Browser Cash

The skill bundle is benign. It provides instructions and code examples for using the Browser.cash API for web automation, which involves creating and managing browser sessions and connecting to them via CDP using Playwright or Puppeteer. The skill uses standard tools like `curl`, `jq`, and `npm` to install necessary dependencies (`playwright`, `puppeteer-core`) and interact with the `api.browser.cash` endpoint. There is no evidence of data exfiltration, malicious execution (beyond standard dependency installation and inline Node.js script for browser control), persistence mechanisms, obfuscation, or prompt injection attempts against the agent to perform actions outside the stated purpose. All actions are clearly aligned with the skill's description.