Agent Browser Clawdbot.Bak 2026 01 28T18:01:09+10:30

PassAudited by ClawScan on May 10, 2026.

Overview

This is a coherent browser-automation skill, but it gives an agent a powerful external CLI that can act in web sessions and save login state.

Install this only if you want the agent to use an external headless browser CLI. Verify the npm package first, keep saved auth files private, and manually approve sensitive actions such as logins, submissions, purchases, account changes, or admin workflows.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Note

ASI02: Tool Misuse and Exploitation

What this means

If used on a logged-in or sensitive site, the agent could click buttons, submit forms, or alter page/network behavior.

Why it was flagged

The skill exposes browser interaction and network-control commands; these are core to its purpose, but they can change website or application state.

Skill content

agent-browser click @e2
agent-browser fill @e3 "text"
agent-browser network route "**/ads/*" --abort

Recommendation

Use it only for intended sites and require explicit user approval before purchases, submissions, admin changes, or other high-impact web actions.

Note

ASI03: Identity and Privilege Abuse

What this means

Saved state files may allow future browser sessions to act as the logged-in user if the files are reused or exposed.

Why it was flagged

The skill documents saving/loading cookies and storage and reading cookies, which can preserve authenticated sessions.

Skill content

agent-browser state save auth.json        # Save cookies/storage
agent-browser state load auth.json        # Load (skip login)
agent-browser cookies                     # Get all

Recommendation

Keep auth state files private, avoid loading unknown state files, and use separate low-privilege accounts where possible.

Note

ASI04: Agentic Supply Chain Vulnerabilities

What this means

The safety of runtime behavior depends on the external CLI package and its installed dependencies.

Why it was flagged

The setup relies on a user-installed external npm package and downloaded browser dependencies, while no package code is bundled in the reviewed artifacts.

Skill content

npm install -g agent-browser
agent-browser install                     # Download Chromium
agent-browser install --with-deps         # Linux: + system deps

Recommendation

Install from a trusted source, consider pinning a known version, and review the package/homepage before granting it access to important sessions.