playwright-scraper-skill

This package is a dual-use web-scraping utility that intentionally includes anti-bot evasion techniques (navigator.webdriver hiding, addInitScript injection, UA spoofing, human-like delays) and documents plans for proxy rotation and CAPTCHA-solving integrations. The provided file is a README/manifest and contains no direct evidence of embedded malware, hard-coded credentials, or exfiltration endpoints, but the documented capabilities materially increase misuse and privacy/ethical risk. Primary actionable concerns: credential forwarding to CAPTCHA services, unpinned dependencies (supply-chain risk), and the presence of effective evasion techniques that enable bypassing site protections. Operators should audit the actual scripts before use, pin/verify dependencies, and treat deployment as potentially abusive tooling rather than benign utility.