web-js-env-patcher

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly requires echoing provided cURL/HAR samples and listing suspicious parameters (headers, cookies, tokens) for confirmation/fixtures and diagnostics, which means user-supplied secrets may be included verbatim in the assistant's outputs.

CRITICAL E006: Malicious code pattern detected in skill scripts.

• Malicious code pattern detected (high risk: 0.90). The document describes powerful, dual‑use tooling (native addon APIs, undetectable objects, prototype/toString patching, interceptors and browser hooks) that can capture cookies/tokens and hide behavior—capabilities that strongly enable credential theft, stealthy evasion and supply‑chain/native‑binary risks if abused.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The skill documentation includes explicit runtime installation/clone steps that fetch and install remote code which the workflow may execute and rely on (for example: "git clone https://github.com/WhiteNightShadow/camoufox-reverse-mcp.git" and related Camoufox install/ python -m pip install commands), so these external GitHub URLs are runtime dependencies that can cause remote code execution.