Agent Browser
Security checks across static analysis, malware telemetry, and agentic risk
Overview
This is a coherent browser-automation skill; it documents powerful web-control and login-state features, but the provided artifacts do not show hidden or deceptive behavior.
This skill appears purpose-aligned for browser automation, but only install it if you trust the external agent-browser package. Be careful when using it on logged-in websites, and protect any saved auth.json or cookie/storage files because they may grant access to your accounts.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
64/64 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An agent using this skill could interact with websites on the user's behalf, including forms or account pages.
The skill enables direct browser interactions such as clicking, typing, and submitting, which is central to its purpose but can change web account state if used on sensitive sites.
agent-browser click @e2 agent-browser fill @e3 "text" agent-browser press "Enter"
Use it with clear user intent, and require explicit confirmation before purchases, account changes, postings, or other irreversible web actions.
A saved auth state file may let someone access the same logged-in browser session if the file is exposed.
Saving and loading cookies/storage is disclosed and useful for browser sessions, but those files can contain authentication material for logged-in accounts.
agent-browser state save auth.json # Save cookies/storage agent-browser state load auth.json # Load (skip login)
Store auth state files securely, avoid sharing them, and only load state files from trusted sources and intended accounts.
The reviewed skill text does not include the package code, so installation depends on the trustworthiness of the external npm package and downloaded browser components.
The skill is instruction-only and asks users to install an external, unpinned global npm package and browser dependencies that were not included in the scanned artifact set.
npm install -g agent-browser agent-browser install # Download Chromium agent-browser install --with-deps # Linux: + system deps
Install from the official package/source you trust, review package provenance when possible, and avoid running system dependency installation unless needed.