The Agent Skills Directory

[SAFE]: The skill is designed to access browser profile directories to extract forensic information such as history, cookies, and autofill data. This access is local and necessary for its primary purpose of digital forensics.
[SAFE]: The skill processes untrusted data from browser artifacts (URLs, page titles), creating an indirect prompt injection surface. However, the risk is negligible as the skill only extracts and displays the data without executing it.
Ingestion points: Browser SQLite databases (History, Cookies, Web Data) accessed in scripts/agent.py and scripts/process.py.
Boundary markers: None present; data is extracted and handled as raw strings.
Capability inventory: None; the scripts do not perform shell execution, eval, or other dangerous operations on the parsed data.
Sanitization: No sanitization is performed, which is standard for preserving forensic evidence to ensure accuracy.

analyzing-browser-forensics-with-hindsight