claude-in-chrome-troubleshooting
Warn
Audited by Gen Agent Trust Hub on Apr 26, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: Persistence via Shell Profile Modification. The skill provides a shell function (chrome-mcp-toggle) and suggests adding it to ~/.zshrc. This modification ensures the logic persists and is available across all terminal sessions.
- [COMMAND_EXECUTION]: Sensitive Configuration Modification. The skill uses 'mv' and 'cat' to alter Chrome's NativeMessagingHosts JSON configurations. These files define the boundary between the browser and the host operating system, and modifying them allows controlling which local binaries the browser can execute.
- [COMMAND_EXECUTION]: Dynamic Script Generation and Execution. The skill writes a shell script to ~/.claude/chrome/chrome-native-host and makes it executable. This script dynamically resolves a binary path using 'ls -t' and executes it, which represents a risk of running unintended or stale binaries if the version directory is manipulated.
Audit Metadata