Selenium Browser Control
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill mostly matches browser automation, but it includes undisclosed anti-detection behavior and weaker browser containment while exposing powerful actions like JavaScript execution and cookie access.
Install only if you intentionally want Selenium to drive a headless browser. Use it on trusted sites where automation is allowed, avoid sensitive logged-in sessions unless needed, be careful with cookie and JavaScript commands, and consider running it in an isolated environment because the script disables Chrome's sandbox and includes anti-detection settings.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A malicious or compromised site opened through the tool may have less browser isolation than the user expects.
The tool can open arbitrary URLs while launching Chrome with its sandbox disabled, which weakens containment for web content.
options.add_argument("--no-sandbox") ... self.driver.get(url)Avoid --no-sandbox unless running inside a separate isolated container; disclose the setting and prefer the normal Chrome sandbox for general browsing.
Users may unknowingly automate sites in a way that bypasses basic bot-detection expectations or violates site policies.
The implementation masks Selenium automation indicators, but SKILL.md only describes normal browser control and does not disclose this anti-detection behavior.
options.add_argument("--disable-blink-features=AutomationControlled") ... # 反检测 ... Object.defineProperty(navigator, 'webdriver', {get: () => undefined})Clearly disclose or remove anti-detection behavior, and use the skill only on sites where automation is permitted.
JavaScript run on a logged-in or sensitive page can read or change page data in that browser session.
The advertised JavaScript command is implemented by executing caller-supplied JavaScript inside the active page.
def execute_script(self, script): ... result = self.driver.execute_script(script)
Only run JavaScript that the user explicitly requested and understands, especially on authenticated sites.
Cookie values could expose logged-in session state if used on authenticated websites.
The skill can return cookies from the automated browser session; this is documented functionality, but cookies can represent account sessions.
cookies = self.driver.get_cookies(); return {"success": True, "cookies": cookies}Avoid using the cookie commands on sensitive accounts unless necessary, and do not share tool outputs containing cookies.
Installation depends on whatever package and driver versions the user obtains, which can affect reliability and trust.
The setup relies on an unpinned PyPI package and external ChromeDriver while the registry has no install spec or declared required binaries.
pip install selenium ... 需要 Chrome 浏览器和 ChromeDriver。
Install Selenium and ChromeDriver from trusted sources, pin versions where possible, and verify ChromeDriver matches the installed browser.