High-risk skills

This skill performs security audits, threat modeling, and other security tasks.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill appears to be a set of documentation. Driftloom found shell-oriented patterns and destructive commands.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: Not recorded yet. Driftloom currently recommends a sandbox runtime check for this version (priority 35).

Automated result: High Risk

Current public label: High Risk

The skill includes shell commands that could be dangerous, and the documentation-only structure limits automated verification.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 high, 3 medium, 1 low

This skill helps you build LLM-powered applications with Claude by reading language-specific documentation.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No obvious script files found; disconnected runtime evidence may remain shallow.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 3 low, 1 info

This skill provides a development environment for JavaScript and TypeScript using the Bun runtime.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No obvious script files found; disconnected runtime evidence may remain shallow.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 3 low, 1 info

This skill appears to be a documentation-heavy guide for using the Claude Code CLI, including setup, configuration, and advanced workflows.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: Not recorded yet. Driftloom currently recommends a sandbox runtime check for this version (priority 35).

Automated result: High Risk

Current public label: High Risk

The presence of shell commands that could be used to install software or delete files, combined with the use of `sudo`, suggests this skill could be used to perform actions that could be harmful.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 high, 1 medium, 1 low

This skill researches topics across Reddit, X, and the web to surface current discussions and recommendations.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill is a multi-agent autonomous startup system, as described in the documentation. It uses OpenAI, DeepMind, and other AI tools.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill packages a macOS app built with Swift Package Manager (SwiftPM). It builds, packages, and runs the app without using Xcode.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill interacts with Google NotebookLM to answer questions based on your uploaded documents.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill integrates with Instagram via the Graph API, allowing for posting, analytics, and comment management.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill integrates with the Telegram Bot API, offering features like bot setup, messaging, webhooks, and inline keyboards.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info

This skill integrates with the WhatsApp Business Cloud API to send messages, use templates, and automate customer service.

Source: Workspace import

Originally ingested from a local workspace copy.

Runtime evidence: OpenClaw disconnected runtime validation completed cleanly in the isolated runner.

Used fake placeholder env vars in the sandbox; no real credentials were exposed.

• OpenClaw is available in the runner image as OpenClaw 2026.3.24 (cff6dc9).
• The skill matched the basic OpenClaw-oriented layout checks used for disconnected validation.
• SKILL.md does not explicitly mention OpenClaw; this may still be valid, but intent is less obvious.
• No safe documented OpenClaw commands or package-script help probes were found; disconnected validation remains mostly structural.

Automated result: High Risk

Current public label: High Risk

The current label should account for both the file-level review and the fact that the sandbox runtime pass did not come back perfectly clean.

Human review: none yet

The current public label is still relying on automation. A human has not weighed in yet.

Severity mix: 2 low, 1 info