Historial de auditorías
agent-browser - 2 auditorías
Versión de auditoría 2
Más reciente Riesgo bajoFeb 26, 2026, 08:58 AM
Static analysis detected 609 patterns but evaluation confirms these are FALSE POSITIVES. External command patterns are legitimate CLI calls to inference.sh service. Hardcoded URLs are official service endpoints. Path traversal patterns are markdown documentation links. Browser credential references describe session state storage (cookies, localStorage), not file access. No malicious intent or security vulnerabilities detected. The skill is a legitimate browser automation tool with expected remote service communication.
Problemas de riesgo bajo (1)
Factores de riesgo
⚙️ Comandos externos (3)
🌐 Acceso a red (3)
📁 Acceso al sistema de archivos (1)
Versión de auditoría 1
SeguroFeb 27, 2026, 08:52 AM
All 609 static analysis findings are false positives from documentation and template files. The skill contains only legitimate bash scripts demonstrating browser automation workflows. External command patterns are CLI examples showing proper infsh usage. Network findings are example URLs in documentation. No malicious code, credential exfiltration, or unauthorized data transmission detected. The skill is a well-documented browser automation tool with no security concerns.