playwright-cli
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- Dynamic Script Execution: The
playwright-cli run-codeandevalcommands allow the execution of arbitrary JavaScript in both the browser and host contexts. This is a powerful feature for automation but warrants review as a dynamic execution surface. - Sensitive Data Management: The skill provides commands for handling browser storage, including cookies and localStorage. It supports saving authentication states to files like
auth.json, which should be stored securely and excluded from version control. - Official Package Installation: The instructions suggest installing official Microsoft packages from the npm registry. This is a standard and safe practice within the intended ecosystem.
- External Data Processing Surface: The skill navigates to external websites and processes their content, which introduces an indirect prompt injection surface. (Ingestion: SKILL.md via goto; Boundary markers: Absent; Capability: run-code; Sanitization: Absent).
Audit Metadata