agent-browser

The skill fragment is coherently aligned with its stated purpose as a browser-automation CLI for AI agents. It defines expected workflows (navigate, snapshot, interact, persist state, extract data) and legitimate prerequisites (npm, Appium, Xcode) with typical data flows (user input → browser actions → output files). While there are potential misuse vectors (credential handling, state persistence, data extraction, and cross-session data reuse), these are inherent to browser automation tools and can be mitigated with proper access controls and secure handling practices. No explicit malicious behavior is evident in the fragment itself, but the tool’s capabilities carry moderate security risk if misused or configured insecurely.