screen-control-operator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The guide describes monitoring network requests and console logs for automation purposes. No hardcoded credentials or sensitive file paths are present.
- [Indirect Prompt Injection] (SAFE): This file documents a tool surface (Playwright) used to ingest untrusted web data. 1. Ingestion points:
page.gotoandelement.inner_textinreferences/playwright_api.md. 2. Boundary markers: N/A (static documentation). 3. Capability inventory: JavaScript evaluation (page.evaluate), screenshot capabilities, and multi-tab control. 4. Sanitization: N/A. - [Dynamic Execution] (SAFE): The reference documents
page.evaluate, a standard Playwright feature for executing JavaScript within a browser context. This is intended functionality for the described library.
Audit Metadata