Category
Security
Security scanning, vulnerability assessment, and audit tools. These skills help identify security issues in codebases, dependencies, and configurations.
447 skills in this category
esri-workflow-smell-detector (consumer)
openclaw/skills
59Paid client skill for Esri Workflow Smell Detector via x402 (Base/USDC). Use when you want to run a deterministic automation preflight scan on an ArcGIS Pro project snapshot by calling https://api.x402layer.cc/e/esri-smells (HTTP 402 payment flow).
SKILL6 Findingsabout 2 months agosupabase-gen
openclaw/skills
58Generate Supabase RLS policies from Prisma schema. Use when setting up row-level security for your tables.
SKILL3 Findingsabout 1 month agopaylobster
openclaw/skills
58Expert debugger, security engineer, and QA specialist for the Pay Lobster platform.
SKILL6 Findingsabout 2 months agolighthouse-fixer
openclaw/skills
58Run Lighthouse audit and get AI fix suggestions. Use when improving performance.
SKILL4 Findingsabout 2 months agometa-tags-gen
openclaw/skills
58Scan pages and generate missing meta tags. Use when improving SEO.
SKILL4 Findingsabout 2 months agosecucheck
openclaw/skills
58Comprehensive security audit for OpenClaw. Scans 7 domains (runtime, channels, agents, cron, skills, sessions, network), supports 3 expertise levels, context-aware analysis, and visual dashboard. Read-only with localized reports.
SKILL6 Findingsabout 2 months agosecurityreview
openclaw/skills
56This document outlines your standard procedures, principles, and skillsets for conducting security audits. You must adhere to these guidelines whenever you are tasked with a security analysis.
SKILL3 Findingsabout 1 month agoCross-Site Scripting and HTML Injection Testing
sickn33/antigravity-awesome-skills
55This skill should be used when the user asks to "test for XSS vulnerabilities", "perform cross-site scripting attacks", "identify HTML injection flaws", "exploit client-side injection vulnerabilities", "steal cookies via XSS", or "bypass content security policies". It provides comprehensive techniques for detecting, exploiting, and understanding XSS and HTML injection attack vectors in web applications.
SKILL3 Findingsabout 1 month agoEthical Hacking Methodology
sickn33/antigravity-awesome-skills
55This skill should be used when the user asks to "learn ethical hacking", "understand penetration testing lifecycle", "perform reconnaissance", "conduct security scanning", "exploit vulnerabilities", or "write penetration test reports". It provides comprehensive ethical hacking methodology and techniques.
SKILL2 Findingsabout 1 month agoclerk-auth
openclaw/skills
53Clerk auth with API Keys beta (Dec 2025), Next.js 16 proxy.ts (March 2025 CVE context), API version 2025-11-10 breaking changes, clerkMiddleware() options, webhooks, production considerations (GCP outages), and component reference. Prevents 15 documented errors. Use when: API keys for users/orgs, Next.js 16 middleware filename, troubleshooting JWKS/CSRF/JWT/token-type-mismatch errors, webhook verification, user type inconsistencies, or testing with 424242 OTP.
SKILL4 Findingsabout 2 months agosecret-scanner
openclaw/skills
51Scan your codebase for leaked secrets, API keys, and credentials before they hit production.
SKILL4 Findingsabout 2 months agomeshguard
openclaw/skills
51Manage MeshGuard AI agent governance - agents, policies, audit logs, and monitoring.
SKILL6 Findingsabout 2 months ago