browser

SUSPICIOUS: the skill’s browser-automation capability matches its stated purpose, and the Playwriter dependency appears to come from an official public source, so this is not clearly malicious. However, it gives the agent broad website interaction and arbitrary page-JS execution against untrusted web content, making it high-impact and prone to prompt-injection or unintended real-world actions.