v1.0.22

Nextbrowser

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 5:19 AM.

Analysis

This skill is a review item because it can run autonomous cloud browsers using persistent logged-in account sessions, proxies, stealth, and CAPTCHA-solving features.

GuidanceInstall only if you are comfortable letting Nextbrowser and Openclaw operate cloud browsers with saved logins. Prefer dedicated accounts, avoid sensitive personal or administrator accounts, require explicit confirmation before account-changing or public actions, stop sessions when finished, and delete/revoke profiles, credentials, and API keys you no longer need.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

SKILL.md

Primary use is creating browser sessions with profiles (persisted logins/cookies) that Openclaw can control to manage social media and other online accounts. Secondary use is running task subagents for fast autonomous browser automation under residential proxy, browser stealth, and CAPTCHA solving capability.

This describes broad autonomous browser/account automation, including stealth, residential proxy, and CAPTCHA-solving features, without visible guardrails for user approval or safe account mutation.

User impactIf used carelessly, the agent could take actions in logged-in online accounts or public social-media accounts that the user did not intend.

RecommendationUse only with explicit task instructions, dedicated or low-risk accounts, and clear human confirmation before posting, messaging, changing settings, deleting data, or taking other account actions.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

SKILL.md

Profiles persist cookies and login state across browser sessions. Create one, log into your accounts in the browser, and reuse it.

Persistent cookies and login state let the cloud browser act as the logged-in user across sessions, which is high-impact delegated account authority.

User impactThe cloud browser can reuse saved sessions to access accounts as the user, including accounts that may contain private data or allow public actions.

RecommendationUse separate profiles per account/task, avoid highly privileged accounts, revoke or rotate credentials when finished, and delete profiles that should no longer be reused.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Memory and Context Poisoning

SeverityHighConfidenceHighStatusConcern

SKILL.md

The Credentials Manager securely stores and reuses authentication data across browser runs and autonomous tasks.

Authentication data is stored and reused persistently across runs and tasks; the artifact does not describe retention limits, isolation boundaries, or how users review and remove reused auth state.

User impactStored authentication data could be reused in later tasks, making it easier for an unintended task or prompt influence to access the wrong account context.

RecommendationReview Nextbrowser’s credential storage and deletion controls, keep credentials scoped to the minimum required task, and remove stored credentials when automation is complete.