agent-browser

The skill presents a coherent concept for browser automation via a Playwright-backed CLI, with features that align to its stated purpose. However, the install/execution path (curl-script -> remote binary download -> checksum verification) constitutes a classic supply-chain risk due to unverifiable binary provenance and remote execution. The data flows could be legitimate (local outputs like video/snapshots) but risk data exfiltration via automated web interactions if not properly governed. Overall, the footprint is Suspicious: the capabilities align with the stated purpose, but the installation/download approach and potential for data leakage/credential exposure through the intermediary binary justify elevated scrutiny. Treat as suspicious until a verifiable, signed release channel and explicit data-flow/privacy controls are provided.