AgentBrowser
Security checks across static analysis, malware telemetry, and agentic risk
Overview
AgentBrowser is a coherent browser-automation wrapper, but it relies on an external npm CLI and can operate on web sessions, credentials, cookies, and uploads.
Install only if you are comfortable trusting the external agent-browser npm package. When using it, be cautious on logged-in or sensitive websites, review actions that could submit data or change accounts, and clear browser cookies/storage after sensitive tasks.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
VirusTotal findings are pending for this skill version.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used on authenticated or sensitive sites, the agent could submit forms, click controls, or upload files as part of the requested automation.
The allowed tool scope and examples expose broad browser actions, including clicking, form filling, and file uploads. This is purpose-aligned for browser automation, but users should be aware these actions can affect real websites or accounts.
allowed-tools: Bash(agent-browser:*) ... agent-browser click @e1 ... agent-browser fill @e2 "text" ... agent-browser upload @e1 file.pdf
Use it only on sites and tasks you intend to automate, and review high-impact actions such as submissions, purchases, account changes, or file uploads.
The agent may be able to use or display session cookies, local storage values, or HTTP credentials from the automated browser context.
The CLI can handle HTTP Basic Auth credentials and inspect or modify browser cookies and local storage. This is expected for browser automation but involves sensitive session/account data.
agent-browser set credentials user pass # HTTP basic auth ... agent-browser cookies # Get all cookies ... agent-browser storage local
Avoid using sensitive accounts unless necessary, do not provide credentials you do not want the agent to use, and clear cookies/storage after sensitive sessions.
Installing the CLI will execute and rely on code from an external package source outside the reviewed skill files.
The skill is instruction-only and directs installation of an external global npm package and additional browser dependencies. This is normal for this purpose, but the supplied artifacts do not include the package code for review.
npm install -g agent-browser agent-browser install agent-browser install --with-deps
Verify the npm package and upstream repository before installing, and prefer trusted/pinned versions in controlled environments.