ui-ux-pro-max-skill/ui-ux-pro-max nextlevelbuilder | | The skill is vulnerable to command injection via user input and | 66.7k | 119.6k | 3 | 100Critical |
skills/agent-tools tool-belt | | The skill allows remote code execution, exfiltrates local files, and provides broad Twitter automation, significantly increasing attack surface and potential for abuse. | 346 | 116.3k | 5 | 100Critical |
mck-ppt-design likaku | | The skill enables arbitrary command execution via command | 1 | 1.2k | 12 | 100Critical |
openclaw-office-toolkit axelhu | | The skill uses external binaries and handles files without robust input | 0 | 1.2k | 4 | 100Critical |
doubao-img herry-zhu | | The skill executes arbitrary shell commands and JavaScript, systematically | 1 | 993 | 10 | 100Critical |
opc-skills/requesthunt resciencelab | | This skill is dangerous as it can download and execute | 766 | 912 | 3 | 100Critical |
llm-memory-integration xkzs2007 | | Masquerades as an LLM memory tool | 1 | 808 | 22 | 100Critical |
prose/open-prose openprose | | This skill self-modifies the agent's memory | 1.1k | 780 | 14 | 100Critical |
nano-banana-2-skill/nano-banana kingbootoshi | | The skill executes arbitrary remote code from external sources | 332 | 330 | 6 | 100Critical |
greenhelix-agent-interoperability-bridge mirni | | This skill autonomously executes financial transactions across multiple protocols without | 0 | 84 | 22 | 100Critical |
baas yakejiang | | This skill enables remote code execution, installs global packages | 0 | 82 | 17 | 100Critical |
cfm-redis ameylover | | The skill enables arbitrary command execution, prompt injection, | 0 | 67 | 16 | 100Critical |
deepdive-osint sinndarkblade | | The skill autonomously clones and executes unverified external code | 0 | 34 | 18 | 100Critical |
rednote-contacts batxent | | This skill allows remote code execution, | 0 | 34 | 6 | 100Critical |
harness-design/harness-design zanwei | | This skill allows command injection, arbitrary | 1 | 1 | 6 | 100Critical |
tweaktune/tweaktune-synthesizer qooba | | The skill allows arbitrary shell command execution | 2 | – | 6 | 100Critical |
prelude-claude-plugin/nist preludeorg | | This skill is highly vulnerable to command injection and | 0 | – | 7 | 100Critical |
custom-plugin-ai-engineer/model-deployment pluginagentmarketplace | | The model deployment skill allows remote code execution and uses unpinned dependencies, posing significant supply chain risks. | 2 | – | 2 | 100Critical |
overthink-plugins/layer overthinkos | | This skill allows arbitrary command execution, privilege escalation | 0 | – | 6 | 100Critical |
overthink-plugins/generate overthinkos | | This skill generates Containerfiles but introduces supply chain vulnerabilities | 0 | – | 4 | 100Critical |
codex-collab/codex-collab masuP9 | | This skill allows arbitrary command execution and privilege escalation via user | 2 | – | 6 | 100Critical |
architecture-cowork-plugin/architecture-methodology navraj007in | | This skill executes shell commands, handles sensitive API | 2 | – | 9 | 100Critical |
smalltv-ultra-skill/geekmagic-smalltv-ultra yaniv-golan | | This skill enables broad command execution, exposes WiFi credentials | 1 | – | 8 | 100Critical |
ilo/ilo ilo-lang | | This skill enables arbitrary command execution, command injection | 0 | – | 6 | 100Critical |
oh-my-agent/oma-dev-workflow first-fluke | | The skill installs `mise` via `curl | | 637 | – | 11 | 100Critical |
agent-skills/developing-genkit-dart firebase | | The skill enables remote code download and execution, allowing arbitrary code execution and potential compromise of the agent. | 228 | – | 1 | 100Critical |
claude-skill-collection/ios-polish ElvinOuyang | | The skill executes shell commands and performs | 1 | – | 5 | 100Critical |
crabshell/verifying ZipperBagCoffee | | This skill allows arbitrary command execution and | 1 | – | 15 | 100Critical |
agent4ppt/revise-ppt JinwangMok | | This skill risks arbitrary file writes and remote | 0 | – | 4 | 70High |
swing-skills/swing-trace TheStack-ai | | This skill allows arbitrary shell command execution and file | 32 | – | 6 | 100Critical |
Capsule/task-orchestrator-hooks-builder Angriff36 | | This skill generates and executes arbitrary bash scripts | 0 | – | 6 | 100Critical |
godfery-agent-council godferylindsay | | The skill allows arbitrary command execution, persistent cron job scheduling | 0 | – | 17 | 100Critical |
