What are DOM Components?

Name: skills/use-dom
Author: expo

View on GitHub↗

Share on X Share on LinkedIn Share on Bluesky

70High

The skill exposes native functions to untrusted web content

ThreatsCI SM CS BC S HITL

Behavior Analysis

Description verified — behavior matches claim

Claims to do

What are DOM Components?: DOM components allow web code to run verbatim in a webview on native platforms while rendering as-is on web. This enables using web-only libraries like `recharts`, `react-syntax-highlighter`, or any React web library in your Expo app without modification.

Actually does

This skill describes a feature in Expo that enables embedding web-based React components, including those utilizing web-only libraries, within native Expo applications via a webview (WKWebView/WebView) or rendering them directly on web platforms. It details configuration, data passing between native and web contexts, and integration with Expo Router, but the skill itself does not call external tools, access data, run commands, or contact URLs.

Threat Analysis

AI Agent Traps ↗Scanned 4/14/2026

Content InjectionPerceptionclean

Semantic ManipulationReasoningclean

Cognitive StateMemory & Learningclean

Behavioural ControlAction2 findings

SystemicMulti-Agent Dynamicsclean

Human-in-the-LoopHuman Overseerclean

Skill Info

Nameexpo/skills/use-dom

Registrygithub

Version8f26555fe105

PURLpkg:github/expo/skills@8f26555fe105?skill=use-dom

Stars1,695

Installs455,628

Source

Repository ↗SKILL.md ↗

SHA-2567041bb26db02...

SHA-1680d7f74b6c2...

MD5b0fe6d997ba8...

TLSH3212b939baa9...

ssdeep192:udOWXnL8...

Size9,707 bytes

Install

This skill has been flagged as potentially malicious. Review the findings below before installing.

GitHub

https://github.com/expo/skills/tree/main/skills/use-dom

455,628 installs

Claude CodeDocs

/plugin marketplace add expo/skills

/plugin install use-dom@expo/skills

Skills.shDocs

npx skills add https://github.com/expo/skills --skill use-dom

Assessments (1)

AI Agent Traps ↗

Webview-to-native function call bridgehighcommand execution

The skill explicitly allows exposing native async functions as props to the webview. This creates a powerful bridge where potentially untrusted web content can invoke native code, leading to arbitrary command execution, data manipulation, or exfiltration if the native functions are not securely implemented.

90% confidenceline 107

Pass async functions as props to expose native functionality to the DOM component:

Untrusted web content & third-party library riskmediumsupply chain

The core functionality involves rendering arbitrary web code and integrating third-party web libraries within a webview. This introduces supply chain risks if external libraries are compromised, and potential Cross-Site Scripting (XSS) if the web content itself is untrusted.

80% confidenceline 10

DOM components allow web code to run verbatim in a webview on native platforms... This enables using web-only libraries like recharts, react-syntax-highlighter, or any React web library...

Dependencies (4)

expo.claude-plugin/marketplace.jsonnot scanned

expo-app-design.claude-plugin/marketplace.jsonnot scanned

upgrading-expo.claude-plugin/marketplace.jsonnot scanned

expo-deployment.claude-plugin/marketplace.jsonnot scanned

Badge

Markdown

[![Mondoo Skill Check](https://mondoo.com/ai-agent-security/api/badge/github/expo/skills/use-dom.svg)](https://mondoo.com/ai-agent-security/skills/github/expo/skills/use-dom)

HTML

<a href="https://mondoo.com/ai-agent-security/skills/github/expo/skills/use-dom"><img src="https://mondoo.com/ai-agent-security/api/badge/github/expo/skills/use-dom.svg" alt="Mondoo Skill Check" /></a>

Image URL

https://mondoo.com/ai-agent-security/api/badge/github/expo/skills/use-dom.svg

Secure your AI agents

Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.

Continuous scanning of skills across all registries
Policy enforcement before skills reach your agents
Integration with your existing security workflow