Skills
skills/mylesmcook/mcook-skills/agent-browser/Snyk

agent-browser

Warn

Audited by Snyk on Apr 7, 2026

Risk Level: MEDIUM
Full Analysis

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates to arbitrary external URLs and ingests page content that the agent then snapshots, extracts (agent-browser open , snapshot, get text, eval), and acts on (templates/capture-workflow.sh, templates/form-automation.sh, SKILL.md and references/commands.md), so it clearly consumes untrusted third‑party web content that can influence subsequent actions.

Issues (1)

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 7, 2026, 02:41 AM
Issues
1