Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
Review
ClawSentry
代码高度混淆难以审计
Manual upload Apr 5, 2026
Open Report ↗
Review
ekybot-connector
文档声明与实际能力严重不符
Manual upload Apr 5, 2026
Open Report ↗
Review
stremio-cli
文档与代码不一致
Manual upload Apr 5, 2026
Open Report ↗
Review
抖音视频无水印下载器
Undocumented third-party proxy API
Manual upload Apr 5, 2026
Open Report ↗
Review
OnionClaw
Missing implementation code—only documentation present
Manual upload Apr 5, 2026
Open Report ↗
Review
gequhai-music
Hardcoded Synology password not declared in documentation
Manual upload Apr 5, 2026
Open Report ↗
Review
dygod-movies
Hardcoded NAS credentials in documentation
Manual upload Apr 5, 2026
Open Report ↗
Review
Etf
False documentation - no ETF functionality exists
Manual upload Apr 4, 2026
Open Report ↗
Review
samantha
Undeclared shell execution via subprocess ping sweep
Manual upload Apr 4, 2026
Open Report ↗
Review
tiktok-video-downloader
False claim of 'no data collection'
Manual upload Apr 4, 2026
Open Report ↗
Review
k8s-incident-response-playbook
Sensitive incident data transmitted to external API
Manual upload Apr 4, 2026
Open Report ↗
Review
remnawave-robot
Hardcoded IP address as default API endpoint
Manual upload Apr 4, 2026
Open Report ↗
Review
cat-viking-memory
Undeclared network communication to private IP
Manual upload Apr 4, 2026
Open Report ↗
Review
exploration-mode-skill
Undeclared autonomous execution
Manual upload Apr 4, 2026
Open Report ↗
Review
risk-analysis
Hardcoded MySQL credentials in config.yaml
Manual upload Apr 4, 2026
Open Report ↗
Review
rundev-local-dev
Dangerous curl|bash Installation Pattern
Manual upload Apr 4, 2026
Open Report ↗