agent-browser

SUSPICIOUS. The skill’s capabilities fit its stated browser-automation purpose and the CLI provenance appears same-org and official, so this is not indicative of malware. However, it gives an AI agent broad browser control over arbitrary sites, can reuse authenticated Chrome sessions, processes untrusted web content while retaining action/exec capability, and includes an env-driven `eval` launch path; these make it high-risk operationally even though purpose alignment is strong.