ClawHub

junxuan

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed browser-automation helper, but users should treat saved browser state and captures as sensitive.

Install only if you trust the external agent-browser package or source repository. Use disposable or least-privilege accounts for automation, avoid saving auth.json or captures from sensitive sites unless necessary, keep those files out of version control, and delete saved state when finished.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Rogue AgentSelf-Modification, Session Persistence
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
  • Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (4)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill explicitly documents saving and reloading authenticated browser state without any warning that the resulting file may contain cookies, tokens, and other session artifacts. In an agent setting, that omission is dangerous because users may persist auth material to disk and later expose it through logs, shared workspaces, or reuse across tasks.

Missing User Warnings

Low
Confidence
81% confidence
Finding
The documentation encourages writing screenshots, PDFs, recordings, and similar artifacts to local files but does not warn that these outputs can capture sensitive page contents or overwrite existing files. In browser automation, such artifacts often include PII, secrets, internal URLs, and session context, so silent file creation increases accidental disclosure risk.

Session Persistence

Medium
Category
Rogue Agent
Content
```bash
agent-browser state save auth.json    # Save session state
agent-browser state load auth.json    # Load saved state
```

## Example: Form submission
Confidence
94% confidence
Finding
Load saved state

Session Persistence

Medium
Category
Rogue Agent
Content
agent-browser wait --url "/dashboard"
agent-browser state save auth.json

# Later sessions: load saved state
agent-browser state load auth.json
agent-browser open https://app.example.com/dashboard
```
Confidence
95% confidence
Finding
load saved state

VirusTotal

59/59 vendors flagged this skill as clean.

View on VirusTotal