pinchtab-skill

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed browser-automation skill with real account-session risks, but its sensitive behavior is expected for the stated purpose and includes safety guidance.

Install only if you are comfortable giving an agent control of a Chrome instance. Use a dedicated empty profile, keep the API bound to localhost, set BRIDGE_TOKEN before any remote exposure, avoid saved personal or work sessions, and verify any profile-deletion command before running it.

SkillSpector

By NVIDIA

Vulnerability Patterns

Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 89% confidence
Finding: The documentation includes a destructive deletion command for a browser profile directory without any warning, confirmation step, or safer alternative. Even though the example targets a profile path, users may copy, adapt, or parameterize the command incorrectly, leading to accidental loss of browser state or broader filesystem data.

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal