vite-browser-core-debug
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill ingests data from external websites via browser logs, error messages, and framework-specific component trees. Ingestion points: vite-browser logs, vite-browser errors, and framework-specific tree inspection commands (vue tree, react tree, svelte tree) in SKILL.md. Boundary markers: None. Capability inventory: vite-browser eval, vite-browser open, and vite-browser screenshot. Sanitization: None.
- [DATA_EXPOSURE_AND_EXFILTRATION]: Diagnostic commands such as logs, network, and screenshot are used to capture application state, which may include sensitive information if present on the target page.
- [DYNAMIC_EXECUTION]: The eval command is used for executing JavaScript within the browser context to validate application state.
Audit Metadata