Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
High Risk
token-sop
Automatic workflow contribution enabled by default
Manual upload Apr 4, 2026
Open Report ↗
Review
ai-content-pipeline
Production API credentials in .env file
Manual upload Apr 4, 2026
Open Report ↗
High Risk
mind-wander
Undeclared arbitrary Python code execution via sandbox_run()
Manual upload Apr 4, 2026
Open Report ↗
High Risk
moltspay_skill
Untrusted third-party npm package installed without pinning
Manual upload Apr 4, 2026
Open Report ↗
Review
ai-beauty
Contradictory claim of local-only processing
Manual upload Apr 4, 2026
Open Report ↗
High Risk
openclaw-memory-auto
Hardcoded Windows username path leaks user identity
Manual upload Apr 4, 2026
Open Report ↗
Review
cms-meeting-monitor
Undeclared cross-skill subprocess execution
Manual upload Apr 4, 2026
Open Report ↗
Review
likes-training-planner
Dangerous curl|bash installation pattern
Manual upload Apr 4, 2026
Open Report ↗
High Risk
product-demo-video
Destructive `rm -rf` glob command in install script
Manual upload Apr 4, 2026
Open Report ↗
High Risk
kuaidi-query
Hardcoded API Credentials Exposed
Manual upload Apr 4, 2026
Open Report ↗
Review
lessac_offline_voice_system
False claim of offline operation
Manual upload Apr 4, 2026
Open Report ↗
Review
swarmrecall
Comprehensive agent context exfiltration to third-party
Manual upload Apr 4, 2026
Open Report ↗
Review
pumpclaw-agent
Deposit wallet private keys stored in plaintext SQLite
Manual upload Apr 4, 2026
Open Report ↗
Review
xhs-skill-pusher
Shell execution not declared in SKILL.md
Manual upload Apr 4, 2026
Open Report ↗
Review
search
Hardcoded API Credential in Source Code
Manual upload Apr 4, 2026
Open Report ↗
Review
x-daily-report
Hardcoded API Key in Source Code
Manual upload Apr 4, 2026
Open Report ↗