agent-browser
Warn
Audited by Socket on Jul 7, 2026
1 alert found:
SecuritySecuritySKILL.md
MEDIUMSecurityMEDIUM
SKILL.md
SUSPICIOUS. The core browser automation purpose matches the capabilities, but the trust model is weak: it installs another skill, relies on an external CLI/service, and enables arbitrary browsing, uploads, JS execution, proxy auth, and real-world web actions. The main concern is not obvious malware, but disproportionate execution and data-flow risk for an agent skill.
Confidence: 84%Severity: 72%
Audit Metadata