agent-browser

The skill provides legitimate browser automation capabilities aligned with its described purpose (web testing, form filling, screenshots, data extraction). However, several risk indicators justify caution: it downloads and runs a separate Chromium binary (unverifiable via the provided excerpt), it supports saving/loading auth state (potential credential storage), and it involves capturing and handling page content and inputs which could lead to data exposure if misused. Overall, the footprint is coherent with its purpose but warrants elevated security scrutiny (verified binaries, explicit data-handling scopes, and clear credential management practices).