[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"extension-skill-prompt-security-soul-guardian-zh-CN":3,"guides-for-prompt-security-soul-guardian":535,"similar-k17fxb9fnez7bhk0sy8znxzx8n86m48r-zh-CN":536},{"_creationTime":4,"_id":5,"children":6,"community":7,"display":9,"evaluation":15,"identity":214,"isFallback":198,"parentExtension":219,"providers":220,"relations":225,"repo":227,"tags":532,"workflow":533},1778695753353.633,"k17fxb9fnez7bhk0sy8znxzx8n86m48r",[],{"reviewCount":8},0,{"description":10,"installMethods":11,"name":13,"sourceUrl":14},"Drift detection + baseline integrity guard for agent workspace files with automatic alerting support",{"claudeCode":12},"prompt-security/clawsec","soul-guardian","https://github.com/prompt-security/clawsec",{"_creationTime":16,"_id":17,"extensionId":5,"locale":18,"result":19,"trustSignals":196,"workflow":212},1778696065248.5654,"kn74k9e4npk08wb67p8s2zn4x186nvqn","en",{"checks":20,"evaluatedAt":163,"extensionSummary":164,"features":165,"nonGoals":172,"promptVersionExtension":177,"promptVersionScoring":178,"purpose":179,"rationale":180,"score":181,"summary":182,"tags":183,"targetMarket":189,"tier":190,"useCases":191},[21,26,29,32,36,39,43,47,50,53,57,61,64,68,71,74,77,80,83,86,90,94,98,102,106,109,112,115,119,122,125,128,131,134,137,141,145,149,152,156,160],{"category":22,"check":23,"severity":24,"summary":25},"Practical Utility","Problem relevance","pass","The description clearly identifies the problem of detecting drift and guarding baseline integrity for agent workspace files with alerting support.",{"category":22,"check":27,"severity":24,"summary":28},"Unique selling proposition","The skill offers a specialized approach to file integrity beyond basic version control by focusing on agent workspace files, auto-restoration, and tamper-evident auditing.",{"category":22,"check":30,"severity":24,"summary":31},"Production readiness","The skill is production-ready, providing a complete lifecycle for integrity monitoring, including initialization, continuous checking, approval of changes, and audit verification.",{"category":33,"check":34,"severity":24,"summary":35},"Scope","Single responsibility principle","The skill focuses specifically on file integrity and drift detection within an agent workspace, with a clear policy for handling different file types.",{"category":33,"check":37,"severity":24,"summary":38},"Description quality","The displayed description accurately reflects the skill's functionality of drift detection, baseline integrity guarding, and automatic alerting for agent workspace files.",{"category":40,"check":41,"severity":24,"summary":42},"Invocation","Scoped tools","The skill exposes narrow, verb-noun specialized tools like 'init', 'check', 'approve', 'restore', and 'verify-audit' which are clearly defined and scoped.",{"category":44,"check":45,"severity":24,"summary":46},"Documentation","Configuration & parameter reference","The script's argument parsing provides clear documentation for all parameters and their defaults, with the policy file format also documented.",{"category":33,"check":48,"severity":24,"summary":49},"Tool naming","All exposed commands ('init', 'status', 'check', 'approve', 'restore', 'verify-audit', 'watch', 'enable-monitoring') are descriptive and kebab-cased.",{"category":33,"check":51,"severity":24,"summary":52},"Minimal I/O surface","The skill's tools accept specific, typed arguments and produce structured JSON or human-readable alerts, avoiding unnecessary data dumps.",{"category":54,"check":55,"severity":24,"summary":56},"License","License usability","The license is AGPL-3.0, declared via a bundled LICENSE file, which is a widely usable open-source license.",{"category":58,"check":59,"severity":24,"summary":60},"Maintenance","Commit recency","The latest commit was on 2026-05-12, well within the 3-month window, indicating active maintenance.",{"category":58,"check":62,"severity":24,"summary":63},"Dependency Management","The skill has no third-party dependencies beyond standard Python libraries, therefore dependency management is not applicable.",{"category":65,"check":66,"severity":24,"summary":67},"Security","Secret Management","The skill does not handle secrets directly; it operates on local workspace files and its state directory, with no outbound network calls.",{"category":65,"check":69,"severity":24,"summary":70},"Injection","The skill operates on local files and uses explicit commands; there is no indication of loading or executing untrusted third-party data as instructions.",{"category":65,"check":72,"severity":24,"summary":73},"Transitive Supply-Chain Grenades","The skill operates solely on local files within its designated state directory and workspace, with no runtime fetching of external code or data.",{"category":65,"check":75,"severity":24,"summary":76},"Sandbox Isolation","The skill operates within its designated workspace and state directory, using atomic writes and refusing to operate on symlinks, maintaining sandbox isolation.",{"category":65,"check":78,"severity":24,"summary":79},"Sandbox escape primitives","The scripts do not contain any detached-process spawns or deny-retry loops that could facilitate sandbox escapes.",{"category":65,"check":81,"severity":24,"summary":82},"Data Exfiltration","The skill performs no outbound calls and does not reference or submit any confidential data.",{"category":65,"check":84,"severity":24,"summary":85},"Hidden Text Tricks","The bundled scripts and documentation do not contain any hidden text tricks, invisible characters, or obfuscation attempts.",{"category":87,"check":88,"severity":24,"summary":89},"Hooks","Opaque code execution","The Python scripts are plain, readable source code and do not involve any obfuscation, base64 decoding, or runtime code fetching.",{"category":91,"check":92,"severity":24,"summary":93},"Portability","Structural Assumption","The script correctly handles paths relative to the workspace root and its state directory, and makes no assumptions about external project structure.",{"category":95,"check":96,"severity":24,"summary":97},"Trust","Issues Attention","There are 0 open issues and 6 closed issues in the last 90 days, indicating active maintenance and issue resolution.",{"category":99,"check":100,"severity":24,"summary":101},"Versioning","Release Management","The skill declares version 0.0.5 in the SKILL.md frontmatter and has a CHANGELOG.md, providing clear versioning signals.",{"category":103,"check":104,"severity":24,"summary":105},"Code Execution","Validation","Input arguments are handled by argparse, and file operations are validated (e.g., refusal of symlinks), ensuring proper input handling.",{"category":65,"check":107,"severity":24,"summary":108},"Unguarded Destructive Operations","The 'restore' operation is guarded by explicit file selection or '--all' flag, and the default policy differentiates between 'restore' and 'alert' modes.",{"category":103,"check":110,"severity":24,"summary":111},"Error Handling","The script implements robust error handling, using try-except blocks, specific exit codes, and providing informative error messages, including audit logging.",{"category":103,"check":113,"severity":24,"summary":114},"Logging","The script logs actions and errors to an audit file within the state directory, providing a tamper-evident audit trail with hash chaining.",{"category":116,"check":117,"severity":24,"summary":118},"Compliance","GDPR","The skill operates on local workspace files and does not process personal data, making GDPR compliance not applicable.",{"category":116,"check":120,"severity":24,"summary":121},"Target market","The extension operates on local file system paths and general file integrity checks, with no regional or jurisdictional limitations detected; targetMarket is global.",{"category":91,"check":123,"severity":24,"summary":124},"Runtime stability","The script requires Python 3 and standard libraries, making it broadly portable across POSIX-compliant systems.",{"category":44,"check":126,"severity":24,"summary":127},"README","The README file exists, is comprehensive, and clearly states the extension's purpose and operational details.",{"category":33,"check":129,"severity":24,"summary":130},"Tool surface size","The skill exposes 8 distinct commands, falling within the ideal range of 3-10 tools.",{"category":40,"check":132,"severity":24,"summary":133},"Overlapping near-synonym tools","All exposed commands have distinct names and functions, avoiding redundancy and ambiguity.",{"category":44,"check":135,"severity":24,"summary":136},"Phantom features","All advertised features in the README and SKILL.md are implemented in the scripts, with clear documentation for policy and commands.",{"category":138,"check":139,"severity":24,"summary":140},"Install","Installation instruction","The README provides clear, step-by-step installation and usage instructions, including setup for state directories and scheduling options.",{"category":142,"check":143,"severity":24,"summary":144},"Errors","Actionable error messages","Errors are consistently caught, logged, and reported with clear messages, including context and potential recovery steps.",{"category":146,"check":147,"severity":24,"summary":148},"Execution","Pinned dependencies","The skill uses only standard Python libraries and has no external script dependencies, thus no pinned dependencies are required.",{"category":33,"check":150,"severity":24,"summary":151},"Dry-run preview","The 'check' command inherently provides a preview of drift without performing destructive actions unless 'restore' is explicitly called or '--no-restore' is not used in a restore mode context.",{"category":153,"check":154,"severity":24,"summary":155},"Protocol","Idempotent retry & timeouts","The skill operates locally with file operations; there are no remote calls or state-changing operations that would require idempotency or explicit timeouts.",{"category":157,"check":158,"severity":24,"summary":159},"Safety","Halt on unexpected state","The 'init' and 'approve' commands effectively set baselines, and the 'check' command reports drift, halting the workflow implicitly by reporting it.",{"category":91,"check":161,"severity":24,"summary":162},"Cross-skill coupling","The skill is self-contained and does not implicitly rely on other skills; its operations are confined to its own workspace and state directory.",1778696064946,"This skill provides drift detection and baseline integrity guarding for agent workspace files, including automatic file restoration for critical files and tamper-evident audit logging. It can be scheduled via cron or launchd for continuous monitoring.",[166,167,168,169,170,171],"Detects unauthorized file changes against baselines","Automatically restores critical files ('restore' mode)","Provides alert-only notifications for other file types ('alert' mode)","Maintains a tamper-evident audit log with hash chaining","Supports custom policies for file monitoring","Offers integration with scheduling tools (cron, launchd)",[173,174,175,176],"Not intended as a replacement for full version control systems like Git.","Does not provide identity verification for who made the change (actor is best-effort metadata).","Cannot protect against attackers who control both the workspace and the guardian's state directory.","Does not automatically integrate with external alerting systems beyond basic console output or file logging.","3.0.0","4.4.0","To protect the integrity of agent workspace files from unauthorized changes, ensuring baseline fidelity and providing an auditable trail of modifications.","All checks passed with high quality, reflecting a well-designed, secure, and documented skill.",100,"Excellent skill for maintaining agent workspace integrity with robust detection, restoration, and auditing.",[184,185,186,187,188],"security","integrity","auditing","file-guard","workspace","global","verified",[192,193,194,195],"Use when you need to ensure agent configuration files (SOUL.md, AGENTS.md) are not modified without authorization.","Use to automatically revert accidental or malicious changes to critical workspace files.","Use to maintain a historical, tamper-evident record of all file changes within the agent workspace.","Use to integrate workspace integrity checks into automated agent heartbeats or cron jobs.",{"codeQuality":197,"collectedAt":199,"documentation":200,"maintenance":202,"security":208,"testCoverage":211},{"hasLockfile":198},true,1778696049211,{"descriptionLength":181,"readmeSize":201},17881,{"closedIssues90d":203,"forks":204,"hasChangelog":198,"manifestVersion":205,"openIssues90d":8,"pushedAt":206,"stars":207},6,104,"0.0.5",1778569911000,983,{"hasNpmPackage":209,"license":210,"smitheryVerified":209},false,"AGPL-3.0",{"hasCi":198,"hasTests":198},{"updatedAt":213},1778696065248,{"basePath":215,"githubOwner":216,"githubRepo":217,"locale":18,"slug":13,"type":218},"skills/soul-guardian","prompt-security","clawsec","skill",null,{"evaluate":221,"extract":223},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":222,"targetMarket":189,"tier":190},[184,185,186,187,188],{"commitSha":224},"HEAD",{"repoId":226},"kd72phsqkbk8w57ctvf7ac9nqs86n9t4",{"_creationTime":228,"_id":226,"identity":229,"providers":230,"workflow":528},1778695744804.4285,{"githubOwner":216,"githubRepo":217,"sourceUrl":14},{"classify":231,"discover":503,"github":506},{"commitSha":224,"extensions":232},[233,247,266,276,292,317,344,356,380,393,404,433,445,462,474,486],{"basePath":234,"description":235,"displayName":236,"installMethods":237,"rationale":238,"selectedPaths":239,"source":246,"sourceLanguage":18,"type":218},"skills/claw-release","Release automation for Claw skills and website. Guides through version bumping, tagging, and release verification.","claw-release",{"claudeCode":12},"SKILL.md frontmatter at skills/claw-release/SKILL.md",[240,243],{"path":241,"priority":242},"SKILL.md","mandatory",{"path":244,"priority":245},"CHANGELOG.md","medium","rule",{"basePath":248,"description":249,"displayName":250,"installMethods":251,"rationale":252,"selectedPaths":253,"source":246,"sourceLanguage":18,"type":218},"skills/clawsec-clawhub-checker","ClawHub reputation checker for clawsec-suite. Adds a standalone reputation gate before guarded skill installation.","clawsec-clawhub-checker",{"claudeCode":12},"SKILL.md frontmatter at skills/clawsec-clawhub-checker/SKILL.md",[254,255,258,259,262,264],{"path":241,"priority":242},{"path":256,"priority":257},"README.md","high",{"path":244,"priority":245},{"path":260,"priority":261},"scripts/check_clawhub_reputation.mjs","low",{"path":263,"priority":261},"scripts/enhanced_guarded_install.mjs",{"path":265,"priority":261},"scripts/setup_reputation_hook.mjs",{"basePath":267,"description":268,"displayName":269,"installMethods":270,"rationale":271,"selectedPaths":272,"source":246,"sourceLanguage":18,"type":218},"skills/clawsec-feed","Security advisory feed package for OpenClaw-related threats and vulnerabilities. The upstream feed is updated daily; local automation is handled by clawsec-suite or the operator.","clawsec-feed",{"claudeCode":12},"SKILL.md frontmatter at skills/clawsec-feed/SKILL.md",[273,274,275],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"basePath":277,"description":278,"displayName":279,"installMethods":280,"rationale":281,"selectedPaths":282,"source":246,"sourceLanguage":18,"type":218},"skills/clawsec-nanoclaw","Use when checking for security vulnerabilities in NanoClaw skills, before installing new skills, or when asked about security advisories affecting the bot","clawsec-nanoclaw",{"claudeCode":12},"SKILL.md frontmatter at skills/clawsec-nanoclaw/SKILL.md",[283,284,285,286,288,290],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":287,"priority":245},"INSTALL.md",{"path":289,"priority":261},"docs/INTEGRITY.md",{"path":291,"priority":261},"docs/SKILL_SIGNING.md",{"basePath":293,"description":294,"displayName":295,"installMethods":296,"rationale":297,"selectedPaths":298,"source":246,"sourceLanguage":18,"type":218},"skills/clawsec-scanner","Automated vulnerability scanner for agent platforms. Performs dependency scanning (npm audit, pip-audit), multi-database CVE lookup (OSV, NVD, GitHub Advisory), SAST analysis (Semgrep, Bandit), and agent-specific DAST hook execution testing for OpenClaw hooks.","clawsec-scanner",{"claudeCode":12},"SKILL.md frontmatter at skills/clawsec-scanner/SKILL.md",[299,300,301,303,305,307,309,311,313,315],{"path":241,"priority":242},{"path":244,"priority":245},{"path":302,"priority":261},"scripts/.gitkeep",{"path":304,"priority":261},"scripts/dast_hook_executor.mjs",{"path":306,"priority":261},"scripts/dast_runner.mjs",{"path":308,"priority":261},"scripts/query_cve_databases.mjs",{"path":310,"priority":261},"scripts/runner.sh",{"path":312,"priority":261},"scripts/sast_analyzer.mjs",{"path":314,"priority":261},"scripts/scan_dependencies.mjs",{"path":316,"priority":261},"scripts/setup_scanner_hook.mjs",{"basePath":318,"description":319,"displayName":320,"installMethods":321,"rationale":322,"selectedPaths":323,"source":246,"sourceLanguage":18,"type":218},"skills/clawsec-suite","ClawSec suite manager with embedded advisory-feed monitoring, cryptographic signature verification, approval-gated malicious-skill response, and guided setup for additional security skills.","clawsec-suite",{"claudeCode":12},"SKILL.md frontmatter at skills/clawsec-suite/SKILL.md",[324,325,326,328,330,332,334,336,338,340,342],{"path":241,"priority":242},{"path":244,"priority":245},{"path":327,"priority":245},"HEARTBEAT.md",{"path":329,"priority":261},"scripts/discover_skill_catalog.mjs",{"path":331,"priority":261},"scripts/generate_checksums_json.mjs",{"path":333,"priority":261},"scripts/guarded_skill_install.mjs",{"path":335,"priority":261},"scripts/local_file_io.mjs",{"path":337,"priority":261},"scripts/setup_advisory_cron.mjs",{"path":339,"priority":261},"scripts/setup_advisory_hook.mjs",{"path":341,"priority":261},"scripts/sign_detached_ed25519.mjs",{"path":343,"priority":261},"scripts/verify_detached_ed25519.mjs",{"basePath":345,"description":346,"displayName":347,"installMethods":348,"rationale":349,"selectedPaths":350,"source":246,"sourceLanguage":18,"type":218},"skills/clawtributor","Community incident reporting for AI agents. Contribute to collective security by reporting threats.","clawtributor",{"claudeCode":12},"SKILL.md frontmatter at skills/clawtributor/SKILL.md",[351,352,353,354],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":355,"priority":245},"reporting.md",{"basePath":357,"description":358,"displayName":359,"installMethods":360,"rationale":361,"selectedPaths":362,"source":246,"sourceLanguage":18,"type":218},"skills/hermes-attestation-guardian","Hermes-only runtime security attestation and drift detection skill for operator-managed Hermes infrastructure.","hermes-attestation-guardian",{"claudeCode":12},"SKILL.md frontmatter at skills/hermes-attestation-guardian/SKILL.md",[363,364,365,366,368,370,372,374,376,378],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":367,"priority":261},"scripts/check_advisories.mjs",{"path":369,"priority":261},"scripts/generate_attestation.mjs",{"path":371,"priority":261},"scripts/guarded_skill_verify.mjs",{"path":373,"priority":261},"scripts/refresh_advisory_feed.mjs",{"path":375,"priority":261},"scripts/setup_advisory_check_cron.mjs",{"path":377,"priority":261},"scripts/setup_attestation_cron.mjs",{"path":379,"priority":261},"scripts/verify_attestation.mjs",{"basePath":381,"description":382,"displayName":383,"installMethods":384,"rationale":385,"selectedPaths":386,"source":246,"sourceLanguage":18,"type":218},"skills/hermes-traffic-guardian","Hermes runtime traffic monitoring baseline for opt-in proxy inspection, egress detection, and attestation-aware traffic posture.","hermes-traffic-guardian",{"claudeCode":12},"SKILL.md frontmatter at skills/hermes-traffic-guardian/SKILL.md",[387,388,389,390,392],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":391,"priority":245},"SPEC.md",{"path":302,"priority":261},{"basePath":394,"description":395,"displayName":396,"installMethods":397,"rationale":398,"selectedPaths":399,"source":246,"sourceLanguage":18,"type":218},"skills/nanoclaw-traffic-guardian","NanoClaw runtime traffic monitoring baseline for host-side proxy inspection with container-safe MCP and IPC status surfaces.","nanoclaw-traffic-guardian",{"claudeCode":12},"SKILL.md frontmatter at skills/nanoclaw-traffic-guardian/SKILL.md",[400,401,402,403],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":391,"priority":245},{"basePath":405,"description":406,"displayName":407,"installMethods":408,"rationale":409,"selectedPaths":410,"source":246,"sourceLanguage":18,"type":218},"skills/openclaw-audit-watchdog","Automated daily security audits for OpenClaw agents with DM delivery and optional email reporting. Runs deep audits, creates or updates a recurring cron job, and sends formatted reports to configured recipients.","openclaw-audit-watchdog",{"claudeCode":12},"SKILL.md frontmatter at skills/openclaw-audit-watchdog/SKILL.md",[411,412,413,414,416,418,420,422,424,426,427,429,431],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":415,"priority":261},"examples/README.md",{"path":417,"priority":261},"examples/security-audit-config.example.json",{"path":419,"priority":261},"scripts/codex_review.sh",{"path":421,"priority":261},"scripts/load_suppression_config.mjs",{"path":423,"priority":261},"scripts/render_report.mjs",{"path":425,"priority":261},"scripts/run_audit_and_format.sh",{"path":310,"priority":261},{"path":428,"priority":261},"scripts/send_smtp.mjs",{"path":430,"priority":261},"scripts/sendmail_report.sh",{"path":432,"priority":261},"scripts/setup_cron.mjs",{"basePath":434,"description":435,"displayName":436,"installMethods":437,"rationale":438,"selectedPaths":439,"source":246,"sourceLanguage":18,"type":218},"skills/openclaw-traffic-guardian","OpenClaw runtime traffic monitoring baseline for opt-in HTTP/HTTPS proxy inspection, egress detection, and inbound injection detection.","openclaw-traffic-guardian",{"claudeCode":12},"SKILL.md frontmatter at skills/openclaw-traffic-guardian/SKILL.md",[440,441,442,443,444],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":391,"priority":245},{"path":302,"priority":261},{"basePath":446,"description":447,"displayName":448,"installMethods":449,"rationale":450,"selectedPaths":451,"source":246,"sourceLanguage":18,"type":218},"skills/picoclaw-security-guardian","Picoclaw security posture skill with advisory awareness, configuration drift detection, and supply-chain verification guidance.","picoclaw-security-guardian",{"claudeCode":12},"SKILL.md frontmatter at skills/picoclaw-security-guardian/SKILL.md",[452,453,454,455,456,458,460],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":367,"priority":261},{"path":457,"priority":261},"scripts/check_drift.mjs",{"path":459,"priority":261},"scripts/generate_profile.mjs",{"path":461,"priority":261},"scripts/verify_supply_chain.mjs",{"basePath":463,"description":464,"displayName":465,"installMethods":466,"rationale":467,"selectedPaths":468,"source":246,"sourceLanguage":18,"type":218},"skills/picoclaw-self-pen-testing","Picoclaw-only local posture-review skill focused on read-only findings and safe operator remediation guidance.","picoclaw-self-pen-testing",{"claudeCode":12},"SKILL.md frontmatter at skills/picoclaw-self-pen-testing/SKILL.md",[469,470,471,472],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":473,"priority":261},"scripts/self_pen_test.mjs",{"basePath":475,"description":476,"displayName":477,"installMethods":478,"rationale":479,"selectedPaths":480,"source":246,"sourceLanguage":18,"type":218},"skills/picoclaw-traffic-guardian","Picoclaw runtime traffic monitoring baseline for lightweight AI gateway proxy inspection, egress detection, and posture integration.","picoclaw-traffic-guardian",{"claudeCode":12},"SKILL.md frontmatter at skills/picoclaw-traffic-guardian/SKILL.md",[481,482,483,484,485],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":391,"priority":245},{"path":302,"priority":261},{"basePath":215,"description":10,"displayName":13,"installMethods":487,"rationale":488,"selectedPaths":489,"source":246,"sourceLanguage":18,"type":218},{"claudeCode":12},"SKILL.md frontmatter at skills/soul-guardian/SKILL.md",[490,491,492,493,495,497,499,501],{"path":241,"priority":242},{"path":256,"priority":257},{"path":244,"priority":245},{"path":494,"priority":261},"scripts/install_launchd_plist.py",{"path":496,"priority":261},"scripts/onboard_state_dir.py",{"path":498,"priority":261},"scripts/soul_guardian.py",{"path":500,"priority":261},"scripts/test_install_launchd_plist.py",{"path":502,"priority":261},"scripts/test_soul_guardian.py",{"sources":504},[505],"manual",{"closedIssues90d":203,"description":507,"forks":204,"homepage":508,"license":210,"openIssues90d":8,"pushedAt":206,"readmeSize":201,"stars":207,"topics":509},"A complete security skill suite for OpenClaw, Hermes, PicoClaw and NanoClaw agents (and variants). Protect your SOUL.md (etc') with drift detection, live security recommendations, automated audits, and skill integrity verification. All from one installable suite.","https://prompt.security/clawsec",[510,511,512,513,514,515,516,517,518,519,520,521,522,523,524,525,526,527],"clawdbot","clawdbot-skill","molt","moltbot-skill","moltbot-skills","openclaw","openclaw-extension","openclaw-plugin","openclaw-security","openclaw-skill","openclaw-skills","nanoclaw","hermes","hermes-agent","hermes-skill","hermes-skills","picoclaw","picoclaw-install",{"classifiedAt":529,"discoverAt":530,"extractAt":531,"githubAt":531,"updatedAt":529},1778695753156,1778695744804,1778695751173,[186,187,185,184,188],{"evaluatedAt":213,"extractAt":534,"updatedAt":213},1778695753353,[],[537,566,595,618,648,680],{"_creationTime":538,"_id":539,"community":540,"display":541,"identity":547,"providers":551,"relations":559,"tags":562,"workflow":563},1778695548458.3328,"k17cyw0d6mk1vdgew2xmncx1f186npdm",{"reviewCount":8},{"description":542,"installMethods":543,"name":545,"sourceUrl":546},"Audit project dependencies for version staleness, security vulnerabilities, and compatibility issues. Covers lock file analysis, upgrade path planning, and breaking change assessment. Use before a release to ensure dependencies are current and secure, during periodic maintenance reviews, after receiving a security advisory, when upgrading to a new language version, before submitting to CRAN or npm, or when inheriting a project to assess its dependency health.\n",{"claudeCode":544},"pjt222/agent-almanac","audit-dependency-versions","https://github.com/pjt222/agent-almanac",{"basePath":548,"githubOwner":549,"githubRepo":550,"locale":18,"slug":545,"type":218},"skills/audit-dependency-versions","pjt222","agent-almanac",{"evaluate":552,"extract":558},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":553,"targetMarket":189,"tier":190},[554,186,184,555,556,557],"dependencies","upgrades","versioning","maintenance",{"commitSha":224},{"parentExtensionId":560,"repoId":561},"k170h0janaa9kwn7cfgfz2ykss86mmh9","kd7aryv63z61j39n2td1aeqkvh86mh12",[186,554,557,184,555,556],{"evaluatedAt":564,"extractAt":565,"updatedAt":564},1778696062378,1778695548458,{"_creationTime":567,"_id":568,"community":569,"display":570,"identity":576,"providers":581,"relations":589,"tags":591,"workflow":592},1778691193352.5176,"k17fczm34j9645kq7jcp1b4hss86mz0t",{"reviewCount":8},{"description":571,"installMethods":572,"name":574,"sourceUrl":575},"Revisa el diff de la rama actual frente a develop en proyectos Drupal 11 siguiendo la metodología Codex (lógica de negocio, edge cases de hooks/queries, seguridad, performance, completitud). Genera un informe .md en la carpeta del IDE detectado (.antigravity/, .cursor/, .vscode/ o docs/) con hallazgos por severidad y soluciones accionables. Usar cuando el usuario pida \"Revisión diff develop\", \"revisión diff develop\", \"diff develop\", \"revisar diff\", \"codex diff\" o expresiones similares con intención de auditar cambios contra develop. Triggers: diff develop, codex diff, revisión diff, lint diff develop, auditar diff.",{"claudeCode":573},"j4rk0r/claude-skills","codex-diff-develop","https://github.com/j4rk0r/claude-skills",{"basePath":577,"githubOwner":578,"githubRepo":579,"locale":580,"slug":574,"type":218},"skills/codex-diff-develop","j4rk0r","claude-skills","es",{"evaluate":582,"extract":588},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":583,"targetMarket":189,"tier":190},[584,585,586,184,186,587],"drupal","code-review","diff","developer-tools",{"commitSha":224},{"repoId":590},"kd79shaph0e07035621cxd7x1n86m944",[186,585,587,586,584,184],{"evaluatedAt":593,"extractAt":594,"updatedAt":593},1778691216358,1778691193352,{"_creationTime":596,"_id":597,"community":598,"display":599,"identity":603,"providers":605,"relations":614,"tags":615,"workflow":616},1778695548458.3718,"k175vfqr247swcyt62e6v08a4x86mtf1",{"reviewCount":8},{"description":600,"installMethods":601,"name":602,"sourceUrl":546},"Investigate root causes and manage CAPAs (Corrective and Preventive Actions) for compliance deviations. Covers investigation method selection (5-Why, fishbone, fault tree), structured root cause analysis, corrective vs preventive action design, effectiveness verification, and trend analysis. Use when an audit finding requires a CAPA, when a deviation or incident occurs in a validated system, when a regulatory observation needs a formal response, when a data integrity anomaly requires investigation, or when recurring issues suggest a systemic root cause.\n",{"claudeCode":544},"investigate-capa-root-cause",{"basePath":604,"githubOwner":549,"githubRepo":550,"locale":18,"slug":602,"type":218},"skills/investigate-capa-root-cause",{"evaluate":606,"extract":613},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":607,"targetMarket":189,"tier":190},[608,609,610,611,612,186],"compliance","capa","investigation","root-cause-analysis","gxp",{"commitSha":224},{"parentExtensionId":560,"repoId":561},[186,609,608,612,610,611],{"evaluatedAt":617,"extractAt":565,"updatedAt":617},1778699030088,{"_creationTime":619,"_id":620,"community":621,"display":622,"identity":628,"providers":633,"relations":642,"tags":644,"workflow":645},1778694720643.034,"k175824bv0hy06y0gygd192pgd86nceh",{"reviewCount":8},{"description":623,"installMethods":624,"name":626,"sourceUrl":627},"Run a weekly SEO review for one registered website, write audit artifacts, and choose the next best safe action.",{"claudeCode":625},"nowork-studio/toprank","Toprank Weekly Review","https://github.com/nowork-studio/toprank",{"basePath":629,"githubOwner":630,"githubRepo":631,"locale":18,"slug":632,"type":218},"openclaw/skills/toprank-weekly-review","nowork-studio","toprank","toprank-weekly-review",{"evaluate":634,"extract":640},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":635,"targetMarket":189,"tier":190},[636,637,638,186,639],"seo","google-ads","meta-ads","automation",{"commitSha":224,"license":641},"MIT",{"repoId":643},"kd74wn8s89tp9hrfsmcra492r586nbrv",[186,639,637,638,636],{"evaluatedAt":646,"extractAt":647,"updatedAt":646},1778694967711,1778694720643,{"_creationTime":649,"_id":650,"community":651,"display":652,"identity":658,"providers":663,"relations":671,"tags":675,"workflow":676},1778692169475.437,"k172w1s4pv9xgb31fp2vrtv04186n44y",{"reviewCount":8},{"description":653,"installMethods":654,"name":656,"sourceUrl":657},"显示每个技能消耗的上下文窗口令牌数量。当用户询问有关令牌成本、上下文预算、技能大小，或希望了解哪些技能浪费了最多的上下文空间时使用。",{"claudeCode":655},"khendzel/skills-janitor","janitor-tokens","https://github.com/khendzel/skills-janitor",{"basePath":659,"githubOwner":660,"githubRepo":661,"locale":662,"slug":656,"type":218},"skills/janitor-tokens","khendzel","skills-janitor","zh-CN",{"evaluate":664,"extract":670},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":665,"targetMarket":189,"tier":190},[666,667,668,669,186],"skills-management","code-analysis","cost-optimization","token-usage",{"commitSha":224},{"parentExtensionId":672,"repoId":673,"translatedFrom":674},"k173y287h96a0x42zvrvymzvgn86nq38","kd722xn3d2v8ze2vwgebvzgpv986mj48","k17epektyn71reavpa0hvxmvch86mxwf",[186,667,668,666,669],{"evaluatedAt":677,"extractAt":678,"updatedAt":679},1778692064277,1778691884319,1778692169475,{"_creationTime":681,"_id":682,"community":683,"display":684,"identity":688,"providers":690,"relations":696,"tags":698,"workflow":699},1778692149990.924,"k1784mxj5rt2pfmfdqhc36xnys86nnwc",{"reviewCount":8},{"description":685,"installMethods":686,"name":687,"sourceUrl":657},"一个完整的报告，用于检查所有技能的健康状况。当用户想要检查错误、查找重复项、检测损坏的技能或获取技能健康状况的完整概览时使用。",{"claudeCode":655},"janitor-report",{"basePath":689,"githubOwner":660,"githubRepo":661,"locale":662,"slug":687,"type":218},"skills/janitor-report",{"evaluate":691,"extract":695},{"promptVersionExtension":177,"promptVersionScoring":178,"score":181,"tags":692,"targetMarket":189,"tier":190},[693,694,186,557,587],"skills","management",{"commitSha":224},{"parentExtensionId":672,"repoId":673,"translatedFrom":697},"k177wxk7zzyaycd3t6ads36e7586mkcw",[186,587,557,694,693],{"evaluatedAt":700,"extractAt":678,"updatedAt":701},1778692022779,1778692149990]