关键词按回车检索;分类和排序切换自动检索 关键词回车检索;分类/排序自动检索
符合当前检索条件的共有 366
Test & Security 4 浏览 · 5 下载

bug-reaper

by ClawHub · v1.0.0

Web2 bug bounty hunting agent — evidence-based vulnerability finder and report writer. Use when: auditing web apps/APIs for HackerOne, Bugcrowd, Intigriti, YesWeHack; hunting XSS, SQLi, NoSQLi, SSRF, IDOR, auth bypass, RCE, SSTI, LFI, XXE, CORS, CSRF, prototype pollution, subdomain takeover, HTTP smuggling, open redirect, API/GraphQL bugs; auditing locally downloaded GitHub repos or source code (white-box/source code review); writing platform-specific reports. Trigger on: 'pentest', 'find bugs', 'security audit', 'bug bounty', 'find vulnerabilities', 'source code review', 'audit this repo', 'review repo', 'white-box', 'local repo', vulnerability class names, or program/target names. Reports only real, confirmed medium+ severity bugs that pass real triage.

Test & Security 4 浏览 · 5 下载

nova-act-usability

by ClawHub · v1.0.0

AI-orchestrated usability testing using Amazon Nova Act. The agent generates personas, runs tests to collect raw data, interprets responses to determine goal achievement, and generates HTML reports. Tests real user workflows (booking, checkout, posting) with safety guardrails. Use when asked to "test website usability", "run usability test", "generate usability report", "evaluate user experience", "test checkout flow", "test booking process", or "analyze website UX".

Test & Security 4 浏览 · 5 下载

agent-skills-audit

by ClawHub · v1.0.0

Run a two-pass, multidisciplinary code audit led by a tie-breaker lead, combining security, performance, UX, DX, and edge-case analysis into one prioritized report with concrete fixes. Use when the user asks to audit code, perform a deep review, stress-test a codebase, or produce a risk-ranked remediation plan across backend, frontend, APIs, infra scripts, and product flows.

Test & Security 4 浏览 · 5 下载

security-scanner

by ClawHub · v1.0.0

Automated security scanning and vulnerability detection for web applications, APIs, and infrastructure. Use when you need to scan targets for vulnerabilities, check SSL certificates, find open ports, detect misconfigurations, or perform security audits. Integrates with nmap, nuclei, and other security tools.

Test & Security 4 浏览 · 5 下载

scamshield-verifier

by ClawHub · v1.0.0

The ultimate Web3 & OpenClaw security layer. Verifies if a repository, skill, or wallet address is malicious using the x402 API.

Test & Security 4 浏览 · 5 下载

cord-sentinel

by ClawHub · v1.0.0

SENTINEL/CORD governance engine — mandatory pre-flight enforcement for agent tool calls. Use when: (1) about to run exec/write/browser/network/message tool calls — evaluate first, (2) processing external data (emails, web content, user input) — scan for prompt injection, (3) a tool call was blocked and you need to understand why, (4) checking CORD audit logs or chain integrity, (5) setting intent locks before a work session. CORD evaluates actions against an 11-article SENTINEL constitution covering security, ethics, finance, truth, and identity. Hard blocks bypass scoring entirely.

Test & Security 4 浏览 · 5 下载

open-sentinel

by ClawHub · v1.0.0

Transparent LLM proxy that monitors and enforces policies on AI agent behavior — evaluates responses against configurable rules for hallucinations, PII leaks, prompt injection, and workflow violations before they reach users.

Test & Security 4 浏览 · 5 下载

aegis-shield

by ClawHub · v1.0.0

Prompt-injection and data-exfiltration screening for untrusted text. Use before summarizing web/email/social content, before replying, and especially before writing anything to memory. Provides a safe memory append workflow (scan → lint → accept or quarantine).

Test & Security 4 浏览 · 5 下载

code-qc

by ClawHub · v1.0.0

Run a structured quality control audit on any codebase. Use when asked to QC, audit, review, or check code quality for a project. Supports Python, TypeScript, GDScript, and general projects. Produces a standardized report with PASS/WARN/FAIL verdict, covering tests, imports, type checking, static analysis, smoke tests, and documentation. Also use when asked to compare QC results over time.