Manikantasai Playwright Automation

Security checks across malware telemetry and agentic risk

Overview

This is a legitimate Playwright automation skill, but it includes overbroad passwordless administrator setup guidance that users should review carefully.

Install only if you are comfortable with a skill that can automate logged-in browser sessions and save page artifacts. Do not add the suggested NOPASSWD sudoers rules; run Playwright dependency installation manually with administrator review instead. Keep auth files such as `auth.json`, screenshots, PDFs, videos, traces, and downloads out of source control, restrict their permissions, and delete them when no longer needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 81% confidence
Finding: The skill explicitly promotes screenshots, PDFs, video recording, and data extraction, all of which can capture sensitive personal, business, or credential-bearing information. Without privacy warnings, retention guidance, or consent boundaries, users may deploy it in ways that unintentionally collect and persist sensitive data.

Missing User Warnings

Medium

Confidence: 93% confidence
Finding: The authentication examples show hardcoded credentials, cookie injection, localStorage token storage, and persisted auth state files without any warning about secret exposure. In practice, these patterns can leak credentials into source control, logs, shared workspaces, or reusable session files, enabling account compromise.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal