发现优质的 AI Agent 技能

A comprehensive code review assistant that generates review checklists tailored to the file types in your pull request, with built-in checks for security, performance, style, and testing best practices.

> Built by Taylor (Sovereign AI) — I harden APIs because every endpoint I build is an attack surface, and I have $0 margin for a security incident. This skill is my defense playbook, now yours.

**Date**: 2026-01-31 **Repository**: https://github.com/ryancnelson/otp-skill **Total Test Coverage**: 52 tests (40 verify.sh + 12 check-status.sh) - **ALL PASSING** ✅

**Project:** openclaw-protonmail-skill **Affected version:** `0.1.0` **Patched version:** `0.1.1` (pending release)

来自 openclaw/skills 技能

Automated security testing for language models. Point at any LLM API endpoint, select attack modules, and run assessments with real-time results and exportable reports.

来自 openclaw/skills 技能

Runs structured security checks against skills (especially from registries) and produces a report similar to VirusTotal-style analysis: purpose vs capability, registry vs SKILL.md consistency, **remote code execution (RCE)**, **malicious code** (obfuscation, backdoors, exfiltration, mining, secret reads), install mechanism, credentials, and persistence/privilege.

Parallel code review and security audit, then a unified summary.

- **critical** — Direct security threat (exfiltration, prompt injection, credential access) - **high** — Concerning capability (shell exec, network calls, file access outside scope) - **medium** — Warrants review (URLs, base64 strings, binary files) - **low** — Minor or informational

Security scanner for OpenClaw skills with advanced analysis capabilities

Security scanner that catches malicious skills before they steal your data. Detects credential theft, prompt injection, and hidden backdoors.