notte-browser

BENIGN. The skill’s capabilities are broadly consistent with its stated browser-automation purpose, and the CLI provenance appears same-org and publicly verifiable rather than a deceptive installer. Risk is still medium because the skill enables autonomous actions on arbitrary websites, handles credentials via a third-party platform, and exposes the agent to prompt injection from untrusted web content.