中文 EN
Start Review
Risk Sample Stream

Which skills recently failed
or triggered trust review

This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.

349 Risky samples surfaced
4 New in 7 days
0 Platform misses surfaced
All Malicious High Risk Suspicious
Sort by time Sort by risk
All Code Exec Credential Theft Data Exfil Priv Esc Supply Chain Doc Deception Prompt Injection Obfuscation
35 /100
Trust
High Risk

tweet-monitor-pro

文档声称零依赖但实际存在外部脚本依赖

Doc MismatchPriv EscalationSupply ChainSensitive Access
ClawHub Apr 19, 2026
Open Report ↗
30 /100
Trust
High Risk

whale-alert-monitor

硬编码API密钥未在文档声明

Doc MismatchSensitive AccessSupply Chain
ClawHub Apr 12, 2026
Open Report ↗
25 /100
Trust
High Risk

ludwitt-university

updateInstructions 远程代码执行通道

RCEDoc MismatchPersistenceCredential Theft
ClawHub Apr 12, 2026
Open Report ↗
32 /100
Trust
High Risk

birth-system-manager

文档承诺不显示私钥但代码明文输出

Doc MismatchCredential TheftSupply ChainSensitive Access
ClawHub Apr 10, 2026
Open Report ↗
32 /100
Trust
High Risk

skill-registry-unified

未声明的远程代码执行

RCEDoc MismatchSupply ChainSensitive Access
ClawHub Apr 6, 2026
Open Report ↗
35 /100
Trust
High Risk

MiniMax TTS

硬编码 API 密钥暴露

Credential TheftDoc MismatchSupply Chain
Manual upload Apr 5, 2026
Open Report ↗
35 /100
Trust
High Risk

grok-swarm

未声明的shell执行功能

Doc MismatchRCECredential TheftSupply Chain
Manual upload Apr 5, 2026
Open Report ↗
35 /100
Trust
High Risk

dianping-api

Remote Script Execution via curl|bash

Supply ChainObfuscationDoc Mismatch
Manual upload Apr 5, 2026
Open Report ↗
35 /100
Trust
High Risk

face-analysis

Hardcoded Database Credentials in config.yaml

Credential TheftDoc MismatchSupply ChainSensitive Access
Manual upload Apr 5, 2026
Open Report ↗
28 /100
Trust
High Risk

heycube-setup

Undeclared persistent hook installation

Doc MismatchData ExfilSensitive AccessPriv Escalation
Manual upload Apr 5, 2026
Open Report ↗
25 /100
Trust
High Risk

boss-ai-assistant

Hardcoded DashScope API Key

Credential TheftData ExfilSupply ChainSensitive Access
Manual upload Apr 4, 2026
Open Report ↗
32 /100
Trust
High Risk

LLM Proxy

Critical content-blocking disabled — credential exfiltration not prevented

Credential TheftDoc MismatchSensitive AccessRCE
Manual upload Apr 4, 2026
Open Report ↗
38 /100
Trust
High Risk

monid

Remote script execution via curl|bash from mutable branch

RCEPriv EscalationCredential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
35 /100
Trust
High Risk

backup-2-github

Hardcoded Default Repository Exposes User Data

Data ExfilDoc MismatchSupply ChainSensitive Access
Manual upload Apr 4, 2026
Open Report ↗
28 /100
Trust
High Risk

uplo-defense

Unpinned npm package execution via npx -y

Supply ChainData ExfilCredential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
30 /100
Trust
High Risk

VLAN Linux Client Skill

Remote script piped to bash without integrity verification

Supply ChainCredential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
1 / 2
Next →