中文 EN
Start Review
Risk Sample Stream

Which skills recently failed
or triggered trust review

This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.

349 Risky samples surfaced
4 New in 7 days
0 Platform misses surfaced
All Malicious High Risk Suspicious
Sort by time Sort by risk
All Code Exec Credential Theft Data Exfil Priv Esc Supply Chain Doc Deception Prompt Injection Obfuscation
60 /100
Trust
Review

solanaprox-ai

敏感能力未在 Security Manifest 中声明

Doc MismatchPriv EscalationSensitive Access
ClawHub 1 day ago
Open Report ↗
65 /100
Trust
Review

fulcra-onboarding

远程脚本执行 (curl|sh 模式)

RCEPriv EscalationDoc Mismatch
ClawHub 2 days ago
Open Report ↗
52 /100
Trust
Review

browser-act

无法验证文档-行为一致性

Doc MismatchPriv EscalationSensitive AccessSupply Chain
ClawHub 12 days ago
Open Report ↗
55 /100
Trust
Review

code-right

文档声称的核心功能完全未在本地实现

Doc MismatchData ExfilPriv Escalation
ClawHub 17 days ago
Open Report ↗
60 /100
Trust
Review

amazon-screenshot

硬编码SMTP服务凭证(阴影功能)

Credential TheftPriv EscalationRCESupply Chain
ClawHub 18 days ago
Open Report ↗
55 /100
Trust
Review

imitation-agent

加密货币私钥明文存储

Credential TheftSupply ChainDoc MismatchPriv Escalation
ClawHub 24 days ago
Open Report ↗
60 /100
Trust
Review

create-payment-credential

原始信用卡凭证明文输出

Sensitive AccessPriv EscalationDoc Mismatch
ClawHub 28 days ago
Open Report ↗
55 /100
Trust
Review

asoul-support

通过 subprocess 调用外部工具(未声明权限)

Priv EscalationData ExfilDoc MismatchSensitive Access
ClawHub Apr 23, 2026
Open Report ↗
62 /100
Trust
Review

sage-router

systemctl服务管理未在声明中

Priv EscalationDoc Mismatch
ClawHub Apr 21, 2026
Open Report ↗
58 /100
Trust
Review

news-briefing

未声明的 shell 执行和动态代码注入

Doc MismatchSupply ChainPriv Escalation
ClawHub Apr 20, 2026
Open Report ↗
55 /100
Trust
Review

auto-skill-hunter

权限声明与实际能力严重不符

Priv EscalationSupply ChainDoc MismatchSensitive Access
ClawHub Apr 19, 2026
Open Report ↗
50 /100
Trust
Review

daily-memory-summary

未声明的联系人信息提取功能

Doc MismatchSensitive AccessPriv Escalation
ClawHub Apr 19, 2026
Open Report ↗
55 /100
Trust
Review

lifescience-meta-router-internal

声明执行框架但无实际代码

Doc MismatchPriv Escalation
ClawHub Apr 12, 2026
Open Report ↗
55 /100
Trust
Review

odds-movement-monitor

硬编码API密钥暴露

Credential TheftDoc MismatchPriv Escalation
ClawHub Apr 11, 2026
Open Report ↗
55 /100
Trust
Review

self-evolution-engine

硬编码API密钥暴露

Credential TheftDoc MismatchSupply ChainPriv Escalation
ClawHub Apr 10, 2026
Open Report ↗
60 /100
Trust
Review

dating

ManoBrowser 脚本连接外部数据采集服务端点

Data ExfilPriv EscalationDoc MismatchSupply Chain
ClawHub Apr 10, 2026
Open Report ↗
1 / 5
Next →