发现优质的 AI Agent 技能

Comprehensive security scanner and hardening guide for Clawdbot/Moltbot installations.

You implemented auth. But did you do it right? This tool audits your authentication code for common security mistakes. Missing CSRF tokens, weak password hashing, insecure session management, JWT misuse. It checks all of it and tells you what needs fixing.

Scan your app and generate a proper Content Security Policy. Stop breaking your site with overly strict rules.

AI-powered code review for staged git changes. Catches bugs, security issues, and code smells before you push.

Scan your auth implementation for security holes. Catches the stuff that gets you hacked.

来自 openclaw/skills 技能

**Purpose:** Mental checklist before installing ANY external skill, code, or integration.

Bypass every major bot detection system: Cloudflare, DataDome, PerimeterX (Human Security), Akamai Bot Manager, and Kasada. Each system has different detection methods — this skill covers how to evade each one.

**TL;DR**: Pinchtab is a local, sandboxed browser control tool. It does not phone home, steal credentials, or exfiltrate data. Source code is public; binaries are signed and published via GitHub.

Pipelock is a fetch proxy that sits between you and the internet. Every outbound HTTP request passes through a 7-layer scanner pipeline that catches API key leaks, SSRF attempts, prompt injection, and data exfiltration.

> 🛡️ The last line of defense for AI Agents - Intercept dangerous commands and protect your system

Complete Signal messenger integration with security-first contact management.