remote-browser

[Skill Scanner] Social engineering lure: skill claims external tool is required and directs to URL for setup All findings: [CRITICAL] supply_chain: Social engineering lure: skill claims external tool is required and directs to URL for setup (SC008) [AITech 9.1.4] [CRITICAL] command_injection: Instruction directing agent to run/execute external content (CI011) [AITech 9.1.4] Benign overall with documented remote browser automation capabilities. The footprint matches a legitimate tool for sandboxed environments, with manageable risk provided proper access controls and monitoring around tunnels and cloud sessions. LLM verification: The fragment presents a coherent and controlled description of remote-browser automation via an external CLI tool. It describes legitimate capabilities with manageable security considerations, assuming trusted tooling and proper access controls. The primary concerns are supply-chain trust in the browser-use CLI and secure tunnel configurations, rather than inherent code-level malice.