gologin-local-agent-browser-skill

SUSPICIOUS. The skill is internally aligned with GoLogin local-browser automation, but its footprint is high-risk: it requires an auth token, enables cookie/storage extraction, JS eval, proxy-backed multi-account automation, and unattended batch actions on real websites. No clear malicious exfiltration endpoint is shown, so this is not confirmed malware, but it is a high-impact account automation skill with meaningful abuse and credential/session exposure risk.