Skills
skills/guanyang/antigravity-skills/baoyu-danger-gemini-web/Gen Agent Trust Hub

baoyu-danger-gemini-web

Fail

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: HIGHCREDENTIALS_UNSAFECOMMAND_EXECUTION
Full Analysis
  • [CREDENTIALS_UNSAFE]: The skill programmatically extracts sensitive browser cookies, specifically __Secure-1PSID and __Secure-1PSIDTS, from various browser profiles (Chrome, Chrome Canary, Chromium, and Microsoft Edge) to authenticate with Google services without manual user input of tokens.
  • [COMMAND_EXECUTION]: The script scripts/gemini-webapi/utils/load-browser-cookies.ts identifies browser executable paths across macOS, Windows, and Linux and launches them using the Chrome DevTools Protocol with flags such as --remote-debugging-port to facilitate credential harvesting.
  • [CREDENTIALS_UNSAFE]: Harvested authentication tokens are cached locally in a plaintext-accessible JSON file (cookies.json) within the user's application data directory (baoyu-skills/gemini-web/), increasing the risk of local credential theft.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
May 15, 2026, 05:27 PM
Security Audit — agent-trust-hub — baoyu-danger-gemini-web