Security audit

learn-courses-mooc

Security checks across malware telemetry and agentic risk

Overview

This skill openly automates MOOC course completion, but it needs Review because it can act on a logged-in account with broad browser control and weak guardrails.

Install only if you intentionally want unattended automation operating your MOOC account and the platform permits it. Review and restrict the course URLs, avoid opening unrelated tabs during the handoff window, remove the automation-hiding flag unless explicitly authorized, use an isolated browser profile, update/pin Playwright with a lockfile, and delete the local progress/report files when no longer needed.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access

Findings (5)

Context-Inappropriate Capability

Medium

Confidence: 95% confidence
Finding: The browser is launched with automation-evasion flags and the script later performs synthetic clicks to keep activity alive, indicating deliberate concealment of automated behavior. In context, this helps bypass platform anti-bot or attendance controls and can be repurposed to automate interactions on sites that did not consent to such behavior.

Context-Inappropriate Capability

Medium

Confidence: 96% confidence
Finding: The script explicitly allows the user to switch tabs or change the URL during a grace period, then proceeds to automate whichever page is active. Because the automation logic includes generic popup handling, element clicking, navigation, and page recovery behavior, this broadens scope from a specific MOOC site to arbitrary pages, creating a confused-deputy risk and unsafe unintended actions.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The README explicitly instructs users to log into a MOOC site and use browser automation to complete coursework, but it does not warn about account suspension risk, credential exposure through automated browsing, or privacy implications of running third-party automation against an authenticated session. In this skill context, the omission is more concerning because the tool’s core purpose is automating course completion on a live platform, which increases the likelihood of policy violations and misuse of a user’s real account.

Unpinned Dependencies

Low

Category: Supply Chain
Content: "start": "node scripts/learn-courses.js" }, "dependencies": { "playwright": "^1.40.0" }, "keywords": ["mooc", "自动化", "学习", "playwright"], "author": "",
Confidence: 84% confidence
Finding: "playwright": "^1.40.0"

Known Vulnerable Dependency: playwright==1.40.0 — 1 advisory(ies): CVE-2025-59288 (Playwright downloads and installs browsers without verifying the authenticity of)

High

Category: Supply Chain
Confidence: 97% confidence
Finding: playwright==1.40.0

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal