bb-browser

SUSPICIOUS: the skill is broadly aligned with its stated browser-automation purpose, but its footprint is high-risk for an AI skill because it installs and relies on a third-party global CLI, can use authenticated browser state, can perform account-affecting web actions, and references an outdated daemon model versus current upstream docs. I do not see confirmed credential theft or obviously malicious exfiltration, but the install trust and action scope are substantial enough to rate as medium risk.