All Skills
Filter by source, category, or keyword. Read the internal summary first — then decide if the original page is worth your time.
Read first. Jump out only when you're ready.
Internal summaries, source signals, and category context — all in one place. Open the original listing only when you already know why it's worth your time.
Security & Compliance · Tencent SkillHub
Identity, auth, scanning, governance, audit, and operational guardrails.
Best for broad discovery and market coverage, then narrow down using category and source signal.
311 skills
Click any card to read internal detail before jumping to source.
On-Chain Skill Audit
On-chain skill provenance registry. Check, register, audit, and vouch for agent skills on Solana. Use when evaluating skill safety, registering new skills, or looking up provenance before installation.
One Skill To Rule Them All
Security auditing skill that detects malicious patterns like prompt injection, data exfiltration, obfuscation, and privilege escalation in OpenClaw SKILL.md...
OpenA2A Security
Security hardening for OpenClaw. Audit your configuration, scan installed skills for malware, detect CVE-2026-25253, check credential exposure, and get actio...
OpenClaw Cloudflare Secure
Securely expose an OpenClaw Gateway WebUI on a VPS via Cloudflare Zero Trust Access + Cloudflare Tunnel (cloudflared), including DNS cutover for custom hostnames and optional cleanup of Tailscale Serve.
OpenClaw Guardian
A security layer plugin for OpenClaw that intercepts dangerous tool calls (exec, write, edit) through two-tier regex blacklist rules and LLM-based intent ver...
OpenClaw Policy Check
Scan repositories for risky security patterns before execution. Use when users ask for a quick preflight security check, policy enforcement scan, suspicious code triage, or detection of unsafe commands, secret leakage, and dangerous shell behavior.
OpenClaw Sacred Rules
Provides essential safety rules and tools for managing OpenClaw configs, backups, auth troubleshooting, and recovery to prevent system failures.
OpenClaw Security Auditor
Audit OpenClaw configuration for security risks and generate a remediation report using the user's configured LLM.
OpenClaw Security Scanner
Run a comprehensive local security scan on your OpenClaw installation. Checks config, network exposure, credentials, OS hardening, and agent guardrails. Scor...
OpenClaw Shield
Enterprise AI security scanner using static analysis, runtime guards, and ClamAV to detect credential theft, data leaks, malware, and ensure audit logging.
OpenClaw Skill Auditor
Scans ClawHub skills to detect malicious code, obfuscated payloads, and social engineering via pattern matching, deobfuscation, and LLM analysis before insta...
OpenClaw Skill Scanner
Scans ClawHub skills for malicious patterns like payloads, reverse shells, data leaks, and crypto miners before and after installation.
Openclaw Autoupdate
OpenClaw静默更新技能。安全自动化更新OpenClaw到最新版本。
Openclaw Defender
Provides real-time file integrity monitoring, pre-installation skill audits, runtime threat blocking, kill switch activation, and incident response to protec...
Openclaw Safety Coach
Safety coach for OpenClaw users. Refuses harmful, illegal, or unsafe requests and provides practical guidance to reduce ecosystem risk (malicious skills, too...
Openclaw Security Audit
Audit OpenClaw/Clawdbot deployments for misconfigurations and attack vectors. Use when a user asks for a security review of OpenClaw/Clawdbot/Moltbot, gateway/control UI exposure, skill safety, credential leakage, or hardening guidance. Produces a terminal report with OK/VULNERABLE findings and fixes.
Openclaw Security Monitor
Proactive security monitoring, threat scanning, and auto-remediation for OpenClaw deployments
Openclaw Skill Scanner
Security gate for OpenClaw AgentSkills. Scans folder/ClawHub skills with cisco-ai-defense/skill-scanner before installation. Supports manual scans, staged in...
Ops Hygiene
Standard operating procedures for agent maintenance, security hygiene, and system health. Use when performing periodic checks, security audits, memory maintenance, secret rotation, dependency updates, or any recurring "housekeeping" tasks. Also use when setting up automated maintenance schedules or when asked about agent security posture.
PROMPT INJECTION PROTECTION
Protects against prompt injection attacks by sanitizing, validating, and securely processing untrusted external content from websites, emails, and documents.
Passkey
Implement WebAuthn passkeys avoiding critical security and compatibility pitfalls.
Passwordstore Broker
Enforce safe secret handling by collecting secrets through one-time HTTPS forms, storing them in pass via scripts/vault.sh, and executing tools with environm...
PayPal
Integrate PayPal payments with proper webhook verification, OAuth handling, and security validation for checkout flows and subscriptions.
Pentest Active Directory
Assess Active Directory identity attack paths including roasting, relay, and delegation abuse.