OpenClaw Browser Flows
PassAudited by VirusTotal on May 8, 2026.
Overview
Type: OpenClaw Skill Name: openclaw-browser-flows Version: 1.0.0 The skill bundle provides legitimate browser automation patterns and operational guidance for an AI agent using the browser tool. The instructions in SKILL.md focus on reliability, tab hygiene, and error recovery, and explicitly direct the agent to report manual blockers (like 2FA or permissions) to the user rather than attempting to bypass them stealthily. No indicators of data exfiltration, malicious execution, or harmful prompt injection were found.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may click, type, navigate, and manage tabs during web tasks, which can have real effects on websites if used on sensitive pages.
The skill is designed to guide multi-step browser automation, including opening tabs, taking snapshots, and acting on page controls. This is purpose-aligned, but browser actions can affect real websites.
Use this skill when you need the `browser` tool for anything beyond a single page check.
Use it for browser workflows you intend the agent to perform, and review/confirm important actions such as purchases, submissions, account changes, or public posts.
The agent could interact with websites as you using your existing logged-in browser sessions.
Attaching to the user's running browser can use existing cookies and logged-in sessions. The instruction is disclosed and purpose-related, but it is broad and does not require explicit user approval or limit the accounts/sites/actions where that session authority may be used.
Use `profile="user"` only when existing cookies/login matter. This attaches to the user's running Chromium-based browser.
Only allow `profile="user"` when you explicitly want the agent to use your logged-in browser. Avoid using it for banking, admin consoles, private accounts, or irreversible actions unless you are supervising closely.