Vet OpenClaw skill provenance before a community install reaches production
arc-trust-verifier helps review publisher, version, dependency, and attestation signals before installing a ClawHub skill.
AI Radar is a community OpenClaw skill for turning scattered AI-tool signals into a compact momentum brief. It pairs product news with GitHub indicators such as trending status, star movement, releases, and ecosystem mentions so an agent can explain why a tool matters now instead of only listing links.
This is useful for newsletter editors, product scouts, developer advocates, founders, and LinkLoot-style curators who need to separate useful early signals from recycled AI launch noise.
The ClawHub listing exposes an install command for OpenClaw. Do not install it blindly on a production Pi. Review the SKILL.md, check the requested workflow, and run it first in a sandbox or disposable workspace with no secrets.
The skill reads public web and GitHub signals, so source quality matters. Treat third-party pages, launch posts, and repo READMEs as untrusted content. Verify claims against official project pages, releases, and independent traction signals before publishing or acting on the output.
GitHub's refreshed pull requests dashboard is now generally available, giving developers and managers one place for revi…
GitHub's CodeQL 2.26.0 adds a JavaScript and TypeScript query for system prompt injection, giving teams a static-analysi…
GitHub Advanced Security enterprise customers can now publish private internal advisories that trigger Dependabot alerts…
Sign in to join the discussion and vote on comments.
Sign in