agentcookie-install
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads the
agentcookiebinary from the author's public GitHub repository (github.com/mvanhorn/agentcookie) on both the local and remote machines using thego installcommand. - [COMMAND_EXECUTION]: The skill executes multiple shell commands to detect the environment (Tailscale status), run installation wizards, manage background processes, and check service status using
launchctl. It also establishes a persistent LaunchAgent on both the source and sink machines to ensure the synchronization daemon runs across reboots. - [DATA_EXFILTRATION]: The core functionality of the skill is to synchronize Chrome session cookies—which are sensitive authentication credentials—between machines. This involves reading the cookie database on the source and pushing updates to the sink over the network. While this is the stated purpose of the skill, it represents a significant transfer of sensitive data.
- [REMOTE_CODE_EXECUTION]: The skill uses SSH to connect to a remote 'sink' machine, where it performs software installation (
go install) and executes theagentcookiewizard with parameters (pairing codes and URLs) extracted from the local machine.
Audit Metadata