skills.homescapability registry Search

query active

Search Skills

Find the perfect capability for your agent.

Popular searches

python ai web scraper mcp pdf git docker typescript

Results

10,480

matching skills for this query

Page

67

of 524 pages

Keyword

git

search by name, tag, or description

lab-tools

4K

autoresearch-loop

Apply Karpathy's autoresearch methodology to iteratively improve anything measurable — Claude skills, n8n workflows, system prompts, business processes, or any artifact with a clear quality metric. Inspired by github.com/karpathy/autoresearch (56k stars). The loop: propose a change → test it → measure against the target metric → keep if better, discard if not → repeat until a stopping condition is met. Trigger this skill when the user explicitly requests an iterative improvement loop, e.g.: "improve this skill automatically", "iterate on this workflow", "run autoresearch on", "run experiments on this", "optimize this automatically", "set up an improvement loop", or "run the autoresearch method".

openclaw

research

lab-tools

4K

gitcode-pr-audit

Quality audit for merged GitCode PRs: sample by time range or repo list, check compliance (labels, comments, tests, size, etc.), output table. Use when user asks to 抽检/质量检查已合入的 PR 规范性、多仓库 PR、或将结果整理成表格. Multi-repo (owner/repo). Python 3.7+ stdlib only.

openclaw

research

code-quality

4K

pr-comment-fix

按 GitCode PR 检视意见修改代码。需 GITCODE_TOKEN。Use when 用户要修改 PR 检视意见。

openclaw

testing-security

code-quality

4K

skill-scanner

Security-first skill vetting for AI agents on OpenClaw and Claude Code. Scans any SKILL.md for malicious patterns, permission abuse, prompt injection, and ClawHavoc attack vectors — then gives a clear Safe / Caution / Danger verdict. Use this skill whenever the user wants to install, review, vet, or audit a skill from ClawHub, GitHub, or any other source; asks "is this skill safe?", "should I install this?", "scan/check/vet this skill", "review skill before installing"; shares a SKILL.md file or skill URL; or pastes skill content for evaluation. Proactively offer to scan any skill the user mentions installing, even if they don't explicitly ask for a security check.

openclaw

testing-security

code-quality

4K

claude-code-statusline

Install and configure a custom Claude Code status line showing real-time token usage, context window percentage, git branch, and color-coded warnings. Use when the user asks to "install statusline", "setup statusline", "configure statusline", "setup status line", "install status bar", "show token usage", "context window display", "statusline colors", "statusline thresholds", or wants to customize their Claude Code status bar display.

openclaw

testing-security

code-quality

4K

skill-security-auditor

Security audit and vulnerability scanner for AI agent skills before installation. Use when: (1) evaluating a skill from an untrusted source, (2) auditing a skill directory or git repo URL for malicious code, (3) pre-install security gate for Claude Code plugins, OpenClaw skills, or Codex skills, (4) scanning Python scripts for dangerous patterns like os.system, eval, subprocess, network exfiltration, (5) detecting prompt injection in SKILL.md files, (6) checking dependency supply chain risks, (7) verifying file system access stays within skill boundaries. Triggers: "audit this skill", "is this skill safe", "scan skill for security", "check skill before install", "skill security check", "skill vulnerability scan".

openclaw

testing-security

security

4K

tor-browser

Headless browser automation with Tor SOCKS5 proxy support for accessing .onion sites and anonymous browsing. Use when navigating dark web resources, scraping Tor hidden services, conducting security research on dark web forums, or when anonymity is required. Supports navigation, element interaction, screenshots, and data extraction through Tor network.

openclaw

testing-security

security

4K

ai-warden-setup

Install, configure, and manage the AI-Warden prompt injection protection plugin for OpenClaw. Publisher: AI-Warden (ai-warden.io). Source: github.com/ai-warden/openclaw-plugin. NPM: openclaw-ai-warden. Use when: (1) setting up AI-Warden on a new OpenClaw instance, (2) configuring security layers or API keys, (3) troubleshooting AI-Warden plugin issues, (4) updating the plugin, (5) checking warden status or accuracy. Triggers on phrases like "install ai-warden", "setup prompt injection protection", "configure warden", "security plugin", "protect my agent".

openclaw

testing-security

security

4K

shuzhi-weather

This skill should be used when users need to query weather information via the Shuzhi Weather API with HMAC-SHA256 authentication. It provides hourly weather forecasts based on latitude and longitude coordinates. Users must configure app_key and app_secret in ~/.openclaw/skills/shuzhi-weather/config.json before using this skill.

openclaw

testing-security

security

4K

arc-sentinel

Security monitoring and infrastructure health checks for OpenClaw agents. Run breach monitoring (HaveIBeenPwned), SSL certificate expiry checks, GitHub security audits, credential rotation tracking, secret scanning, git hygiene, token watchdog, and permission audits. Use when performing security scans, checking credential rotation status, auditing repos for leaked secrets, or monitoring SSL certificates and infrastructure health.

openclaw

testing-security

productivity-tools

4K

openclaw-sentry

Scan workspace files for leaked secrets: API keys, tokens, passwords, private keys, and credentials. Detects AWS, GitHub, Slack, Stripe, OpenAI, Anthropic, Google, Azure keys and more. Free alert layer — upgrade to openclaw-sentry-pro for automated redaction, quarantine, and defense.

openclaw

tools

productivity-tools

4K

openclaw-tool-executor

Use this skill whenever the user asks for information from, or wants to take an action in, a third-party tool or service. This includes — but is not limited to — searching the web, reading or writing documents, sending messages, querying databases, managing tasks, fetching data from APIs, or interacting with any connected SaaS product (e.g. "search Exa for...", "read my Notion page", "send a Slack message", "get my Google Sheet", "create a GitHub issue", "query Snowflake", "look up a HubSpot contact"). Trigger this skill any time the user's request involves an external service, integration, or data source — even if the provider is not explicitly named. Handles OAuth and non-OAuth (API Key, Bearer, Basic) connections, tool discovery, execution, and proxy fallback via Scalekit Connect. ## Provider Mapping Some services are accessed through a different provider name in Scalekit. Always use the mapped provider name below: | User asks about | Use provider | |

openclaw

tools

security

4K

skill-vetter

Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.

openclaw

testing-security

security

4K

appflowy-api

AppFlowy Cloud/GoTrue API 的认证与调用流程（获取 token、workspace/文档/数据库/搜索等）。在本仓库用 Python 编写或调试 AppFlowy API 客户端、脚本、自动化或排查接口问题时使用。

openclaw

testing-security

security

4K

skill-vetter-jarvis

Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.

openclaw

testing-security

security

4K

liberfi-auth

Authenticate with LiberFi: register a new account, log in, manage session state, and verify wallet assignments. Two login modes are supported: 1. Key-based (--key): Generates a local P-256 key pair and signs a timestamp. Ideal for agent / headless / automated environments. No email required; a TEE wallet is created automatically. 2. Email OTP: Sends a 6-digit code to the user's email. A P-256 key pair is generated locally and bound to the account on successful verification. A TEE wallet is created automatically. After authentication, a LiberFi JWT is stored in ~/.liberfi/session.json. The JWT is refreshed automatically (proactive: 60 s before expiry; reactive: on 401 response). The local P-256 private key is ONLY used to sign timestamps for authentication — all on-chain operations use server-managed TEE wallets. Trigger words: login, sign in, authenticate, register, create account, logout, sign out, verify, check auth, am I logged in, session status, who am I, my wallet address, my ac

openclaw

testing-security

security

4K

cloakclaw

Automatic privacy proxy for AI conversations. Redacts sensitive data (names, companies, financials, SSNs, emails, phones, addresses, API keys, IPs, passwords, and 14 more types) from documents before sending to cloud LLMs, then restores originals in the response. 24 entity types across 6 profiles (General, Legal, Financial, Email, Code, Medical). Use when: (1) user attaches a document (PDF, TXT, etc.), (2) user pastes sensitive text, (3) user mentions contracts, financials, HR docs, medical, or legal documents, (4) user explicitly asks for privacy/cloaking. Always-on by default. Requires: Node.js 22+, CloakClaw installed (`npm install -g cloakclaw`). Optional: Ollama for name/company detection (works without in regex-only mode). Optional: poppler for better PDF extraction (`brew install poppler`).

openclaw

testing-security

security

4K

sx-security-audit

全方位安全审计技能。检查文件权限、环境变量、依赖漏洞、配置文件、网络端口、Git 安全、Shell 安全、macOS 安全、密钥检测等。支持 CLI 参数、JSON 输出、配置文件。当用户要求"安全检查"、"漏洞扫描"、"权限检查"、"安全审计"时使用此技能。

openclaw

testing-security

security

4K

sx-security-audit

全方位安全审计技能。检查文件权限、环境变量、依赖漏洞、配置文件、网络端口、Git 安全、Shell 安全、macOS 安全、密钥检测等。支持 CLI 参数、JSON 输出、配置文件。当用户要求"安全检查"、"漏洞扫描"、"权限检查"、"安全审计"时使用此技能。

openclaw

testing-security

security

4K

doro-git-secrets-scanner

Git 安全扫描器 - 检查提交中的敏感信息泄露（API keys、密码、token）

openclaw

testing-security

Page 67 / 524