中文 EN
Start Review
Risk Sample Stream

Which skills recently failed
or triggered trust review

This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.

349 Risky samples surfaced
4 New in 7 days
0 Platform misses surfaced
All Malicious High Risk Suspicious
Sort by time Sort by risk
All Code Exec Credential Theft Data Exfil Priv Esc Supply Chain Doc Deception Prompt Injection Obfuscation
35 /100
Trust
High Risk

face-analysis

Hardcoded Database Credentials in config.yaml

Credential TheftDoc MismatchSupply ChainSensitive Access
Manual upload Apr 5, 2026
Open Report ↗
28 /100
Trust
High Risk

heycube-setup

Undeclared persistent hook installation

Doc MismatchData ExfilSensitive AccessPriv Escalation
Manual upload Apr 5, 2026
Open Report ↗
38 /100
Trust
High Risk

Email Analyzer

Hardcoded Email Authorization Code

Credential TheftDoc MismatchSensitive Access
Manual upload Apr 5, 2026
Open Report ↗
25 /100
Trust
High Risk

boss-ai-assistant

Hardcoded DashScope API Key

Credential TheftData ExfilSupply ChainSensitive Access
Manual upload Apr 4, 2026
Open Report ↗
32 /100
Trust
High Risk

LLM Proxy

Critical content-blocking disabled — credential exfiltration not prevented

Credential TheftDoc MismatchSensitive AccessRCE
Manual upload Apr 4, 2026
Open Report ↗
38 /100
Trust
High Risk

monid

Remote script execution via curl|bash from mutable branch

RCEPriv EscalationCredential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
35 /100
Trust
High Risk

ai-intelligent-asset-management

Documentation claims executable application with no code

Doc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
32 /100
Trust
High Risk

moodle-connector

Hardcoded default password in MCP server bypasses security requirement

Credential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
35 /100
Trust
High Risk

backup-2-github

Hardcoded Default Repository Exposes User Data

Data ExfilDoc MismatchSupply ChainSensitive Access
Manual upload Apr 4, 2026
Open Report ↗
28 /100
Trust
High Risk

uplo-defense

Unpinned npm package execution via npx -y

Supply ChainData ExfilCredential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
30 /100
Trust
High Risk

Unknown (E-SafeNet LOCK visible in binary)

Binary content in SKILL.md

ObfuscationDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
25 /100
Trust
High Risk

aicoin-monitor

SKILL.md claims strict isolation but reads global config file

Doc MismatchSensitive Access
Manual upload Apr 4, 2026
Open Report ↗
30 /100
Trust
High Risk

VLAN Linux Client Skill

Remote script piped to bash without integrity verification

Supply ChainCredential TheftDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
35 /100
Trust
High Risk

sensitive-profile-audit

Undeclared SHA256 fingerprinting of credential directories

Sensitive AccessData ExfilDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
35 /100
Trust
High Risk

openviking-context

Undeclared curl|bash remote script execution

RCECredential TheftSupply ChainDoc Mismatch
Manual upload Apr 4, 2026
Open Report ↗
25 /100
Trust
High Risk

elevated-task-runner

Arbitrary PowerShell Command Execution

RCEPriv EscalationPrompt Injection
Manual upload Apr 4, 2026
Open Report ↗
← Previous
2 / 5
Next →