electron
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [Remote Debugging Configuration]: The skill provides commands to launch applications like Slack, VS Code, and Discord with the
--remote-debugging-portflag. This is a standard feature of the Electron framework that enables the Chrome DevTools Protocol, allowing theagent-browsertool to programmatically interact with the application's UI. - [Application Data Interaction]: By design, the skill allows the agent to capture screenshots, extract text, and fill forms within desktop applications. This means the agent will have access to the data displayed in the automated apps, such as chat messages or source code, in order to fulfill user requests.
- [Command Execution for Automation]: The skill uses specific bash commands to manage application states and sessions. These commands are localized to launching and connecting to the specified Electron applications and do not involve unauthorized privilege escalation or persistence mechanisms.
- [Indirect Input Processing]: As the agent interacts with third-party applications, it processes content that may contain instructions (e.g., reading a message in Slack). This is an inherent aspect of automation skills, and users should be aware that the agent may interpret data from these external sources.
Audit Metadata