browserless
Pass
Audited by Gen Agent Trust Hub on Mar 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references several Node.js packages for installation, including browserless, puppeteer, @browserless/cli, and @browserless/lighthouse. These are standard dependencies for the library's functionality and originate from the author's own ecosystem or established public registries.- [COMMAND_EXECUTION]: The documentation includes shell commands for package management (npm install) and CLI usage for browser automation tasks like taking screenshots or generating PDFs.- [INDIRECT_PROMPT_INJECTION]: The skill facilitates the extraction of content (HTML, text) from external URLs. This ingestion point represents an attack surface where malicious instructions could be embedded in the retrieved web content, potentially influencing downstream agent behavior if not properly sanitized. This is documented as a characteristic of the skill's primary functionality.
Audit Metadata