ziniao-webdriver-doc
Pass
Audited by Gen Agent Trust Hub on Jul 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical manual for developers. The instructions and reference files accurately describe the ZiNiao WebDriver service and its intended usage patterns without any signs of prompt injection or deceptive behavior.
- [EXTERNAL_DOWNLOADS]: The documentation provides code examples and links for downloading necessary automation components, such as ChromeDriver. These downloads are directed to reputable and official sources, including Google's 'Chrome for Testing' portal and the vendor's own CDN. These references are documented neutrally and are essential for the skill's stated purpose.
- [COMMAND_EXECUTION]: Code snippets in Python and Node.js demonstrate how to launch the ZiNiao browser using standard system calls like 'subprocess.Popen' and 'child_process.execFile'. These commands are used legitimately to start the local browser process with specific configuration flags required for WebDriver mode.
- [CREDENTIALS_UNSAFE]: The API documentation specifies that requests to the local WebDriver service require authentication credentials. The skill correctly illustrates that these credentials should be sent to the local loopback address (127.0.0.1) over HTTP POST. No evidence of hardcoded secrets or unauthorized exfiltration of these credentials was found.
Audit Metadata