chrome-devtools

Overall, the Chrome DevTools Agent Skill presents a coherent footprint for its stated purpose: browser automation, debugging, and performance analysis using Puppeteer with local, JSON-based outputs. The install sources are conventional (npm registry, internal scripts) and do not indicate unverifiable binaries. Data access is scoped to local files and outputs, with optional ImageMagick-based compression happening locally. The main risk area is potential local data capture (network/performance logs) and browser automation features, but there is no evidence of external data leakage or credential handling. Classified as BENIGN with MEDIUM-Low security concerns due to local data capture, but no active exfiltration or credential exposure demonstrated.