Back to skill

Security audit

wot-ui-plus

Security checks across malware telemetry and agentic risk

Overview

This is a documentation-only helper for a UI component library, with some copyable examples that need normal privacy and security review before production use.

Install this as a reference helper, not as trusted production code. Do not grant it extra secret, wallet, filesystem, or network access, and review any copied examples involving phone numbers, avatars, passwords, uploads, or remote image URLs before shipping.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (7)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The documentation explicitly promotes privacy-sensitive mini-program capabilities such as retrieving user info, phone numbers, and privacy authorization, but it does not include clear consent, minimization, retention, or compliance guidance. In a UI guidance skill, this can normalize collection of personal data and lead downstream users to implement sensitive flows without adequate legal or security safeguards.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The example section provides ready-to-copy implementations for sensitive data access flows and logs returned event payloads, yet omits cautionary guidance about handling personal data securely. This increases the chance that developers will copy patterns that collect or expose user information without informed consent, minimization, or secure processing practices.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The example demonstrates uploading a user-cropped image to a remote endpoint immediately after confirmation, but it does not show any user-facing disclosure, consent flow, or guidance about privacy implications of transmitting personal images. In the context of an image cropper component, this is risky because developers may copy the pattern directly into production and unknowingly send sensitive photos such as avatars or ID-like images to third-party services without transparent notice or safeguards.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The documentation explicitly promotes the slider for '敏感操作确认' such as delete, payment, and authorization, but never warns that this component is only a client-side UX confirmation mechanism. That omission can mislead integrators into treating a draggable UI as a security control, enabling bypass if server-side authorization and anti-abuse checks are not enforced independently.

Missing User Warnings

Medium
Confidence
89% confidence
Finding
The documentation states that file selection triggers upload by default, but it does not clearly warn that selected files are transmitted to a remote server. In a component intended for images, videos, documents, and identity materials, this omission can mislead developers into deploying flows that exfiltrate sensitive user data without explicit user awareness or consent messaging.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The API and examples repeatedly instruct developers to configure an upload server and send files, including potentially sensitive documents, but they omit any caution about external transmission, retention, or handling of confidential content. Because this is a reusable UI skill/documentation artifact, the missing warning is likely to propagate unsafe defaults across consuming applications.

Missing User Warnings

Medium
Confidence
86% confidence
Finding
The documentation explicitly encourages use of network image URLs for watermark images, but it does not warn that loading third-party images causes client requests to external servers. That can disclose user IP address and, depending on platform behavior, additional request metadata or enable passive tracking; in an enterprise or sensitive-data watermarking context, this is more concerning because watermarks may be used exactly on internal or confidential pages.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.