playwright-network-analyzer
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements legitimate functionality for web debugging and performance analysis without any malicious behavior detected.
- [SAFE]: The analysis script scripts/analyze_network.py uses only Python standard library modules and does not download or execute remote code.
- [SAFE]: No hardcoded credentials, sensitive file access, or unauthorized network operations were identified.
- [PROMPT_INJECTION]: Indirect prompt injection surface analysis: 1. Ingestion points: Processes network request metadata (URLs, status codes, timing) from external web traffic in scripts/analyze_network.py. 2. Boundary markers: Generates standard Markdown/CSV reports without specific instruction-override protection. 3. Capability inventory: Utilizes Playwright MCP tools for browser interaction (browser_navigate, browser_click). 4. Sanitization: Employs URL escaping for CSV output but does not filter content for embedded instructions. Given the diagnostic nature of the tool, this surface is considered a low-risk inherent characteristic rather than a vulnerability.
Audit Metadata