Oathe Security Badge

Is PleasePrompto/google-ai-mode-skill safe?

https://github.com/PleasePrompto/google-ai-mode-skill

87
SAFE

This skill provides legitimate browser automation for Google AI search functionality, allowing Claude to access current web information. While the code execution involves installing Chrome and browser automation, the implementation appears focused on its stated purpose without evidence of malicious behavior.

Category Scores

Prompt Injection 85/100 · 30%
Data Exfiltration 95/100 · 25%
Code Execution 70/100 · 20%
Clone Behavior 95/100 · 10%
Canary Integrity 100/100 · 10%
Behavioral Reasoning 80/100 · 5%

Findings (4)

MEDIUM Browser Installation and Automation -20

Skill installs Chrome browser and performs automated web interactions. While focused on legitimate Google search, browser automation capabilities could potentially be misused.

LOW Persistent Browser Profile Creation -10

Creates persistent browser session data in user's cache directory that survives between skill executions.

LOW Prescriptive Query Optimization -15

Skill instructions are highly prescriptive about how Claude should modify and handle user queries, though for legitimate search optimization purposes.

INFO Network-Dependent Functionality -20

Skill requires network access and makes automated requests to Google services, creating dependency on external services.