Agent Browser Cli.Bak.Skip
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a disclosed browser-automation helper, but it can click, fill, submit, install a CLI package, and optionally run scheduled browser actions, so users should keep it user-directed.
Before installing or using this skill, verify the agent-browser package source, avoid hardcoding real credentials, and keep browser actions user-approved—especially submissions, account changes, and any scheduled check-in jobs.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could click buttons, enter text, and submit forms on websites when using this skill.
The skill documents broad browser interaction commands, including form filling and submission. This is expected for browser automation, but it can change web-account state if used on sensitive pages.
agent-browser click <sel> ... agent-browser fill <sel> "text" ... agent-browser find role button click --name "提交"
Use it only for user-approved browser tasks, and require explicit confirmation before submitting forms, purchasing, posting, deleting, or changing account settings.
If used on login or account pages, the agent may handle credentials or act in a signed-in session.
The form-filling workflow includes username and password entry. Credential use is purpose-aligned for login automation, but it is sensitive account authority.
agent-browser find label "用户名" fill "myuser" agent-browser find label "密码" fill "mypassword"
Do not provide passwords unless necessary, avoid hardcoding real credentials in scripts, and limit use to accounts and websites the user explicitly authorizes.
Installing a global CLI can add executable code to the local environment.
The setup instructions install a global npm package without a pinned version. This is expected for using the CLI, but users should verify the package source before installation.
npm install -g agent-browser agent-browser install
Confirm the npm package name, publisher, and version before installing, and prefer a pinned or trusted installation source where possible.
If the user enables cron scheduling, browser actions such as check-ins may run automatically later.
The skill includes an optional scheduled check-in workflow. It is disclosed and user-directed, but scheduled automation can persist beyond a single interactive session.
### 3. 定时签到(配合cron) 创建脚本 `~/.openclaw/scripts/daily-checkin.sh`
Only schedule scripts intentionally, review their target URLs and actions, and remove or disable scheduled jobs when they are no longer needed.