Agent Browser Clawdbot.Bak 2026 01 28T18:01:09+10:30
PassAudited by VirusTotal on May 12, 2026.
Overview
Type: OpenClaw Skill Name: agent-browser-clawdbot-bak-2026-01-28t18-01-09-10-30 Version: 1.0.0 The skill provides extensive capabilities for headless browser automation, including navigating to arbitrary URLs, extracting data (text, HTML, cookies, local storage), saving/loading browser state to/from files, and intercepting/modifying network requests. While these are standard features for a browser automation tool and the `SKILL.md` does not contain explicit malicious instructions, these powerful capabilities (e.g., file system interaction via `state save/load`, network control, and data extraction from any website) present a significant risk if the agent were to be compromised or instructed to perform unauthorized actions, thus classifying it as suspicious.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used on a logged-in or sensitive site, the agent could click buttons, submit forms, or alter page/network behavior.
The skill exposes browser interaction and network-control commands; these are core to its purpose, but they can change website or application state.
agent-browser click @e2 agent-browser fill @e3 "text" agent-browser network route "**/ads/*" --abort
Use it only for intended sites and require explicit user approval before purchases, submissions, admin changes, or other high-impact web actions.
Saved state files may allow future browser sessions to act as the logged-in user if the files are reused or exposed.
The skill documents saving/loading cookies and storage and reading cookies, which can preserve authenticated sessions.
agent-browser state save auth.json # Save cookies/storage agent-browser state load auth.json # Load (skip login) agent-browser cookies # Get all
Keep auth state files private, avoid loading unknown state files, and use separate low-privilege accounts where possible.
The safety of runtime behavior depends on the external CLI package and its installed dependencies.
The setup relies on a user-installed external npm package and downloaded browser dependencies, while no package code is bundled in the reviewed artifacts.
npm install -g agent-browser agent-browser install # Download Chromium agent-browser install --with-deps # Linux: + system deps
Install from a trusted source, consider pinning a known version, and review the package/homepage before granting it access to important sessions.