Analytics Platform Base
PassAudited by ClawScan on May 1, 2026.
Overview
This is a simple instruction-only React UI skill that recommends installing a relevant UI package and using one component; no harmful behavior is evidenced.
This skill appears safe and narrowly scoped. Before installing, verify that the orbcafe-ui package is the intended library and use a pinned version if your project requires reproducible builds.
Findings (1)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Installing the dependency will add third-party code to the user's project.
The skill instructs the user to install an external npm package without a pinned version. This is expected for a UI-library integration, but it introduces normal package supply-chain considerations.
npm install orbcafe-ui # or pnpm add orbcafe-ui
Review the npm package, its publisher, version, and dependency tree before installing it in a sensitive project.