Daxiang Dogfood

The skill bundle is designed for exploratory web testing but contains potential shell injection vulnerabilities in SKILL.md. Specifically, variables like {OUTPUT_DIR} and {TARGET_URL} are used in shell commands without consistent quoting (e.g., in 'mkdir' and 'agent-browser' calls), which could allow for arbitrary command execution if provided with malicious input. Additionally, the skill saves sensitive authentication states to the local file system (auth-state.json), which is a common but risky practice in browser automation.