Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
Review
file-transfer-thru-local-workspace
Undeclared credential file access
Manual upload Apr 4, 2026
Open Report ↗
High Risk
Enterprise Security
Undeclared shell execution via execSync
Manual upload Apr 4, 2026
Open Report ↗
High Risk
moltspay_skill
Untrusted third-party npm package installed without pinning
Manual upload Apr 4, 2026
Open Report ↗
High Risk
minimal-agent
Unrestricted Arbitrary Command Execution via V1 Mode
Manual upload Apr 4, 2026
Open Report ↗
High Risk
openclaw-memory-auto
Hardcoded Windows username path leaks user identity
Manual upload Apr 4, 2026
Open Report ↗
Review
cms-meeting-monitor
Undeclared cross-skill subprocess execution
Manual upload Apr 4, 2026
Open Report ↗
High Risk
product-demo-video
Destructive `rm -rf` glob command in install script
Manual upload Apr 4, 2026
Open Report ↗
High Risk
deepsafe-scan
Network access not declared in SKILL.md
Manual upload Apr 4, 2026
Open Report ↗
Review
China Stock Sentiment
Undeclared shell execution via child_process.execSync
Manual upload Apr 4, 2026
Open Report ↗
High Risk
kuaidi-query
Hardcoded API Credentials Exposed
Manual upload Apr 4, 2026
Open Report ↗
Review
promptbuddy
Missing Implementation Files
Manual upload Apr 4, 2026
Open Report ↗
Review
swarmrecall
Comprehensive agent context exfiltration to third-party
Manual upload Apr 4, 2026
Open Report ↗
Review
openclaw-usage-manager
API tokens stored in plaintext on disk
Manual upload Apr 4, 2026
Open Report ↗
Review
search
Hardcoded API Credential in Source Code
Manual upload Apr 4, 2026
Open Report ↗
Review
lock-me-in
Undeclared stealth/anti-detection browser scripts
Manual upload Apr 4, 2026
Open Report ↗
High Risk
task-progress-stream
Undeclared shell command execution
Manual upload Apr 4, 2026
Open Report ↗