agent-skills/firebase-security-rules-auditor firebase | | The skill misrepresents itself as an active Firebase security rules | 224 | 455.6k | 1 | 5Low |
agent-skills/firebase-app-hosting-basics firebase | | The skill deceptively claims to deploy applications but only | 224 | 455.6k | 1 | 40Medium |
claude-code/plugin-structure anthropics | | This skill describes a plugin architecture | 114.4k | 455.6k | 4 | 40Medium |
claude-code/hook-development anthropics | | The skill misrepresents its capabilities, | 114.4k | 455.6k | 1 | 5Low |
Claude-plugins/tdd Fleron | | The skill uses dogmatic language to rigidly enforce | 0 | 455.6k | 2 | 15Low |
Claude-plugins/handoff-md Fleron | | Designed to write a shared document, this skill poses a | 0 | 455.6k | 2 | 70High |
azure-skills/azure-ai microsoft | | The skill misrepresents its capabilities, | 633 | 174.7k | 1 | 70High |
azure-skills/azure-storage microsoft | | The skill exposes direct Azure CLI | 633 | 174.5k | 2 | 70High |
github-copilot-for-azure/azure-ai microsoft | | The skill misrepresents its Azure service support, | 186 | 103.8k | 1 | 40Medium |
github-copilot-for-azure/azure-storage microsoft | | The skill's `az storage` | 186 | 103.3k | 2 | 70High |
github-copilot-for-azure/azure-validate microsoft | | This skill enables arbitrary command execution and prompt injection, overriding | 186 | 103.1k | 12 | 100Critical |
impeccable/polish pbakaus | | The skill deceptively claims to perform | 20.1k | 71.4k | 2 | 70High |
impeccable/adapt pbakaus | | The skill's description is misleading, and it introduces | 19.5k | 63.0k | 2 | 40Medium |
impeccable/colorize pbakaus | | The skill misrepresents its capabilities, claiming to colorize | 19.5k | 62.3k | 1 | 40Medium |
impeccable/optimize pbakaus | | The skill misrepresents its capabilities, claiming to diagnose and | 19.5k | 62.2k | 1 | 70High |
impeccable/delight pbakaus | | The skill introduces a supply chain risk by depending on an | 19.5k | 61.5k | 2 | 40Medium |
word-docx ivangdavila | | The skill misrepresents its capabilities, claiming to create | 267 | 60.5k | 1 | 70High |
cli/lark-minutes larksuite | | The skill risks RAG poisoning via an external `SK | 7.9k | 57.0k | 3 | 70High |
cli/lark-contact larksuite | | The skill is vulnerable to RAG/memory poisoning | 7.9k | 56.8k | 2 | 70High |
excel-xlsx ivangdavila | | The skill misrepresents its capabilities, claiming to manipulate | 211 | 54.5k | 1 | 70High |
impeccable/harden pbakaus | | The skill misrepresents its hardening capabilities, only offering guidance | 20.1k | 53.0k | 1 | 40Medium |
powerpoint-pptx ivangdavila | | The skill falsely advertises PowerPoint editing | 102 | 34.1k | 1 | 70High |
data-analysis ivangdavila | | The skill misrepresents its capabilities, claiming to | 87 | 26.2k | 1 | 70High |
moltguard thomaslwang | | The skill deceptively claims security protection, exposes | 107 | 22.7k | 4 | 40Medium |
agent-skills/convex-migration-helper get-convex | | The skill deceptively claims to "plan | 22 | 21.5k | 1 | 40Medium |
market-research ivangdavila | | The skill recommends installing and updating unverified software via | 72 | 17.1k | 3 | 40Medium |
baoyu-skills/baoyu-xhs-images jimliu | | The skill is vulnerable to path traversal, command | 14.6k | 16.9k | 6 | 70High |
china-stock-analysis paulshe | | The skill provides financial advice and uses web search, | 40 | 16.8k | 4 | 70High |
baoyu-skills/baoyu-cover-image jimliu | | The skill is vulnerable to path traversal and | 14.6k | 16.7k | 7 | 40Medium |
baoyu-skills/baoyu-infographic jimliu | | The skill allows arbitrary shell command execution and local file content | 14.6k | 15.9k | 5 | 100Critical |
baoyu-skills/baoyu-post-to-x jimliu | | This skill uses system-level tools and broad permissions to | 14.6k | 15.3k | 9 | 100Critical |
baoyu-skills/baoyu-comic jimliu | | This skill is vulnerable to arbitrary | 14.6k | 15.3k | 6 | 100Critical |
image ivangdavila | | The skill introduces supply chain risks by loading | 25 | 14.6k | 4 | 40Medium |
post-job zhangdong | | This skill executes arbitrary code, injects prompts into | 8 | 14.3k | 16 | 100Critical |
skills/tdd mattpocock | | The skill appears safe, though its description misrepresents its capabilities as purely informational rather than active. | 15.3k | 13.8k | 1 | 15Low |
skills/vitest antfu | | The skill deceptively claims active testing utility but only | 4.6k | 13.8k | 1 | 40Medium |
baoyu-skills/baoyu-format-markdown jimliu | | The skill deceptively modifies user files and executes | 14.6k | 13.6k | 3 | 100Critical |
awesome-copilot/refactor github | | The skill deceptively claims to refactor code but only | 29.9k | 13.6k | 1 | 70High |
agents/fastapi-templates wshobson | | The skill promotes insecure CORS configuration | 33.7k | 13.5k | 3 | 40Medium |
obsidian-skills/json-canvas kepano | | The skill defines attributes allowing arbitrary local file paths, posing | 24.3k | 13.1k | 2 | 70High |
skills/write-a-prd mattpocock | | The skill describes dangerous repo exploration and GitHub | 15.3k | 13.0k | 4 | 70High |
screenshot ivangdavila | | The skill misrepresents its functionality, providing instructions on | 29 | 12.7k | 1 | 70High |
zoho-mail byungkyu | | The skill risks arbitrary code execution via unsanitized | 8 | 12.6k | 2 | 70High |
agents/code-review-excellence wshobson | | The skill misrepresents itself as | 33.7k | 12.3k | 1 | 40Medium |
git ivangdavila | | The skill misrepresents itself as an active Git agent, | 26 | 11.7k | 1 | 40Medium |
eno wscats | | The skill misrepresents its capabilities, claiming programmatic analysis and | 4 | 11.0k | 1 | 15Low |
awesome-copilot/multi-stage-dockerfile github | | The skill appears safe, though its description overstates its active role in Dockerfile creation. | 29.9k | 10.9k | 1 | 40Medium |
docker ivangdavila | | The skill introduces a supply chain risk by suggesting | 21 | 10.7k | 2 | 40Medium |
