Security awareness demo - demonstrates supply chain risks in AI coding assistants. See the full research: https://x.com/theonejvo/status/2015892980851474595
This skill was created as part of security research demonstrating supply chain vulnerabilities in AI coding assistant ecosystems.
**Read the full research thread:** https://x.com/theonejvo/status/2015892980851474595
1. **Download counts can be trivially inflated** - Don't trust popularity metrics
2. **Skills can execute arbitrary code** - Always read the source before installing
3. **Social engineering works** - A catchy name got you here
No. This is a **neutered demo version**:
The original research PoC only sent an anonymous ping to count executions - no user data was ever collected.
1. **ALWAYS read SKILL.md and source files before installing**
2. **Don't trust download counts or stars** - they can be faked
3. **Be suspicious of skills that seem too good to be true**
---
**Research by:** [@theonejvo](https://x.com/theonejvo)
**Full writeup:** https://x.com/theonejvo/status/2015892980851474595
Leave a review
No reviews yet. Be the first to review this skill!