order-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes multiple shell scripts (
check-cdp.sh,check-agent-browser.sh) to prepare the environment and uses theagent-browserCLI to interact with a web browser. - Evidence:
SKILL.mdtriggerssh scripts/check-cdp.shandsh scripts/check-agent-browser.sh. It also executesagent-browser --cdp 9222 eval "$(cat scripts/order-analysis.js)". - [EXTERNAL_DOWNLOADS]: The installation script automatically downloads and installs Node.js via Homebrew and the
agent-browserpackage from a third-party NPM mirror if they are not present. - Evidence:
scripts/check-agent-browser.shexecutesbrew install node@22andnpm install -g agent-browser --registry=https://registry.npmmirror.com. - [DATA_EXFILTRATION]: The skill is designed to extract potentially sensitive internal ticket data from an authenticated session into a local file for subsequent AI analysis.
- Evidence:
SKILL.mdcaptures JSON data from a fetch request inscripts/order-analysis.jsand saves it to$OUTPUT_DIR/order.json. - [REMOTE_CODE_EXECUTION]: The skill uses
agent-browser --cdp 9222 evalto execute the content of a local JavaScript file within the browser context. While the file is local, this mechanism could be used to execute arbitrary logic in the browser. - Evidence:
SKILL.mdcontains the commandagent-browser --cdp 9222 eval "$(cat scripts/order-analysis.js)".
Audit Metadata