NVIDIA/SkillSpector assesses angular-developer skills as critical / do not install · Issue #69356 · angular/angular · GitHub
Skip to content

NVIDIA/SkillSpector assesses angular-developer skills as critical / do not install #69356

Open
Open
NVIDIA/SkillSpector assesses angular-developer skills as critical / do not install#69356
Labels
aiIssue related to using AI agentsarea: securityIssues related to built-in security features, such as HTML sanitation
Milestone
needsTriage

Description

@zarko-tg
zarko-tg
opened on Jun 15, 2026

Is this a bug report or a feature request?

  • Bug Report
  • Feature Request

Please provide the steps to reproduce the issue [Bug Report only]

Running a static analysis with the tool as in:

skillspector scan .agents/skills/angular-developer/ --no-llm

shows:

╭──────────────────────────────────────────────────────────────────────────────╮
│ SkillSpector Security Report                                                 │
╰─────────────────────────────────── v2.1.4 ───────────────────────────────────╯

Skill: angular-developer
Source: ./app/.agents/skills/angular-developer
Scanned: 2026-06-15 09:04:15 UTC


        Risk Assessment         
 Score           100/100        
 Severity        CRITICAL       
 Recommendation  DO NOT INSTALL 


                            Components (37)                             
┏━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┳━━━━━━━━━━┳━━━━━━━┳━━━━━━━━━━━━┓
┃ File                                 ┃ Type     ┃ Lines ┃ Executable ┃
┡━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━╇━━━━━━━━━━╇━━━━━━━╇━━━━━━━━━━━━┩
│ SKILL.md                             │ markdown │   130 │ No         │
│ references/angular-animations.md     │ markdown │   160 │ No         │
│ references/angular-aria.md           │ markdown │   597 │ No         │
│ references/cli.md                    │ markdown │    86 │ No         │
│ references/component-harnesses.md    │ markdown │    57 │ No         │
│ references/component-styling.md      │ markdown │    91 │ No         │
│ references/components.md             │ markdown │   117 │ No         │
│ references/creating-services.md      │ markdown │    97 │ No         │
│ references/data-resolvers.md         │ markdown │    69 │ No         │
│ references/define-routes.md          │ markdown │    67 │ No         │
│ references/defining-providers.md     │ markdown │    72 │ No         │
│ references/di-fundamentals.md        │ markdown │   118 │ No         │
│ references/e2e-testing.md            │ markdown │    66 │ No         │
│ references/effects.md                │ markdown │    83 │ No         │
│ references/hierarchical-injectors.md │ markdown │    43 │ No         │
│ ... and 22 more                      │          │       │            │
└──────────────────────────────────────┴──────────┴───────┴────────────┘


Issues (8)

  MEDIUM: EA1 - Unrestricted Tool Access...
    Location: references/e2e-testing.md:9
    Confidence: 85%
    Remediation: Restrict tool access to only the tools required for the skill's
stated purpose. Use an explicit allowlist rather than granting blanket 
access....

  HIGH: P2 - Hidden Instructions...
    Location: references/angular-aria.md:100
    Confidence: 70%
    Remediation: Audit all comments and invisible characters. Remove any 
instructions that direct the agent to perform unauthorized actions. Use plain, 
reviewable cont...

  HIGH: P2 - Hidden Instructions...
    Location: references/angular-aria.md:171
    Confidence: 70%
    Remediation: Audit all comments and invisible characters. Remove any 
instructions that direct the agent to perform unauthorized actions. Use plain, 
reviewable cont...

  MEDIUM: P4 - Behavior Manipulation...
    Location: references/cli.md:3
    Confidence: 70%
    Remediation: Review content for implicit steering or bias. Ensure 
instructions are explicit and align with the skill's stated purpose....

  HIGH: P2 - Hidden Instructions...
    Location: references/show-routes-with-outlets.md:11
    Confidence: 70%
    Remediation: Audit all comments and invisible characters. Remove any 
instructions that direct the agent to perform unauthorized actions. Use plain, 
reviewable cont...

  HIGH: P2 - Hidden Instructions...
    Location: references/signal-forms.md:132
    Confidence: 70%
    Remediation: Audit all comments and invisible characters. Remove any 
instructions that direct the agent to perform unauthorized actions. Use plain, 
reviewable cont...

  HIGH: P2 - Hidden Instructions...
    Location: references/signal-forms.md:365
    Confidence: 70%
    Remediation: Audit all comments and invisible characters. Remove any 
instructions that direct the agent to perform unauthorized actions. Use plain, 
reviewable cont...

  MEDIUM: RA2 - Session Persistence...
    Location: references/mcp.md:36
    Confidence: 60%
    Remediation: Remove any persistence mechanisms (cron jobs, startup scripts, 
state files). Skills should not maintain state across sessions without explicit 
user co...

Executable scripts: No

Please provide the expected behavior vs the actual behavior you encountered [Bug Report only]

No response

Please provide a screenshot if possible [Bug Report only]

No response

Please provide the exception or error you saw [Bug Report only]

Is this a browser-specific issue? If so, please specify the device, browser, and version. [Bug Report only]

Description [Feature Request only]

No response

Proposed solution [Feature Request only]

No response

Alternatives considered [Feature Request only]

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    aiIssue related to using AI agentsarea: securityIssues related to built-in security features, such as HTML sanitation

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions