web-browse

SUSPICIOUS. The skill’s capabilities are broadly aligned with web automation, and there is no clear malicious installer or credential-harvesting endpoint. However, it grants a powerful browse-and-act surface over untrusted web content, including JS evaluation, authenticated interaction, network capture, and local file upload, which creates medium-to-high security risk even though the stated purpose is coherent.