What it does

Warns when clicking or rendering a link will leak the current URL via the HTTP Referer header.

Use BEFORE following any outbound link from a sensitive page (password reset, magic-link login, internal admin, OAuth callback).

How it arrives

You don't install skills one by one. ClevskillSetup installs the whole curated pack, wires the safety hooks, and verifies each skill actually runs on your machine. The weekly health scan re-checks it from then on, and repairs route through your approval.

Setup

No setup needed. It works as soon as the pack is installed; no accounts, no API keys, nothing leaves your machine.

Invoke it

In Claude Code or Claude Cowork, just ask in plain language; skills trigger on intent. Things people say that make this skill run:

you: is this safe to click from here
you: will this leak my URL
you: check referrer leak
claude: [referrer-leak-warning runs, result returned with full audit log]

Part of the security suite: it runs automatically where it applies, fails closed on errors, and never sends your content anywhere.