ClawHub now holds 13,700+ community-built skills. A January 2026 security scan found 341 of them actively stealing user data. So the real question is not "what skills exist," it is "which ones are popular, safe, and actually worth installing."
This is that list. Below are the 17 best OpenClaw skills, ranked by real install counts and filtered for safety, each with its install command and what it is actually good for. Start with the quick-picks table, then read the why behind each pick.
Your agent. Working. Not broken.
One AI agent that just works. No silent failures. Free forever, not a trial. Start free → No credit card · No Docker · No config files
Quick Picks: Most Installed OpenClaw Skills, Ranked
These are the skills with the highest install counts on ClawHub that also pass a basic safety bar (public source, recent updates, no permission red flags). If you only read one section, read this one.
| Skill | What it does | Installs | Safe? | Best for |
|---|---|---|---|---|
| Skill Vetter | Scans skills for red flags before and after install | ~256K | Yes | Install this first |
| GitHub | Manage repos, issues, PRs, webhooks | ~189K | Yes | Developers |
| Ontology Memory | Persistent long-term memory across sessions | ~188K | Yes | Everyone |
| Google Workspace (gog) | Gmail, Calendar, Docs, Sheets access | ~185K | Yes | Productivity |
| Felo Search | AI-optimized web search with citations | ~145K | Yes | Research |
| Telegram Notify | Message your agent from your phone | High | Yes | Mobile access |
| Web Browser | Headless browser automation | High | Caution | Scraping, monitoring |
| SSH Manager | Manage remote servers in plain English | High | Caution | DevOps |
Install counts are drawn from public ClawHub download rankings and community roundups and shift over time. "Caution" means the skill is genuinely useful but touches a sensitive surface (a server, a live browser session) and needs tight permission scoping.

Start With Three, Then Expand
Before the full breakdown, the single most useful piece of advice: do not install 20 skills on day one. Conflicts between skills that need similar permissions are the number one reason new setups break.
Start with three. A memory skill so your agent remembers context. A search skill so it can pull current information. And Skill Vetter so everything else you add gets checked first. Run those for a week, learn the permission model, then expand based on the gaps you actually hit.
Now, the picks. But first, the distinction most guides get wrong.
Skills vs. Tools: The Distinction That Saves You From Yourself
Tools are the muscles. They determine what your agent can do. Read files. Execute commands. Browse the web. These are controlled by the tools.allow configuration.
Skills are the playbook. They teach your agent how to combine tools for specific tasks. The GitHub skill teaches your agent how to manage repos. A memory skill teaches it how to store and recall context. But without the right tools enabled, skills are just instructions with no hands.
Key takeaway: installing a skill does NOT automatically grant your agent new permissions. You still control which tools are enabled. This is your primary safety lever. Use it.
Three conditions must all be met for any skill to work: the tool must be allowed in config, the required software must be installed (on your machine or in the sandbox), and the skill must be loaded in your workspace. Miss one and nothing happens.

The Safety Layer: Install These First
Before any feature skill, install the one that protects you from the rest.
Skill Vetter (~256K installs) is the single most-downloaded skill on ClawHub for a reason. It scans skills for red flags before and after installation, flagging unverified dependency pulls, broad permission requests, and suspicious network calls. Given that a January 2026 scan found 341 skills actively harvesting data, this is not optional. Install it before anything else.
clawhub install skill-vetter
Ontology Memory (~188K installs) solves OpenClaw's biggest out-of-the-box weakness: it does not remember anything between sessions by default. This skill gives your agent persistent, structured long-term memory so context carries across conversations. The community consistently ranks memory as the "install first" foundation, because every other skill gets more useful when your agent remembers your project, your preferences, and what it did yesterday.
clawhub install ontology-memory
The Productivity Stack: Your Agent's Daily Operating System
These are the skills that turn OpenClaw from "interesting experiment" into "I can't work without this."

Google Workspace (gog) (~185K installs) is the foundational productivity skill and probably the first integration you should add after memory and search. It gives your agent access to Gmail, Calendar, Docs, and Sheets. The real power shows up paired with the heartbeat scheduler: have your agent check your calendar every morning and send a briefing before you've had coffee.
Security note: this skill gets deep access to your Google account. Scope it carefully. Read access to your calendar, write access only to specific docs. Never blanket Drive access.
clawhub install gog
Telegram Notify is ranked the number one skill in several community roundups, and the reason is simple: Telegram is OpenClaw's most reliable notification channel. No API approval, no rate limits that matter, works from any other skill. Connect with a BotFather token and you can message your agent from your phone, get morning briefings, task-completion alerts, and error notifications wherever you are. If you want your agent to proactively reach you, this is how.
clawhub install telegram-notify
Notion Integration lets your agent create pages, update databases, query project boards, and manage docs. The sweet spot is meeting notes: your agent extracts action items from a call summary and drops them into your Notion board automatically.
Meeting Prep Agent gathers calendar details, past notes, related documents, and email threads before every meeting, then assembles a briefing you can skim in 90 seconds. No more scrambling to remember last week.
The Developer Stack: Skills That Actually Ship Code
If you write code, these earn their keep.

GitHub Integration (~189K installs) is non-negotiable if you write code. Manage issues, PRs, repos, and webhooks through your agent. The real unlock: a webhook listener so your agent gets notified on new PRs and summarizes changes before you review. Pair it with the heartbeat for a daily repo digest.
clawhub install github
SSH Manager is one of the most-searched skills on ClawHub, and for good reason. It lets you manage remote servers through natural language instead of memorizing commands. Run diagnostics, deploy code, tail logs, restart services, and check disk usage from your messaging app.
Security note: this hands your agent live server access. Start with read-only diagnostics, scope write access tightly, and never point it at production until you trust the setup.
clawhub install ssh-manager
Cursor CLI Agent bridges your OpenClaw agent to the Cursor AI coding assistant. If you already use Cursor, this lets you trigger code generation, refactoring, and analysis from any chat channel. Text your agent from Telegram and it kicks off a Cursor session in the background.
Docker Manager lets your agent manage containers, images, and compose stacks. Start, stop, inspect, and clean up through chat. Useful when you manage multiple environments and don't want to SSH in every time something needs a restart.
Vercel Deployment turns deployments into conversational commands. Manage environment variables, configure domains, trigger releases.
Security note: this grants production deployment rights. Start in staging. Always.
The Automation Stack: Making Your Agent Proactive
These move your agent from reactive ("do this when I ask") to proactive ("do this because you noticed something").

Felo Search (~145K installs) is one of the most-installed skills on ClawHub. It returns AI-synthesized answers with source citations instead of a list of links, which cuts the back-and-forth in research loops. Multi-language support is a genuine differentiator if your work crosses languages. Without web search, your agent's knowledge stops at its training cutoff. With it, every task can pull current pricing, news, and docs.
clawhub install felo-search
Cron Job Manager creates scheduled tasks in natural language. "Remind me every Monday at 9 AM to review the sprint board." "Check Hacker News every morning and send me the top 5 AI stories." It makes one of OpenClaw's most powerful features accessible without terminal syntax.
Web Browser Automation is a headless browser skill that navigates pages, clicks elements, fills forms, and captures screenshots. It is the backbone of any monitoring or scraping workflow.
Security note: browser automation can visit any URL your agent encounters, which is a significant prompt injection surface. Sandbox this aggressively.
n8n Workflow Manager connects your agent to your n8n instance so it can activate workflows, check execution status, and trigger manual runs. The value scales with how much you have already built in n8n.
The Skills You Should NOT Install (Yet)
Here is where we get opinionated.

Avoid skills from unverified authors with fewer than 100 installs. A useful rule of thumb the community calls the 100/3 rule: prefer skills with 100+ downloads that have been on ClawHub for 3+ months. The removal process for flagged skills is slow, so do not be the test case.
Be cautious with "self-improving" or "auto-evolution" skills. Several highly-starred skills claim to make your agent "continuously enhance its own capabilities." That sounds exciting. It is also exactly the recursive, autonomous behavior that is hardest to audit and most likely to surprise you in production.
Skip any skill that asks for broader permissions than its stated purpose. A calendar skill that wants terminal access is a red flag. A weather skill that wants to read your files is a walk-away. Apply least privilege to every install.
Watch for typosquatting. The ClawHavoc campaign in early 2026 planted hundreds of malicious skills using names that mimic popular ones. Check the exact slug and the author before you install.
Our rule of thumb: if you can't read and understand a skill's SKILL.md and source in under five minutes, it is either too complex for its stated purpose or doing more than it claims.
For a full breakdown of every documented security incident, see our OpenClaw security risks guide. If you're running skills on BetterClaw's managed OpenClaw platform, this risk is significantly lower. Every agent runs in a sandboxed environment with encrypted credentials, workspace scoping, and real-time health monitoring that auto-pauses on anomalies. You still choose your skills, but the blast radius of a bad one is contained by default.
How to Install OpenClaw Skills (The Right Way)
The process is simple. Doing it safely takes a few extra steps.
Step 1: Search before you install. Use ClawHub's vector search to describe what you need in plain English. "Something that summarizes my emails every morning" returns better results than keyword-searching "email summarizer."
Step 2: Vet before you trust. Check install count, last update date, and author. Read the source. Check the security scan on the skill's ClawHub page. If anything looks off, skip it.
Step 3: Install with one command.
clawhub install skill-name
The skill downloads, validates, and activates. Start a new OpenClaw session to pick it up.
Step 4: Scope your permissions. Review what tools the skill needs and enable only the minimum. Don't give write access when read will do. Don't enable exec when the skill only needs web access.
The Easier Path: Skills on BetterClaw

Everything above, the vetting, the permission scoping, the sandbox config, the tool management, is work you do yourself when self-hosting OpenClaw. It is worth doing if you want to learn the system deeply.
But if your goal is a production-ready agent running the best skills securely across your team's channels, BetterClaw handles the infrastructure so you can focus on choosing the right skills. One-click deploy. Sandboxed execution. Encrypted credentials. $19/month per agent, BYOK.
You pick the skills. We make sure they run safely. Already on self-hosted OpenClaw? Migrate to BetterClaw in under an hour →
Frequently Asked Questions
How many skills are on ClawHub?
As of mid-2026, ClawHub hosts roughly 13,700 published community-built skills, up from about 6,500 in January 2026. The curated awesome-openclaw-skills list filters these down to roughly 5,400 vetted picks. The registry grows daily, so treat any exact number as a snapshot rather than a fixed figure.
What is the most popular OpenClaw skill?
By raw download count, the leaders are Skill Vetter (~256K), GitHub (~189K), Ontology Memory (~188K), and Google Workspace / gog (~185K), followed by Felo Search at 145K+ installs. Popularity tracks utility here: the top skills handle safety, code, memory, and search, the four things almost every agent needs.
Are ClawHub skills safe?
Not all of them. A January 2026 security scan found 341 skills actively stealing user data, most from a single coordinated campaign. For business use, stick to skills with high install counts, recent updates, and public source code. Always review the source, apply least-privilege permissions, and run new skills in a sandbox. On managed platforms like BetterClaw, sandbox isolation and credential encryption are built in by default.
How do I install OpenClaw skills safely?
Search ClawHub using vector search or the CLI, then vet the skill by checking its install count, author, last update, and security scan. Install with clawhub install skill-name. After installing, scope permissions to the minimum required and run new skills in a sandbox first. Installing Skill Vetter before anything else adds an automated check on every skill you add.
What are OpenClaw skills and how do they work?
OpenClaw skills are modular text-based extensions (a SKILL.md file plus supporting files) that teach your agent how to perform specific tasks. They do not grant new permissions on their own; they combine the tools already enabled in your config. You install them from ClawHub with a single CLI command, and they activate on your next agent session.
Stop vetting skills by hand.
Run the best OpenClaw skills on managed, sandboxed infrastructure. Verified skills, encrypted secrets, auto-pause monitoring. Free forever, not a trial. Start free →




