ClawAudit verdict
playwright-pro
playwright-pro-2-1-1
Production-grade Playwright testing toolkit with commands for test generation, review, migration from Cypress/Selenium, and CI integration; only credential_access is listed and the content is a transparent testing framework guide.
⚠ Flagged for review — coarse, uncorroborated signal, not a confirmed exploit. Review the config yourself before installing.
Automated static analysis — not a human review. ClawAudit flags capabilities, not confirmed intent, and can produce false positives. Disagree with this verdict? Use Dispute below.
Permission integrity
credential_access
Findings (9)
Possible hardcoded credential
SKILL.md · code · API_KEY="your-api-key
<script> tag in markdown — potential code injection
templates/search/basic-search.md · code · <script>
Pipe to python — executes piped content as Python code
hooks/validate-test.sh · prose · downgraded · | python3
Instructs covert action — may act without user awareness
templates/forms/autosave.md · code · silently
HTTP request to bare IP address — common in malicious payloads
hooks/validate-test.sh · prose · downgraded · http://127.0.0.1
Accesses sensitive environment variables
reference/fixtures.md · code · process.env.API_TOKEN
References webhook/callback URL
skills/report/SKILL.md · code · WEBHOOK_URL
Opens WebSocket connection
templates/api/graphql.md · code · WebSocket
References agent configuration files
README.md · prose · downgraded · CLAUDE.md
Permissions & capabilities
No declared permissions — minimal attack surface.
credential_access Is this flag fair?
Thanks — recorded.