Skills
skills/scrapfly/skills/scrapfly-browser/Gen Agent Trust Hub

scrapfly-browser

Pass

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the playwright Python library via pip, which is a standard and well-known dependency for browser automation tasks.
  • [PROMPT_INJECTION]: The skill facilitates browsing and extracting data from the public web, which introduces an indirect prompt injection surface.
  • Ingestion points: Untrusted data from external websites enters the agent's context through methods such as page.goto(), page.content(), and page.evaluate() as demonstrated in the examples in SKILL.md.
  • Boundary markers: The instructions do not define clear boundary markers or instructions to the agent to ignore potentially malicious directions embedded in the web content it retrieves.
  • Capability inventory: The skill includes capabilities to write to the local filesystem (e.g., page.screenshot()) and execute JavaScript within the remote browser context (page.evaluate()).
  • Sanitization: There is no evidence of sanitization or filtering applied to the retrieved web content before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 15, 2026, 11:23 AM