← Back to Skills Marketplace
Nstbrowser AI Agent
by
NstbrowserIO
· GitHub ↗
· v1.0.5
· MIT-0
350
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install nstbrowser-ai-agent
Description
Browser automation CLI with Nstbrowser integration for AI agents. Use when the user needs advanced browser fingerprinting, profile management, proxy configur...
Usage Guidance
Consider this suspicious because the skill's files expect an NST_API_KEY, local Nstbrowser service (127.0.0.1:8848), and helper tools (jq, curl, Chrome), but the registry metadata claims none of those — verify before installing. Steps to protect yourself:
- Verify the publisher and source: check the claimed GitHub repo and nstbrowser.io home page manually; do not trust the skill registry summary alone. Confirm the npm package and the repository content match these templates.
- Inspect the included scripts (templates/*.sh) and SKILL.md personally. They show patterns that can leak credentials (passing proxy/API passwords on the command line or echoing keys into files). Prefer setting NST_API_KEY via secure environment variable or restricted config file and avoid embedding secrets in shell commands or history.
- Ensure the local Nstbrowser service is legitimate and runs only on localhost. The tool communicates with a local API and exposes a debugger URL (ws://localhost:9222) which you should not expose to untrusted networks.
- Install the nstbrowser-ai-agent CLI from an official source only (npmjs.org or the verified GitHub repo) and verify checksums/release notes. If you cannot verify the upstream project, do not install.
- If you need to use proxies or proxy credentials, prefer using environment variables or secure vaults rather than passing passwords in plaintext on the command line.
- If you want higher assurance, ask the publisher to explain the metadata mismatch (registry says no env vars while skill.json and docs require NST_API_KEY and other tools) and provide a canonical homepage/repository link.
Capability Analysis
Type: OpenClaw Skill
Name: nstbrowser-ai-agent
Version: 1.0.5
The nstbrowser-ai-agent skill bundle provides a professional CLI interface for the Nstbrowser automation service, enabling AI agents to manage browser profiles, configure proxies, and perform automated web interactions. The bundle is well-documented, including a detailed security model in SECURITY.md and several helper templates (e.g., automated-workflow.sh, profile-setup.sh) that facilitate legitimate use cases like anti-detection and batch profile management. While the tool includes high-risk capabilities such as JavaScript execution (eval) and proxy manipulation, these are essential for its stated purpose and are implemented without evidence of malicious intent, data exfiltration, or unauthorized persistence.
Capability Assessment
Purpose & Capability
The declared purpose (browser automation with Nstbrowser profiles, fingerprinting, proxies, batch ops) matches the SKILL.md, scripts, and reference docs: the files consistently call a local nstbrowser-ai-agent CLI and a local Nstbrowser API (127.0.0.1:8848). However the registry metadata at the top of the report lists "Required env vars: none" and "Required binaries: none", while skill.json, SKILL.md, SECURITY.md and scripts clearly expect an NST_API_KEY, an NST host/port, and tools like jq/curl/chrome. That metadata mismatch is unexplained and reduces trust.
Instruction Scope
Runtime instructions and templates stay focused on Nstbrowser operations (profile creation, browser start/stop, proxy updates, snapshots). They do instruct the agent/user to read/write local config files (~/.nst-ai-agent/config.json, .nstbrowser-ai-agent.env), set environment variables, and run diagnostics (lsof, netstat, curl). Those are within the skill's domain but include patterns that can expose secrets (writing or echoing API keys into files or passing passwords on command line), so follow secure practices when providing credentials.
Install Mechanism
There is no install spec (instruction-only), and included files are templates/docs. Nothing in the manifest forces a remote download or arbitrary extraction. This is lower install risk, but the skill expects an external CLI (nstbrowser-ai-agent) that the user would fetch separately (npm or other).
Credentials
The skill requires an API key (NST_API_KEY) and a local service (127.0.0.1:8848) per skill.json and SKILL.md, but the top-level registry metadata claims no required environment variables — a clear inconsistency. Scripts also expect utilities (jq, curl, google-chrome) though the metadata lists none. The templates pass proxy passwords and API keys on the command line or echo them into files which can leak credentials via process lists or shell history. Requesting an NST API key is proportionate to the stated purpose, but the documentation and metadata disagree about what will be required, and some usage patterns expose secrets.
Persistence & Privilege
The skill does store/read configuration and API keys locally (SECURITY.md and SKILL.md point to ~/.nst-ai-agent/config.json and optional .env files) which is expected for a local CLI. The skill is not marked always:true and does not declare system-wide modifications. There is no indication it tries to persist beyond its own config scope or modify other skills.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install nstbrowser-ai-agent - After installation, invoke the skill by name or use
/nstbrowser-ai-agent - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.5
- Initial public release of the skill.
- Added security policy documentation (SECURITY.md).
- Included explicit skill metadata (skill.json) for compatibility and discoverability.
v1.0.0
- Initial release of nstbrowser-ai-agent skill.
- Automates browsers through the nstbrowser-ai-agent CLI with advanced Nstbrowser integration.
- Supports browser fingerprinting, proxy configuration, persistent and temporary browser sessions, and robust profile management.
- Enables batch operations and cursor-based pagination for handling large sets of browser profiles.
- Provides detailed setup instructions, configuration options via file or environment variables, and usage examples for quick start.
Metadata
Frequently Asked Questions
What is Nstbrowser AI Agent?
Browser automation CLI with Nstbrowser integration for AI agents. Use when the user needs advanced browser fingerprinting, profile management, proxy configur... It is an AI Agent Skill for Claude Code / OpenClaw, with 350 downloads so far.
How do I install Nstbrowser AI Agent?
Run "/install nstbrowser-ai-agent" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Nstbrowser AI Agent free?
Yes, Nstbrowser AI Agent is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Nstbrowser AI Agent support?
Nstbrowser AI Agent is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Nstbrowser AI Agent?
It is built and maintained by NstbrowserIO (@nstbrowserio); the current version is v1.0.5.
More Skills