ClawHub

browserwing

Security checks across malware telemetry and agentic risk

Overview

BrowserWing is a legitimate browser automation skill, but it exposes powerful browser control features without enough safety guidance around passwords, uploads, page capture, and remote executor use.

Install only if you trust the BrowserWing Executor you will connect to. Prefer a local or secured executor, avoid using it on sensitive logged-in sites unless necessary, and require explicit user approval before logins, uploads, purchases, posts, account changes, screenshots, page dumps, network inspection, or JavaScript execution.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Findings (3)

Missing User Warnings

Medium
Confidence
96% confidence
Finding
The skill includes a full login automation workflow using username and password examples, but it does not require explicit user confirmation before credential submission or warn about sensitive-data handling. In an agent context, this can normalize automatic credential entry into arbitrary sites and increase the risk of phishing, unintended disclosure, or submission of secrets to the wrong origin.

Missing User Warnings

Medium
Confidence
90% confidence
Finding
The documented file-upload capability lacks safeguards or warnings about sending local files to external websites. In an agent-driven browser automation skill, this can lead to accidental exfiltration of sensitive local data if a user request or webpage flow causes uploads without clear trust checks.

Missing User Warnings

Medium
Confidence
93% confidence
Finding
The skill advertises JavaScript execution, screenshots, page-content retrieval, console messages, and network inspection without discussing privacy or security boundaries. These features can expose page data, session-linked content, or sensitive request metadata, and script execution may perform high-impact actions within authenticated browser sessions.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal