Agent Browser 0.2.0 (1)

Security checks across malware telemetry and agentic risk

Overview

This is a browser automation skill whose powerful session, storage, and capture features are disclosed and fit its testing/debugging purpose.

Install only if you need browser automation. Use isolated test accounts or disposable browser profiles when possible, avoid printing cookies or tokens into logs, do not commit saved auth-state files, and clean up screenshots, videos, traces, and persistent profiles after use.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The skill explicitly encourages saving screenshots, PDFs, recordings, traces, and session state to local files, but provides no warning that these artifacts can capture sensitive on-screen data, authentication state, cookies, tokens, or personal information. In an agent setting, this can lead to silent persistence of secrets to disk where they may later be exposed, exfiltrated, or mishandled.

Missing User Warnings

Medium

Confidence: 95% confidence
Finding: The documented commands allow setting credentials and directly viewing or manipulating cookies and localStorage without any caution about handling authentication secrets. This is dangerous because these interfaces expose highly sensitive material that can be logged, echoed into agent context, persisted in histories, or reused to hijack authenticated sessions.

VirusTotal

61/61 vendors flagged this skill as clean.

View on VirusTotal