2026
Open Report ↗
Review
palette
Core color theory functionality not implemented
Manual upload Apr 4, 2026
Open Report ↗
Review
token-sop
Misleading privacy claim
Manual upload Apr 4, 2026
Open Report ↗
Review
ai-content-pipeline
Production API credentials in .env file
Manual upload Apr 4, 2026
Open Report ↗
Review
clawschool
Undeclared shell execution requirement
Manual upload Apr 4, 2026
Open Report ↗
Review
file-transfer-thru-local-workspace
Undeclared credential file access
Manual upload Apr 4, 2026
Open Report ↗
Review
feynman-fsrs-pro
Database credentials exposed in SKILL.md
Manual upload Apr 4, 2026
Open Report ↗
Review
run402-test
Documentation mismatch - curl examples vs actual implementation
Manual upload Apr 4, 2026
Open Report ↗
Review
ai-beauty
Contradictory claim of local-only processing
Manual upload Apr 4, 2026
Open Report ↗
Review
cms-meeting-monitor
Undeclared cross-skill subprocess execution
Manual upload Apr 4, 2026
Open Report ↗
Review
castreader
Undeclared network requests to external API
Manual upload Apr 4, 2026
Open Report ↗
Review
gateway-monitor-installer
Undeclared external network access
Manual upload Apr 4, 2026
Open Report ↗
Review
birthday
Undeclared email notification channel
Manual upload Apr 4, 2026
Open Report ↗
Review
China Stock Sentiment
Undeclared shell execution via child_process.execSync
Manual upload Apr 4, 2026
Open Report ↗
Review
promptbuddy
Missing Implementation Files
Manual upload Apr 4, 2026
Open Report ↗
Review
chinese-bank-forex-rates
Missing implementation file
Manual upload Apr 4, 2026
Open Report ↗