Back to skill
Skillv1.0.0
ClawScan security
Selenium Browser Control · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 13, 2026, 4:27 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, instructions, and requirements align with a Selenium-based browser automation tool — nothing in the package suggests it is doing unrelated or covert actions.
- Guidance
- This package appears to be a straightforward Selenium browser automation helper. Before installing: (1) ensure you want a tool that can open arbitrary URLs and save screenshots to ~/Pictures/OpenClaw (it will create that directory); (2) be aware it requires a matching Chrome + chromedriver and 'pip install selenium'; (3) avoid giving it untrusted URLs or sensitive credentials — automated browsing can load malicious pages or capture sensitive on‑screen content in screenshots; (4) if you allow autonomous agent invocation, the agent could run browser actions without further prompts, so restrict usage or keep invocation manual if you want tighter control.
Review Dimensions
- Purpose & Capability
- okName, description, SKILL.md and the included Python script all describe Selenium-based browser automation (open pages, click, fill, screenshot, proxy, UA). There are no unrelated dependencies, credentials, or config paths requested.
- Instruction Scope
- okRuntime instructions and code focus on browser automation. The SKILL.md tells users to install selenium and run the script; the script implements the documented commands. It does create screenshots under ~/Pictures/OpenClaw and requires Chrome/Chromedriver, which is consistent with its purpose.
- Install Mechanism
- okNo install spec is provided (instruction-only), and SKILL.md recommends 'pip install selenium' and installing Chrome/Chromedriver. No remote downloads or obscure install URLs are present in the package.
- Credentials
- okThe skill requests no environment variables, no credentials, and no config paths. This is proportional to a local browser automation utility.
- Persistence & Privilege
- okalways is false and the skill is user-invocable. It does not request persistent system-wide changes or modify other skills’ configs. Note: disable-model-invocation is false (agent may call it autonomously), which is the platform default.