Browser Automation Zh
PassAudited by ClawScan on May 15, 2026.
Overview
This is a coherent browser-automation skill, but it can make the agent log into sites, scrape data, submit forms, and run scheduled screenshots, so users should keep each action explicitly scoped.
This skill appears safe to install for browser automation, but treat it like giving an assistant control of a browser: specify exactly which sites and pages are allowed, review before submissions or purchases, respect website rules, use limited-permission accounts, and keep saved screenshots or scraped data in an approved location.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could click buttons, enter text, submit forms, or scrape pages on the user's behalf.
The skill explicitly uses browser-control tools and includes form submission as a workflow. This is expected for browser automation, but it can cause real website actions if used on live systems.
Tools Required - browser_navigate - browser_click - browser_type - browser_screenshot ... "批量填写表单并提交"
Use clear target URLs and limits, confirm before submissions or other irreversible actions, and prefer test accounts or staging environments for automation tests.
The agent may operate with the user's permissions inside private systems and capture pages containing sensitive information.
The skill contemplates logging into a backend system and accessing sales reports. That is purpose-aligned, but it may rely on the user's account/session and expose internal business data.
"自动登录后台系统,截图保存每日销售报表页面"
Use least-privilege accounts, avoid sharing passwords directly, verify that automation is authorized, and control where screenshots or extracted data are saved.
If a user sets up this recurring workflow, screenshots could continue to be taken until the schedule is disabled.
The example describes recurring scheduled automation. No persistence mechanism is included, so this is not evidence of hidden background behavior, but any implementation would need explicit user control.
"每天早上9点自动截图公司数据看板并保存"
Only enable recurring runs deliberately, define the output location and retention period, and make sure there is an easy way to pause or remove the schedule.