web-browser

This tool provides powerful debugging capabilities by evaluating arbitrary code within a live browser page context via CDP. While useful for debugging, it poses significant security risks if exposed to untrusted input or deployed in insecure environments due to lack of sandboxing, data access within the page, and potential manipulation of page state. No hardcoded secrets are evident, but the core capability should be tightly access-controlled or sandboxed. Improved safety would include input validation, restricted API surface, and a sandboxed evaluation environment.