Lp3
Medium
- Category
- MCP Least Privilege
- Confidence
- 70% confidence
- Finding
- Without declared permissions the skill's intent is opaque and cannot be validated.
Pascal Playwright Mcp
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed browser-automation skill with normal web automation privacy risks, but no evidence of hidden exfiltration, persistence, or deceptive behavior.
Install this only if you want your agent to control a browser. Use allowed-host settings for trusted domains, verify form submissions and file uploads before running them, avoid entering secrets on untrusted sites, and disable trace/video capture unless needed because those outputs may contain sensitive page data.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- MCP Least PrivilegeUnderdeclared Capability, Wildcard Permission, Missing Permission Declaration
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Findings (2)
Missing User Warnings
Medium
- Confidence
- 88% confidence
- Finding
- This markdown file documents interactive browser operations including form submission (`browser_click` after filling fields) and file upload (`browser_choose_file`), which can affect user accounts, send data to third-party sites, or transmit local files. Although there are security notes about sandboxing and host restrictions, there is no clear user-facing warning that these actions may submit data externally or modify remote state.
VirusTotal
64/64 vendors flagged this skill as clean.