camoufox-2026

CRITICAL E005: Suspicious download URL detected in skill instructions.

• Suspicious download URL detected (high risk: 0.80). These URLs include an unvetted project site (camoufox.com) that explicitly instructs downloading a patched Firefox binary (a direct executable), plus a GitHub repo that could host release assets—both are potential vectors for distributing malware—whereas threads.net and the proxy placeholder are low-risk, so treat the project download sources as moderately high risk.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The SKILL.md explicitly instructs the agent to navigate to and interact with public websites (e.g., page.goto("https://www.threads.net") in the Async/Sync and Persistent Context examples), meaning it will fetch and act on untrusted, user-generated third‑party web content as part of its workflow.