claude-nginx-hardening/nginx-hardening trumb | | The skill accesses credential files, is vulnerable to SSRF | 1 | – | 9 | 100Critical |
redhat-docs-agent-tools/docs-workflow-jira-ready redhat-documentation | | The skill is vulnerable to shell command injection via unsan | 15 | – | 5 | 100Critical |
ctf-skills/ctf-misc ljagiello | | This CTF skill details numerous | 1.9k | 2.9k | 16 | 100Critical |
gh-aw-firewall/awf-skill github | | This skill, despite claiming security, grants agents root | 66 | 10 | 17 | 100Critical |
awesome-copilot/arize-ai-provider-integration github | | The skill allows local file exfiltration and | 32.2k | 772 | 5 | 100Critical |
clickhouse/review clickhouse | | The skill permits arbitrary command execution, exfiltr | 47.2k | 8 | 4 | 100Critical |
skills/agentix-ceo agentix-cloud | | The skill accesses sensitive environment variables, | 0 | – | 14 | 100Critical |
claude-ptt/whisper-setup aaddrick | | The skill executes arbitrary code with root | 2 | – | 6 | 100Critical |
xcrawl-scrape wykings | | This skill grants broad permissions, enabling system compromise, data | 0 | 1.1k | 12 | 100Critical |
news-summarizer terrycarter1985 | | The news summarizer accesses the `$OPENAI_API_KEY`, posing a risk if the agent's environment is compromised. | 0 | 104 | 2 | 100Critical |
openclaw-omni-expert thinkbugs | | This skill provides full remote control, handles credentials insecurely | 0 | 97 | 19 | 100Critical |
heleni-maintenance netanel-abergel | | The skill silently exfiltrates the | 0 | 87 | 17 | 100Critical |
greenhelix-trading-bot-risk-service mirni | | The skill deceptively claims not to execute | 0 | 104 | 3 | 100Critical |
greenhelix-agent-interoperability-bridge mirni | | The skill autonomously executes financial transactions across nine protocols without | 0 | 141 | 23 | 100Critical |
github-bug-report markma84 | | The skill hardcodes a GitHub | 0 | 49 | 9 | 100Critical |
kairoa-cli luduoxin | | This skill facilitates remote code execution, extensive network reconnaissance, | 0 | 75 | 17 | 100Critical |
database-migration-manager llcsamih | | This database migration skill poses high risks due to extensive | 0 | 87 | 7 | 100Critical |
roster kleberbaum | | The skill has critical command injection vulnerabilities, allowing | 0 | 870 | 7 | 100Critical |
surf hughzhou-gif | | The skill allows arbitrary shell command execution, enabling supply chain | 0 | 239 | 12 | 100Critical |
bria-ai galbria | | The skill uses an unaudited external script, risking | 4 | 1.7k | 4 | 100Critical |
ai-skillhub eeyan2025-art | | The skill is riddled with command injection vulnerabilities, exposing sensitive | 0 | 189 | 18 | 100Critical |
acp-harness-delegation chaoyang78 | | The skill disables critical security controls, stores API | 0 | 41 | 14 | 100Critical |
safe-evolver confidentkai | | The skill autonomously modifies agent behavior, allowing arbitrary | 1 | 121 | 12 | 100Critical |
minimax-token-plan-monitor bbzhi177 | | This skill stores plaintext credentials, executes arbitrary | 0 | 144 | 10 | 100Critical |
run-test-plan anderskev | | The skill executes arbitrary commands and exfiltrates data from | 0 | 78 | 15 | 100Critical |
greenhelix-bot-arbitrage-framework mirni | | This skill handles sensitive financial transactions and credentials, risking | 0 | 99 | 5 | 40Medium |
tech-news-digest dinstein | | The skill accesses sensitive environment variables and | 23 | 8.0k | 4 | 40Medium |
