antithesis-agent-browser

Warn

Audited by Socket on Jul 4, 2026

1 alert found:

Anomaly
AnomalyLOW
assets/download-logs-from-url.sh

This is a purpose-built log-download automation wrapper, and there is no direct evidence of intentional malware in the bash logic itself (no hardcoded secrets, no obvious exfiltration endpoints, no reverse shell/persistence). However, it has meaningful security risk due to (1) arbitrary URL navigation with only weak page verification, (2) dynamic browser-context code execution via eval with injected runtime, and (3) writing downloaded page-selected content verbatim to an arbitrary caller-chosen destination. The main supply-chain/abuse concern is that if the target page or the injected runtime is tampered with, the automation could execute attacker-controlled JavaScript in the browser session and produce attacker-influenced output files.

Confidence: 66%Severity: 60%
Audit Metadata
Analyzed At
Jul 4, 2026, 11:01 PM
Package URL
pkg:socket/skills-sh/antithesishq%2Fantithesis-skills%2Fantithesis-agent-browser%2F@d4ebc004d408b72ba1ba42f06fc1cfbada1113e1df5789a4d4d37f44852eb7f8
Security Audit — socket — antithesis-agent-browser