agent-browser

SUSPICIOUS: The skill's purpose and capabilities broadly align with hosted browser automation, and the `infsh` dependency appears to be same-org and officially documented. However, risk is elevated by broad Bash permission, transitive skill installation, hosted remote execution, arbitrary-site browsing with action capability, and untrusted web-content prompt-injection exposure. This looks coherent for its purpose, but it is a high-impact automation skill that should be treated as medium/high security risk rather than benign.