ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Clawhub Publish 146156

v0.2.0

Automate web navigation, interaction, and data extraction using a fast Rust-based headless browser CLI with Node.js fallback and structured commands.

0· 290·0 current·0 all-time
by@gxw975

Install

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for gxw975/clawhub-publish-146156.

Previewing Install & Setup.
Prompt PreviewInstall & Setup
Install the skill "Clawhub Publish 146156" (gxw975/clawhub-publish-146156) from ClawHub.
Skill page: https://clawhub.ai/gxw975/clawhub-publish-146156
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Bare skill slug

openclaw skills install clawhub-publish-146156

ClawHub CLI

Package manager switcher

npx clawhub@latest install clawhub-publish-146156
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
!
Purpose & Capability
The description advertises a 'fast Rust-based headless browser CLI with Node.js fallback', but the SKILL.md only instructs installing a global npm package (agent-browser) and requires Node.js ≥18. No Rust build or binary provenance is provided. The registry name (Clawhub Publish 146156) and owner ID in the registry metadata differ from the _meta.json owner/slug (agent-browser), which is an unexplained mismatch in provenance. These discrepancies make it unclear whether the requested installation matches the claimed implementation.
Instruction Scope
The SKILL.md stays within the stated functional scope (open, snapshot, click, fill, wait, close) and does not instruct the agent to read arbitrary files or environment variables. However, it explicitly instructs installing a remote npm package globally (npm install -g agent-browser), which grants that package the ability to run install scripts and create system-wide binaries — an action outside the immediate 'use' scope and worth verifying.
!
Install Mechanism
There is no install spec in the registry entry; instead the SKILL.md tells users to run 'npm install -g agent-browser'. Installing an npm package globally can execute arbitrary install scripts and introduce native binaries; combined with no homepage, no source link, and conflicting metadata, the provenance of the code to be installed is unclear. NPM installs are a moderate-risk mechanism and should be verified before running globally.
Credentials
The skill declares no required environment variables, credentials, or config paths. There is no direct request for secrets or unrelated credentials in the SKILL.md, which is proportionate to the described web-automation purpose.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges. However, the installation instruction (global npm install) results in a system-wide binary that persists outside the agent's sandbox, so users should be aware they are installing persistent software onto their system.
What to consider before installing
This skill is suspicious mainly because of provenance and install questions rather than explicit malicious instructions. Before installing or running it: 1) Do not run 'npm install -g agent-browser' globally without checking the package — inspect the npmjs.org package page, author, download count, and published files. 2) Search for the package source repository and review the code (especially install scripts and any postinstall behavior). 3) Verify the owner/slug mismatch between the registry metadata and _meta.json; contact the publisher if possible. 4) Prefer installing in a sandbox or container (not as root), or run 'npm pack' and inspect the tarball before installing. 5) If you cannot verify the package source and contents, avoid installing it system-wide and consider safer alternatives (well-known browser automation tools with clear provenance).

Like a lobster shell, security has layers — review code before you run it.

latestvk9760ap19xmnttgwd4wpxans6182vvgj
290downloads
0stars
1versions
Updated 13h ago
v0.2.0
MIT-0
@gxw975
latest
Download

Agent Browser

A fast Rust-based headless browser automation CLI with Node.js fallback that enables AI agents to navigate, click, type, and snapshot pages via structured commands.

When to use

  • Automating web interactions (login, form fill, scraping)
  • Extracting structured data from pages
  • Testing web UIs or workflows
  • Filling forms programmatically

Prerequisites

  • Node.js ≥ 18
  • npm install -g agent-browser (run once to install CLI)

How it works

  1. agent-browser open <url> → launch browser & navigate
  2. agent-browser snapshot -i → get interactive elements with stable refs (e.g., @e1)
  3. Use refs to interact: click @e1, fill @e2 "text", wait @e3
  4. agent-browser close → clean up

Key capabilities

  • Snapshot with accessibility tree or interactive-only mode
  • Precise element interaction (click/fill/hover/drag/upload)
  • Wait conditions (element visible, URL change, network idle)
  • Screenshot, PDF export, video recording
  • Cookie/storage/network control
  • Tab/window/frame management
  • JSON output for programmatic parsing

Example

agent-browser open https://example.com/login
agent-browser snapshot -i
agent-browser fill @e1 "user@example.com"
agent-browser fill @e2 "password123"
agent-browser click @e3
agent-browser wait --url "/dashboard"

Comments

Loading comments...