agent-browser

SUSPICIOUS: the skill's capabilities mostly align with browser automation, and the main CLI appears same-org and officially documented, so this is not confirmed malware. Risk is elevated because it grants an agent broad hosted-browser actions on arbitrary websites, supports proxies and file uploads, routes activity through inference.sh infrastructure, and encourages transitive skill installs; the install naming mismatch adds minor trust ambiguity.