bdg

The bdg skill presents as a coherent, purpose-aligned browser-automation tool leveraging Chrome DevTools Protocol. Its footprint, as described, is proportionate to its stated use cases (DOM querying, navigation, interaction, screenshots). There are no explicit installation/downloads or credential-handling patterns shown, which reduces immediate supply-chain and credential-exfiltration concerns. Given the data flows are user-driven and confined to browser context (with outputs like screenshots and DOM data), the risk level is low to moderate and depends on how the user applies it (e.g., scraping sensitive pages, handling auth tokens). Recommend continuing with standard safety practices: restrict data access to what is necessary, avoid writing sensitive data to shared logs, and ensure proper session cleanup. Overall assessment: BENIGN with LOW to MEDIUM risk depending on usage context.