Back to skill

Security audit

My Browser Agent

Security checks across malware telemetry and agentic risk

Overview

This skill is a disclosed Ziniao Browser automation helper; it is powerful, but its sensitive browser and screenshot abilities fit its stated purpose.

Install only if you trust this skill to operate Ziniao Browser sessions through the local bridge. Avoid using it on banking, admin, private intranet, or confidential pages unless you intend the agent to see and possibly screenshot that content, and protect the ZCLAW_API_KEY stored in environment variables or ~/.zclaw/config.json.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (1)

Missing User Warnings

Medium
Confidence
91% confidence
Finding
The skill explicitly offers arbitrary URL visitation and screenshot capture, which can expose sensitive internal pages, authenticated sessions, personal data, or confidential business information if invoked without clear guardrails or user warnings. In a browser automation context, unrestricted navigation increases the chance of SSRF-like access to internal resources and unintended collection of sensitive visual data.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.