autobrowse

SUSPICIOUS. The skill's core purpose is coherent: iterative browser automation training with trace review and strategy refinement. Main risks are proportional but real: external CLI/service trust, processing untrusted web content while holding write/exec permissions, semi-autonomous parallel agents, and local installation of generated downstream skills. No clear credential harvesting, hidden exfiltration endpoint, or malicious mismatch is evident, so this is not malware, but it is a medium-risk skill.