Agent Skills

OpenClaw Security Monitor

openclaw-security-monitor

Proactive security monitoring, threat scanning and automated remediation for OpenClaw deployments.

Vercel Blob (Object Storage)

droid-tings

Integrate Vercel Blob for secure file uploads, client-side presigned uploads, multipart transfers, and CDN-delivered assets in Next.js projects.

File Organizer MCP — Development Guide

file-organizer-mcp

Developer guide and patterns for building and testing the File Organizer MCP server: secure path validation, tools, tests, and safe file operations.

MCP Sentinel — Security Monitor for Skills & MCP Servers

claude-mcp-sentinel

Security monitoring and runtime protection for Claude Skills and MCP servers: static scans, update-diff analysis, threat intelligence, and an optional PreToolUs

Bug Hunter — Adversarial Bug Finding

bug-hunter

Run an adversarial, sequential-first pipeline (Recon → Hunter → Skeptic → Referee) to find, verify, and optionally auto-fix runtime bugs and security issues acr

Bagman — Secure Key Management

openclaw-master-skills

Secure key-management patterns and operational guardrails for AI agents that need to handle private keys, session keys, and secrets safely.

Anthropic Security Basics

skillshub

Practical security practices for Anthropic Claude integrations: API key management, input validation, prompt-injection defenses, and output scanning.

WordPress Development

claude-skill-registry

Expert WordPress development guidance covering self-hosted setup (Docker/Nginx), theme and plugin development, performance tuning, and security hardening for pr

NPM Package Manager Skill

pi

Manage Node.js packages and common npm workflows: install, run scripts, versioning, publish, and audits with safe dry-run guidance.

Azure External Attack Surface Management

agent-skills

Provides expert guidance for Azure External Attack Surface Management (EASM): quotas, configuration, integrations, and exporting inventory to analytics platform

Caido Mode

skills

Full CLI integration for Caido: search HTTP history, replay and edit requests, manage scopes, create findings, export curl PoCs, and control intercepts via the

Hermes Attestation Guardian

clawsec

Generate deterministic runtime attestations and perform fail-closed drift detection for Hermes-managed infrastructure.

Nethereum: Keys & Accounts

nethereum

Practical examples and snippets for generating keys, creating accounts, and encrypting/decrypting keystores using Nethereum for .NET applications.

Multi-PR Review

cowork-os

Run a consensus-style multi-agent review of a pull request and produce severity-ranked findings and actionable remediation steps.

Speak Security Basics

claude-code-plugins-plus-skills

Security best practices for integrating Speak: API key management, audio data privacy, student data protection, and COPPA/FERPA compliance for production deploy

RateLint

skills

Scans codebases for rate-limiting and API throttling anti-patterns, producing actionable reports and CI-friendly output to prevent brute-force, retry storms, an

E2B — Sandboxed Code Execution

skills

Documentation and best-practices for E2B sandboxes: run AI-generated code, install packages, manage files, and return artifacts safely.

Anti-Distill (Skill Cleaner)

anti-distill

Cleans and anonymizes employee SKILL.md files by removing sensitive, tacit, and proprietary details while preserving structure for safe submission.

NVD CVE Vulnerability Search

netclaw

Search the NVD for CVEs by ID or keyword, retrieve CVSS scores, CWE info, affected configurations and remediation references to support audits, incident respons

Bash Pro

awesome-skills-cn

Defensive, production-grade Bash scripting patterns and CI/CD best practices: strict mode, safe argument parsing, testing with Bats, and tooling (ShellCheck/shf

Rune — Encrypted Organizational Memory

rune

Encrypted organizational memory skill that captures, stores, and retrieves team knowledge with FHE-backed privacy and activation checks for MCP-compatible agent

SurrealDB Expert

claude-skills-generator

Provides expert guidance and actionable patterns for designing secure, high-performance SurrealDB schemas, queries, and real-time subscriptions.

Bash Pro

antigravity-awesome-skills

Defensive, production-grade Bash scripting patterns: safe parsing, strict error handling, testing, and CI/CD integration.

GoPlus AgentGuard

zeroclaw-skills-collection

An AI security guard for agents: scans code/skills for vulnerabilities, evaluates runtime actions, and manages a trust registry to prevent leaks and dangerous c

OpenClaw — ClawPilot

skills

Expert OpenClaw skill for installing, configuring, hardening, and troubleshooting OpenClaw gateways and channels (Telegram, WhatsApp, Discord, etc.).

CLS-Certify — Skill Security Auditor

cls-certify

Enterprise-grade multi-dimensional security scanner for Agent Skills that produces S+/S/A/B/C/D ratings and structured HTML/PDF reports.

Azure Arc Expertise

agent-skills

Expert guidance and runbooks for Azure Arc: troubleshooting, security, configuration, integrations, and deployments for Arc-enabled Kubernetes, servers, SQL MI,

Analyzing Ransomware Leak Site Intelligence

asi

Collect and analyze ransomware data-leak site (DLS) posts to extract victim, group, sector and geographic trends for threat intelligence and proactive defense.

Very Good Security (Membrane integration)

application-skills

Membrane-powered integration for Very Good Security (VGS): manage tokenization, vault records, and proxy requests via the Membrane CLI and connector workflow.

Kube Audit Kit

kube-audit-kit

Read-only Kubernetes security audit toolkit that exports cluster resources, sanitizes metadata, groups applications, and generates PSS/NSA-compliant audit repor