Security audit
Browser Vps Setup Skill
Security checks across malware telemetry and agentic risk
Overview
The skill mostly matches its stated purpose, but it sets up a high-privilege remote browser in a way that may expose unauthenticated browser control and weaken VPS isolation.
Install only on a dedicated, disposable VPS. Before starting the browser stack, enable firewall rules, bind noVNC/websockify and debugging ports to localhost, and verify the ports are not publicly reachable. Run Chrome as a non-root user where possible, avoid sensitive logins, and delete the browser profile or stop the services when done.
VirusTotal
66/66 vendors flagged this skill as clean.
Static analysis
No suspicious patterns detected.
