Skills
skills/aaaaqwq/agi-super-team/bb-browser/Gen Agent Trust Hub

bb-browser

Fail

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATIONEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The bb-browser site update command is designed to download and install "community adapters" from an external, unverified source (referenced as the bb-sites repository). There is no mechanism described for verifying the integrity or safety of these community-contributed scripts.
  • [REMOTE_CODE_EXECUTION]: The execution of downloaded "community adapters" constitutes a remote code execution vector. Since these adapters are executable JavaScript files used to scrape and interact with web pages, they can be used to perform malicious actions if a compromised or malicious adapter is downloaded.
  • [COMMAND_EXECUTION]: The skill provides a bb-browser eval command that allows the agent to execute arbitrary JavaScript in the context of the user's active browser sessions. This provides a direct path for an attacker (via prompt injection) to perform actions on the user's behalf on any site where they are logged in.
  • [DATA_EXFILTRATION]: The tool is specifically built to bypass security and API restrictions by leveraging the user's authenticated browser state. Commands like cookie fetch, network requests, and fetch can be used to exfiltrate sensitive session identifiers, private messages, financial data, and other personal information from any open tab.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Jun 13, 2026, 01:13 PM
Security Audit — agent-trust-hub — bb-browser