Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
Review
ekybot-connector
文档声明与实际能力严重不符
Manual upload Apr 5, 2026
Open Report ↗
Review
agent-cli
危险curl|bash管道安装命令
Manual upload Apr 5, 2026
Open Report ↗
Review
stremio-cli
文档与代码不一致
Manual upload Apr 5, 2026
Open Report ↗
Review
hpr-solver
Undeclared LLM API calls to OpenRouter
Manual upload Apr 5, 2026
Open Report ↗
Review
fund-daily
Undeclared network API access
Manual upload Apr 5, 2026
Open Report ↗
Review
stock-prediction
Undeclared shell command execution
Manual upload Apr 5, 2026
Open Report ↗
Review
抖音视频无水印下载器
Undocumented third-party proxy API
Manual upload Apr 5, 2026
Open Report ↗
Review
cloud-share-downloader
Undeclared credential solicitation
Manual upload Apr 5, 2026
Open Report ↗
Review
research-archive-query
Undeclared subprocess/shell execution
Manual upload Apr 5, 2026
Open Report ↗
Review
harbor-openclaw
Undeclared network behavior on first load
Manual upload Apr 5, 2026
Open Report ↗
Review
airoom.ltd-Global-Finance-Data-Platform
HTTP target URL without TLS encryption
Manual upload Apr 5, 2026
Open Report ↗
Review
imap-idle-sneder
Hardcoded email credentials in source code
Manual upload Apr 5, 2026
Open Report ↗
Review
OnionClaw
Missing implementation code—only documentation present
Manual upload Apr 5, 2026
Open Report ↗
Review
sshot
Critical script artifact not included in package
Manual upload Apr 5, 2026
Open Report ↗
Review
authenticate-wallet
Unversioned npm package execution
Manual upload Apr 5, 2026
Open Report ↗
Review
Receipt Logger
Implementation script missing — documented functionality absent
Manual upload Apr 5, 2026
Open Report ↗