Back to skill
Skillv0.1.0
VirusTotal security
Agent Browser · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 4:14 AM
- Hash
- 1fddbaac482f16e7c67a4a3e257b608d575d8732dc0c0fa2386629a470ebdefb
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: agent-browser-4 Version: 0.1.0 The skill bundle is classified as suspicious due to significant prompt injection vulnerabilities and broad, high-risk capabilities. The `SKILL.md` and `references/proxy-support.md` files contain direct shell commands (`openssl rand -hex 32`, `curl`) within their instructional examples. An AI agent following these instructions would execute these commands, demonstrating a critical prompt injection vulnerability that allows arbitrary shell command execution, despite the `allowed-tools` section ostensibly limiting execution to `agent-browser` commands. Furthermore, the `agent-browser` tool itself grants extensive capabilities, including arbitrary JavaScript execution (`eval`), local file system access (`--allow-file-access`, `upload`), network interception and modification (`network route`), and the ability to load arbitrary browser extensions (`--extension`). While these capabilities may be legitimate for browser automation, they create a massive attack surface that could be exploited by a malicious prompt or user, even though the provided examples do not demonstrate malicious intent.
- External report
- View on VirusTotal