network-request-auditing
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a structured workflow for debugging and auditing using built-in browser tools. It does not involve remote code execution, privilege escalation, or persistence mechanisms.
- [DATA_EXFILTRATION]: While the skill involves reading network logs that may contain sensitive data, the instructions specifically advise reporting URL patterns rather than full secrets, which aligns with security best practices for auditing.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes data from external sources.
- Ingestion points: The agent ingests data from external websites via
browser_network_requestsandbrowser_console_messagesas defined in SKILL.md. - Boundary markers: No specific delimiters are defined to separate the untrusted network/console data from the agent's instructions.
- Capability inventory: The available tools are restricted to browser interactions (navigation, snapshots, and logs) and do not include system command execution or file system modification.
- Sanitization: There is no explicit sanitization step described for the log data before it is processed by the agent.
Audit Metadata