Back to skill

Security audit

Chat Ui

Security checks across malware telemetry and agentic risk

Overview

This skill appears to be a normal chat UI helper, with disclosed install commands that carry routine supply-chain risk but no evidence of hidden, destructive, or data-stealing behavior.

Before installing, review the remote shadcn registry and any skills added by the npx commands, and prefer pinned versions or a reviewed commit when possible. Install only in projects where adding third-party UI components is intended.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Vague Triggers

Medium
Confidence
90% confidence
Finding
The trigger list contains several broad phrases such as "chat ui," "react chat," "chat interface," and "messaging ui" that are common, generic development queries. This can cause the skill to be invoked in situations where the user did not specifically intend to use this package, increasing accidental activation and reducing routing precision.

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.