Security Dashboard
Monitor security scores and issues across all skills in the directory.
How we make skill installs safer
The ClawHavoc incident in the OpenClaw ecosystem showed a real risk: a SKILL.md file can look normal while hiding malicious instructions. That can lead to command execution, data exfiltration, or credential theft.
Direct installs from random GitHub repositories put the full security review burden on each user. Most teams do not have time to manually audit every skill file before installing it.
agentskill.sh uses a two-layer model: centralized scanning on the platform plus local verification in /learn at install time. This gives both broad coverage and a final check before files are written.
Exactly what we do to improve security
- We run server-side static analysis on every skill across 12 threat categories.
- We assign a normalized 0-100 security score with issue severity and category details.
- We show the score and metadata in /learn before installation starts.
- We warn on low scores (<50) and require explicit confirmation for very low scores (<30).
- We continuously rescan skills and ingest new reports to refresh risk signals.
- We self-check /learn updates with content SHA verification to avoid stale security logic.
For safer installs, use /learn and review this dashboard instead of blindly cloning unknown skill files. For incident context, see CrowdStrike's OpenClaw analysis .
Score Distribution
Excellent (90-100)109,130
Good (70-89)11,535
Medium (50-69)4,553
Low (25-49)2,199
Critical (0-24)3,023
Issues by Severity
Critical
1,887High
15,141Medium
114,927Low
268,932Top Issue Categories
External Calls214,006
Sensitive File Access65,197
Command Injection62,693
Data Exfiltration54,109
Obfuscation2,460
Credential Harvesting2,234
Prompt Injection172
Persistence11
Staged Malware3
ClickFix Attack1
Social Engineering1
Low Security Skills
(score below 70)
garrytan/learn0
garrytan/skillify0
garrytan/plan-eng-review3 critical 0
garrytan/document-release0
garrytan/autoplan0
garrytan/open-gstack-browser0
garrytan/plan-design-review1 high 0
garrytan/browse0
sickn33/0074 critical 2 high 0
garrytan/design-html0
garrytan/design-consultation1 high 0
garrytan/benchmark0
garrytan/devex-review0
garrytan/land-and-deploy0
garrytan/qa-only0
garrytan/office-hours1 high 0
garrytan/setup-gbrain1 high 0
garrytan/scrape0
garrytan/review0
garrytan/retro1 high 0
sickn33/varlock4 high 0
garrytan/ship2 critical 1 high 0
sickn33/agentphone0
garrytan/benchmark-models0
garrytan/context-restore0
garrytan/context-save0
garrytan/canary0
garrytan/design-shotgun1 high 0
garrytan/design-review0
garrytan/gstack0
garrytan/health0
garrytan/investigate0
garrytan/landing-report0
sickn33/gha-security-review9 high 0
garrytan/make-pdf0
garrytan/plan-devex-review0
garrytan/pair-agent18 high 0
garrytan/qa0
garrytan/plan-tune0
garrytan/plan-ceo-review0
garrytan/setup-deploy0
sickn33/skill-audit2 critical 1 high 0
garrytan/sync-gbrain0
openclaw/acp-router5 high 0
sickn33/fp-refactor0
sickn33/fp-async0
sickn33/molykit3 critical 5 high 0
garrytan/setup-browser-cookies1 high 0
garrytan/cso4 critical 2 high 0
garrytan/codex1 high 0
Recently Flagged for Review
oleg-koval/gh-cliMay 17, 202610
baofeng-tech/youtube-searchMay 17, 202648
baofeng-tech/us-stock-analystMay 17, 20269
baofeng-tech/openclaw-media-genMay 17, 202646
baofeng-tech/aisa-tavilyMay 17, 202691
baofeng-tech/llm-routerMay 17, 202659
baofeng-tech/media-genMay 17, 202646
baofeng-tech/openclaw-searchMay 17, 202632
baofeng-tech/searchMay 17, 202623
baofeng-tech/cn-llmMay 17, 202659
baofeng-tech/prediction-marketMay 17, 20268
Xquik-dev/x-twitter-scraperMay 17, 202674
baofeng-tech/web-searchMay 17, 202699
lythos-labs/lythoskill-deckMay 17, 202685
baofeng-tech/prediction-market-dataMay 17, 20264
TJSNDHU/obsidian-markdownMay 17, 202695
TJSNDHU/obsidian-cliMay 17, 202699
TJSNDHU/obsidian-basesMay 17, 202696
TJSNDHU/networkxMay 17, 202697
TJSNDHU/makepad-layoutMay 17, 202699