All Skills
Filter by source, category, or keyword. Read the internal summary first — then decide if the original page is worth your time.
Read first. Jump out only when you're ready.
Internal summaries, source signals, and category context — all in one place. Open the original listing only when you already know why it's worth your time.
Security & Compliance · Tencent SkillHub
Identity, auth, scanning, governance, audit, and operational guardrails.
Best for broad discovery and market coverage, then narrow down using category and source signal.
311 skills
Click any card to read internal detail before jumping to source.
Skill Vettr
Static analysis security scanner for third-party OpenClaw skills. Detects eval/spawn risks, malicious dependencies, typosquatting, and prompt injection patte...
SkillFence
Runtime security monitor for OpenClaw skills. Watches what your installed skills actually DO — network calls, file access, credential reads, process activity. Not a scanner. A watchdog.
SkillGate Governance
Supply-chain governance for OpenClaw skills: scan, assess, quarantine/restore.
SkillGuard - Agent Skill Security Auditor
Audit agent skills for security threats before installing them. Use AUTOMATICALLY when about to install any skill (clawhub install, skill installation), when...
SkillGuard Scanner
Security scanner for OpenClaw/ClawHub skills. Detects malware, reverse shells, credential theft, prompt injection, memory poisoning, typosquatting, and suspicious prerequisites before installation. Use when installing new skills, auditing existing skills, checking a skill name for typosquatting, or scanning ClawHub skills for security risks.
SkillGuard by Farnwick
AI-powered security scanner for OpenClaw skills. Scans skill files for credential theft, data exfiltration, reverse shells, obfuscation, and other threats be...
Skillsign — ed25519 Skill Signing
Sign and verify agent skill folders with ed25519 keys. Detect tampering, manage trusted authors, and track provenance chains (isnād).
Skulk Skill Scanner
Scan OpenClaw skill folders for security red flags before installing or publishing. Detects data exfiltration, credential theft, prompt injection, destructiv...
Slither Audit
Run slither static analysis on Solidity contracts. Fast, lightweight security scanner for EVM smart contracts.
Solidity
Avoid common Solidity mistakes — reentrancy, gas traps, storage collisions, and security pitfalls.
Solidity Guardian
Smart contract security analysis skill. Detect vulnerabilities, suggest fixes, generate audit reports. Supports Hardhat/Foundry projects. Uses pattern matchi...
Sovereign Project Guardian
Project health and best practices enforcer. Checks security, quality, documentation, CI/CD, and dependencies. Produces a letter grade (A-F) with actionable f...
Sovereign Security Auditor
Comprehensive code security audit covering OWASP Top 10, secrets detection, dependency vulnerabilities, and language-specific attack patterns. Built by Taylo...
Standards Compliance Checker
Check data compliance with construction standards. Validate data against ISO 19650, IFC, COBie, UniFormat standards.
Stealth Proxy
Detect geo/IP blocks, securely switch VPN tunnel path with user consent, verify IP/region/DNS safety, retry blocked tasks, and provide auditable connection r...
System Health Check
System health validator — checks skill files, paths, permissions, binaries, backup freshness, and encryption. Produces pass/fail reports.
System Integrity And Backup
Encrypted backups, integrity verification, and data retention enforcement for Greek legal requirements (5-20 year retention). AES-256.
Tech Security Audit
Performs local network scans using Nmap to detect vulnerabilities, identify service versions, and fingerprint operating systems.
Technical Debt Audit
Systematically identifies, scores, and prioritizes technical debt across codebases with impact analysis and detailed remediation roadmaps for engineering teams.
Transparency Log Auditor
Helps verify that skill signing events are recorded in an independently auditable transparency log — catching the class of trust failures where a registry op...
TrustMyAgent
🛡️ TrustMyAgent - Security posture monitoring for AI agents. Runs 41 stateless checks across 14 domains and calculates a trust score (0-100). Supports local...
Two Factor Authentication Best Practices
This skill provides guidance and enforcement rules for implementing secure two-factor authentication (2FA) using Better Auth's twoFactor plugin.
USD1 Transaction
Securely transfer USD1 (USDC on Wormhole) between wallets using Wormhole Liquidity Facility on Testnet by default.
Uniswap Assess Risk
Get an independent risk assessment for any proposed Uniswap operation — swap, LP position, bridge, or token interaction. Evaluates slippage, impermanent loss, liquidity, smart contract, and bridge risks with a clear APPROVE or VETO decision. Use when the user asks if something is safe or wants a risk evaluation.