controlling-chrome-with-surfcli
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONNO_CODE
Full Analysis
- [EXTERNAL_DOWNLOADS] (HIGH): Automated scanners (URLite) have identified the URL
wait.netas malicious and blacklisted. Such domains are typically used for malware distribution or command-and-control (C2) operations. - [REMOTE_CODE_EXECUTION] (HIGH): The inclusion of a blacklisted domain in a skill's environment or metadata strongly indicates an intent to perform unauthorized remote code execution or data exfiltration.
- [NO_CODE] (SAFE): The skill contains no source code files (.py, .js, .sh). While this means there is no immediate logic to analyze, it increases the suspicion that the skill relies entirely on the malicious external URL for its functionality.
Recommendations
- AI detected serious security threats
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata