nextjs-shadcn-builder
Fail
Audited by Socket on Feb 15, 2026
1 alert found:
MalwareMalwareSKILL.md
HIGHMalwareHIGH
SKILL.md
The best-examined material (Report 1) provides a coherent, low-risk blueprint for building/migrating Next.js apps with shadcn/ui under strict design-system constraints. The improved assessment emphasizes dependency risk (MCP/tooling), confirms benign data flows (local analysis outputs, no exfiltration signals), and notes the OKLCH-based theming choice as design-system strength with potential unfamiliarity for some teams. Overall, the security posture remains low-to-moderate risk, with clear, auditable steps and artifacts that support safe supply-chain workflows.
Confidence: 98%Severity: 55%
Audit Metadata