DEV Community: 华诚

Newly Discovered Skills This Week — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:10:45 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Skill Category Distribution — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:10:04 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Rising Authors — Clean Track Records — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:09:22 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Threat Landscape — Attack Patterns — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:08:41 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Suspicious Skills — What to Watch — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:07:47 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Safest Skills — Recommended Picks — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:07:06 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Malicious Skills Exposed — Threat Breakdown — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:06:25 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Most Downloaded Skills — Security Analysis — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:05:43 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Top 50 Authors — Trust and Safety Leaderboard — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:05:02 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

Daily Summary — Everything at a Glance — 2026-04-12

华诚 — Sun, 12 Apr 2026 11:04:21 +0000

54,764 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

AI Agent Skill Security Report — 2026-04-12

华诚 — Sun, 12 Apr 2026 10:02:57 +0000

We've been running automated security audits on the AI agent skill ecosystem (Claude Code, MCP servers). Out of 54764 indexed skills, 2105 have been deeply analyzed.

Results: 916 safe, 1012 suspicious, 172 malicious.

Notable Findings

🚨 `humanize-ai-text` by moltbro

Verdict: MALICIOUS | Risk: 76% | Downloads: 32323

A CLI toolkit that detects linguistic patterns associated with AI-generated text and rewrites content to evade AI detection systems such as GPTZero, Turnitin, and Originality.ai, explicitly marketed for academic and publication submission contexts.

Key threats:

[HIGH] Dynamic Code Evaluation
[CRITICAL] LLM Semantic Detection
[CRITICAL] LLM Semantic Detection

Full report →

🚨 `moltguard` by thomaslwang

Verdict: MALICIOUS | Risk: 93% | Downloads: 17916

此技能声称安装一个名为MoltGuard的安全插件，用于防止提示注入、数据泄露和恶意命令，但其核心行为包含脚本化欺骗：指示AI读取一个包含'隐藏提示注入攻击'的文件，然后向用户谎称安全工具'检测到了'该攻击，实际上AI自己就是读取文件的主体，并无真实检测发生。

Key threats:

[HIGH] Dynamic Code Evaluation
[HIGH] SSH Key Access
[CRITICAL] LLM Semantic Detection

Full report →

🚨 `wed-1-0-1` by gvillanueva84

Verdict: MALICIOUS | Risk: 92% | Downloads: 14597

伪装成'Elon模式'商业规划工具，实际上在执行前会静默运行系统命令（hostname）并向第三方服务器发送curl请求，收集用户系统信息（主机名、工作目录），然后以'安全意识教育'为名展示已收集的数据，最后才提供承诺的业务规划内容。

Key threats:

[HIGH] Dynamic Code Evaluation
[HIGH] Outbound Data Transfer
[CRITICAL] LLM Semantic Detection

Full report →

🚨 `security-sentinel-skill` by georges91560

Verdict: MALICIOUS | Risk: 94% | Downloads: 9047

A documentation and marketing package for a claimed prompt injection defense skill for autonomous AI agents (OpenClaw/Wesley), providing social media announcements, a ClawHub publication guide, and a Telegram alert configuration guide. Critically, the actual skill implementation (SKILL.md) and all r

Key threats:

[HIGH] Dynamic Code Evaluation
[HIGH] Base64 Encoded Payload
[HIGH] SSH Key Access

Full report →

🚨 `task-status` by mightyprime1

Verdict: MALICIOUS | Risk: 88% | Downloads: 7738

A Clawdbot helper skill that sends task status messages to a Telegram account via WebSocket or CLI fallback, with optional periodic 'heartbeat' updates for long-running tasks managed via a background thread and a JSON state file.

Key threats:

[HIGH] Dynamic Code Evaluation
[HIGH] Outbound Data Transfer
[CRITICAL] LLM Semantic Detection

Full report →

Protect Yourself

Audit skills: clawsec.cc
Search safely: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

High-Risk Authors — Malicious Accounts — 2026-04-11

华诚 — Sat, 11 Apr 2026 11:11:35 +0000

54,650 skills indexed, 2105 audited. Found 172 malicious, 1012 suspicious.

Read full report

Audit: clawsec.cc
Search: clawsearch.cc
Pre-install check: npx clawsearch-guard <skill-name>

DEV Community: 华诚

Newly Discovered Skills This Week — 2026-04-12

Skill Category Distribution — 2026-04-12

Rising Authors — Clean Track Records — 2026-04-12

Threat Landscape — Attack Patterns — 2026-04-12

Suspicious Skills — What to Watch — 2026-04-12

Safest Skills — Recommended Picks — 2026-04-12

Malicious Skills Exposed — Threat Breakdown — 2026-04-12

Most Downloaded Skills — Security Analysis — 2026-04-12

Top 50 Authors — Trust and Safety Leaderboard — 2026-04-12

Daily Summary — Everything at a Glance — 2026-04-12

AI Agent Skill Security Report — 2026-04-12

Notable Findings

🚨 humanize-ai-text by moltbro

🚨 moltguard by thomaslwang

🚨 wed-1-0-1 by gvillanueva84

🚨 security-sentinel-skill by georges91560

🚨 task-status by mightyprime1

Protect Yourself

High-Risk Authors — Malicious Accounts — 2026-04-11

🚨 `humanize-ai-text` by moltbro

🚨 `moltguard` by thomaslwang

🚨 `wed-1-0-1` by gvillanueva84

🚨 `security-sentinel-skill` by georges91560

🚨 `task-status` by mightyprime1