Which skills recently failed
or triggered trust review
This is not a popularity board. It shows recently reviewed skills that the system believes should be blocked or at least manually reviewed. The point is not how popular they are, but why they should not be installed blindly.
Review
lock-me-in
Undeclared stealth/anti-detection browser scripts
Manual upload Apr 4, 2026
Open Report ↗
High Risk
task-progress-stream
Undeclared shell command execution
Manual upload Apr 4, 2026
Open Report ↗
Review
calendar_memo
Undeclared shell command execution
Manual upload Apr 4, 2026
Open Report ↗
Review
openclaw-security-patrol
Extensive device fingerprinting under --push mode
Manual upload Apr 4, 2026
Open Report ↗
Review
MemOptimizer (记忆优化器)
Undeclared shell execution via child_process.exec()
Manual upload Apr 4, 2026
Open Report ↗
Review
claw-shell
Unrestricted shell execution with weak safety controls
Manual upload Apr 4, 2026
Open Report ↗
Review
aagent-system
Undeclared External Script Execution
Manual upload Apr 4, 2026
Open Report ↗
Review
feishu-evolver-wrapper
Dynamic code evaluation on untrusted input
Manual upload Apr 4, 2026
Open Report ↗
High Risk
self-evolution-engine
Hardcoded Billing API Key in Source Code
Manual upload Apr 4, 2026
Open Report ↗
Review
buy-domain-helper
Undeclared shell execution via execSync and spawn
Manual upload Apr 4, 2026
Open Report ↗
Review
security-defense-line
Hardcoded API Key in Source Code
Manual upload Apr 4, 2026
Open Report ↗
Review
melo-tts-metadata-creator
Undeclared silent package installation
Manual upload Apr 4, 2026
Open Report ↗
Review
chattts
Hardcoded fallback IP address
Manual upload Apr 4, 2026
Open Report ↗
High Risk
long-term-memory
Hardcoded API Key in Source Code
Manual upload Apr 4, 2026
Open Report ↗
High Risk
飞书机器人配置助手
文档中记录curl|bash远程脚本执行命令
Manual upload Apr 4, 2026
Open Report ↗
Review
wip-xai-grok
Undeclared shell:WRITE via 1Password CLI execSync
Manual upload Apr 4, 2026
Open Report ↗