Skills
skills/browserbase/skills/browser-to-api/Gen Agent Trust Hub

browser-to-api

Pass

Audited by Gen Agent Trust Hub on May 14, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill operates entirely offline on local trace data, with no network exfiltration or remote code execution patterns detected.
  • [SAFE]: Implements a dedicated redaction module in scripts/lib/redact.mjs that automatically scrubs authorization headers, cookies, passwords, JWTs, email addresses, and phone numbers from the generated OpenAPI specifications and samples.
  • [SAFE]: Uses an HTML escaping utility (escHtml in scripts/emit.mjs) to sanitize captured network data before including it in the generated visual report, mitigating risks of Cross-Site Scripting (XSS).
  • [SAFE]: All scripts utilize only the Node.js standard library, avoiding supply chain risks associated with third-party dependencies.
Audit Metadata
Risk Level
SAFE
Analyzed
May 14, 2026, 10:45 PM