Security

openclaw-permission-config @BeyondMark

Guide users through OpenClaw permission configuration across versions. Use when OpenClaw operations fail due to...

panews-creator @panewslab

PANews creator workflow — authenticate, manage column applications, upload images, and create or submit articles....

pdf @codeHardest

Use this skill whenever the user wants to do anything with PDF files. This includes reading or extracting...

pdf @ur-grue

Use this skill whenever the user wants to do anything with PDF files. This includes reading or extracting...

security @iceflower

>-

threat-model @KvaddeML919

Scan the currently open repository and generate a comprehensive STRIDE-based threat model report. Use when the user...

security-review @insightflo

OWASP Top 10 security vulnerability scanner. Detects secret exposure, injection flaws, auth/authz gaps, supply-chain...

competitive-scan @DipakMajhi

Map and analyze the competitive landscape. Routes to the competitive-intelligence skill Mode A.

trenza-supabase-auth @TrenzaCR

>

trenza-security @TrenzaCR

>

credential-leak-scanner @oktsec

Scans files, code, configs, and text for leaked credentials including API keys, tokens, private keys, and connection...

openclaw-skill-auditor @CalWade

Audit installed OpenClaw skills for security risks, token bloat, and hidden cost patterns. Use this skill whenever...

sofka-security-architecture @javiermontano-sofka

>

supabase-expert @luokai0

Expert-level Supabase. Use when building with Supabase, Row Level Security, Auth, Realtime, Edge Functions, Storage,...

strategy-memepump-scanner @purong-huang-1121

Use when the user asks about meme token scanning, pump.fun scanner, Trenches auto-scan, memepump safety filter,...

web-assessment @Anshin-Health-Solutions

Web security assessment with vulnerability scanning, penetration testing methodology, and professional reporting.

security-audit @Anshin-Health-Solutions

Self-security scan of SuperPAI configuration with graded report

sec-updates @Anshin-Health-Solutions

Security news aggregation from tldrsec, no.security, and other sources.

recon @Anshin-Health-Solutions

Security reconnaissance for authorized targets. Map attack surface, discover assets, enumerate services.

annual-reports @Anshin-Health-Solutions

Annual report aggregation and analysis. Security reports, threat landscape, industry reports.

security-review @alistaircroll

Run security checks before code leaves the machine — secrets scanning (gitleaks), .gitignore hygiene, dependency...

gpc-auth-setup @leszko11

Use when provisioning or verifying gpc authentication, including service-account setup, profile switching, doctor...

security-review @dannypenrose

Enforce security standards when writing or reviewing code that handles authentication, authorization, user input,...

squash @ChrisSimmons

Squash consecutive co-authored commits into one. Always asks for confirmation before proceeding.