nodriver-browser

Warn

Audited by Socket on Jun 16, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

BENIGN with elevated operational risk. The capability set matches a browser automation skill, and the main dependencies appear to come from legitimate sources, but the skill is high-impact by design: it can use real logged-in browser sessions, act on arbitrary websites, upload local files, and optionally disable sandboxing. The biggest concerns are agent misuse and prompt-injection exposure from untrusted web content, not clear malicious intent.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 16, 2026, 04:19 PM
Package URL
pkg:socket/skills-sh/appautomaton%2Fwebmaton%2Fnodriver-browser%2F@204d2c4f2a7db8f060e4d9867c52f4ecedb0f0a65ab9877bcd52bd0d71f0bd80
Security Audit — socket — nodriver-browser