Back to skill
Skillv1.0.4
VirusTotal security
Browser Agent Bridge CLI · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 30, 2026, 5:09 AM
- Hash
- 1a04ccc7102343c0d57654af9af832367fd77df8f746af1623513e74b833e55a
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: browser-agent-bridge-cli Version: 1.0.4 The skill facilitates full control over a user's Chrome browser by installing a local bridge server and requiring the manual installation of an unpacked extension from a GitHub repository (NmadeleiDev/browser_agent_bridge). While the SKILL.md instructions are transparent and include security practices like token generation, the capability to observe DOM elements, capture HTML, and simulate user input (click, type, navigate) represents a high-risk surface for session hijacking or sensitive data exposure. The use of unpacked extensions is a common method to bypass browser security controls.
- External report
- View on VirusTotal