Claw Browser
PassAudited by ClawScan on May 1, 2026.
Overview
This looks like a straightforward browser helper that opens supplied web pages, reads text, or saves screenshots, with the main thing to review being its external Playwright/Chromium setup.
This skill appears safe for normal browsing and screenshot tasks. Before installing, understand that it downloads Playwright/Chromium components, opens real websites, returns webpage text to the agent, and writes screenshots as evidence.png.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A webpage could contain text that tries to influence the agent; the agent should treat it as page content, not authority.
The skill intentionally brings arbitrary webpage text into the agent's output. This is core to a browser skill, but webpage text is untrusted and may contain prompt-like instructions.
content = page.evaluate("document.body.innerText")
clean_content = ' '.join(content.split())[:5000]Use the browser for pages you intend to inspect, and keep agent decisions grounded in the user request rather than instructions found on the webpage.
The agent can open websites and create a local screenshot named evidence.png.
The tool can navigate Chromium to a supplied URL and save a screenshot file. This is expected for the stated purpose, but it is real browser/network activity with local file output.
parser.add_argument("--url", required=True, help="URL to visit")
page.goto(url, wait_until="domcontentloaded", timeout=60000)
page.screenshot(path=filename)Only ask it to browse URLs you want opened, and be aware that screenshot runs overwrite or create evidence.png in the working directory.
Installing the skill may download third-party code and browser binaries into the environment.
The setup instructions install Python dependencies and download Chromium browser binaries. This is purpose-aligned for Playwright, but it relies on external package/browser distribution at setup time.
pip install -r requirements.txt playwright install chromium
Run setup in a trusted project environment and consider pinning the Playwright version if reproducibility or supply-chain control is important.