← Back to Skills Marketplace
Camoufox Deploy
by
AdAstraAbyssoque
· GitHub ↗
· v1.0.0
433
Downloads
0
Stars
1
Active Installs
1
Versions
Install in OpenClaw
/install camoufox-deploy
Description
One-click deployment of camoufox anti-detection browser with modified agent-browser. Patches agent-browser to auto-detect camoufox/firefox from executable pa...
README (SKILL.md)
camoufox-deploy
🚀 一键部署 camoufox + agent-browser 反检测浏览器工具链。
解决的问题
agent-browser 默认只支持 Chromium,但我们需要:
- 反检测能力: camoufox 能绕过 Bilibili、Cloudflare 等风控
- Firefox 支持: 修改 agent-browser 自动识别 camoufox/firefox 路径
- 一键部署: 自动化繁琐的安装、修改、编译流程
概述
这个 skill 帮助用户快速部署:
- camoufox: 基于 Firefox 的反检测浏览器
- agent-browser: 浏览器自动化工具(修改后支持 camoufox)
关键修改点
agent-browser 默认使用 Chromium,需要修改以支持 camoufox/firefox:
- 修改 browser.ts: 自动检测 executablePath 中的 camoufox/firefox 关键字
- 正确的 camoufox 路径:
~/Library/Caches/camoufox/Camoufox.app/Contents/MacOS/camoufox(macOS) - 重新编译: 需要重新编译 Rust CLI 并替换 npm 包中的二进制
使用方法
一键安装
运行安装脚本:
bash ~/.openclaw/workspace/skills/camoufox-deploy/scripts/install.sh
这个脚本会自动完成:
- 安装 uv (Python 包管理器)
- 用 uv 安装 camoufox Python 包
- 下载 camoufox 浏览器二进制
- 安装 agent-browser npm 包
- 修改 agent-browser 源码(自动检测 firefox/camoufox)
- 重新编译 Rust CLI
- 替换系统版本
手动步骤(如果需要)
1. 安装 uv
curl -LsSf https://astral.sh/uv/install.sh | sh
2. 安装 camoufox
uv pip install camoufox --system
3. 下载 camoufox 浏览器
python3 -c "from camoufox.sync_api import Camoufox; Camoufox()"
或手动下载:
# macOS 路径
~/Library/Caches/camoufox/Camoufox.app/Contents/MacOS/camoufox
4. 安装 agent-browser
npm install -g agent-browser
5. 找到并修改 browser.ts
找到 agent-browser 的源码目录:
# 全局安装位置
npm root -g
cd $(npm root -g)/agent-browser
# 或克隆源码
git clone https://github.com/browser-use/agent-browser.git
cd agent-browser
修改 src/browser.ts 中的 getBrowserType 函数:
private getBrowserType(executablePath: string): 'chromium' | 'firefox' {
const lowerPath = executablePath.toLowerCase();
if (lowerPath.includes('firefox') || lowerPath.includes('camoufox')) {
return 'firefox';
}
return 'chromium';
}
6. 重新编译
npm install
npm run build
7. 替换系统版本
# 找到全局安装位置
GLOBAL_PATH=$(npm root -g)/agent-browser
# 备份原版本
cp -r "$GLOBAL_PATH" "${GLOBAL_PATH}.backup"
# 替换为修改版本
cp -r ./ "$GLOBAL_PATH/"
验证安装
# 检查 camoufox
camoufox --version
# 检查 agent-browser
agent-browser --version
# 运行测试
agent-browser --executable-path ~/Library/Caches/camoufox/Camoufox.app/Contents/MacOS/camoufox
故障排除
问题: camoufox 找不到
解决: 确认路径正确
ls ~/Library/Caches/camoufox/Camoufox.app/Contents/MacOS/camoufox
问题: agent-browser 仍使用 chromium
解决: 确认修改生效
cat $(npm root -g)/agent-browser/dist/browser.js | grep -A5 "getBrowserType"
问题: Rust 编译失败
解决: 安装 Rust
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
source ~/.cargo/env
文件位置
| 文件 | 位置 |
|---|---|
| camoufox 可执行文件 | ~/Library/Caches/camoufox/Camoufox.app/Contents/MacOS/camoufox |
| agent-browser 全局安装 | $(npm root -g)/agent-browser |
| 安装脚本 | ~/.openclaw/workspace/skills/camoufox-deploy/scripts/install.sh |
参考
Usage Guidance
Review and sandbox before running. Specifically: 1) Inspect the full install.sh yourself (it is included) and ensure you trust the remote endpoints (https://astral.sh and https://sh.rustup.rs). 2) Prefer running in an isolated VM or container, not on your primary machine, because the script overwrites a global npm package and compiles native code. 3) Back up the existing agent-browser installation (the script attempts backups, but verify them). 4) Avoid piping curl to sh from unknown hosts — fetch the installer, inspect it, then run. 5) If you only need agent-browser to detect an alternate executable, consider making the small local code change manually in a cloned repo rather than replacing the global package. 6) Be aware this enables an anti‑detection browser; depending on your environment and policies, using such tooling may violate rules or be legally sensitive.
Capability Analysis
Type: OpenClaw Skill
Name: camoufox-deploy
Version: 1.0.0
The skill is classified as suspicious due to its reliance on multiple high-risk installation methods that introduce significant supply chain vulnerabilities and potential for Remote Code Execution (RCE). The `scripts/install.sh` file uses `curl -LsSf <URL> | sh` to install `uv` and `rustup` from `astral.sh` and `sh.rustup.rs` respectively. It also performs `git clone` from GitHub and `npm install -g` for `agent-browser`, all of which download and execute code from external sources without explicit integrity checks. While these actions are intended to achieve the stated goal of deploying and patching the `camoufox` browser and `agent-browser` tool, they expose the system to compromise if any of the upstream sources or their delivery mechanisms were to be compromised. There is no evidence of intentional malicious behavior, but the methods used are inherently risky.
Capability Assessment
Purpose & Capability
The name/description (deploy camoufox and patch agent-browser) match the included SKILL.md and install.sh: the script installs camoufox, installs/locates agent-browser, edits its browser detection logic, rebuilds, and replaces the global package. These steps are proportionate to the stated purpose, but they require modifying a third‑party global npm package and compiling native code — actions that have system-wide impact and go beyond a low-risk 'helper' script.
Instruction Scope
The SKILL.md and install.sh instruct the agent/user to run commands that touch system-wide locations: installing uv, pip packages system-wide, running npm -g, cloning GitHub repos, invoking rustup and cargo, and overwriting the globally installed agent-browser directory. The instructions perform code modification (edit TS/JS) and replace existing software, which is broader than a self-contained install and can affect other tools. They also run remote installers and execute generated Python patches without integrity checks.
Install Mechanism
There is no registry install spec, but the bundled install.sh invokes remote installers via curl|sh (astral.sh for uv and rustup.rs for Rust). The script clones GitHub repos (expected) and edits/writes files on disk. Curl-pipe-to-sh and automatic replacement of global packages are higher-risk patterns because they execute code fetched from the network without verification.
Credentials
The skill does not request environment variables or credentials. The operations use standard system paths (HOME, npm global path) and tools (npm, python, cargo). No secret access is requested by the skill.
Persistence & Privilege
The installer replaces a globally installed npm package (agent-browser) and may compile and install native binaries. This modifies other installed software on the system and therefore carries persistent, system-wide privilege. Although 'always' is false, the script's behavior is persistent and can affect other skills or workflows.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install camoufox-deploy - After installation, invoke the skill by name or use
/camoufox-deploy - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
一键部署 camoufox 反检测浏览器
Metadata
Frequently Asked Questions
What is Camoufox Deploy?
One-click deployment of camoufox anti-detection browser with modified agent-browser. Patches agent-browser to auto-detect camoufox/firefox from executable pa... It is an AI Agent Skill for Claude Code / OpenClaw, with 433 downloads so far.
How do I install Camoufox Deploy?
Run "/install camoufox-deploy" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Camoufox Deploy free?
Yes, Camoufox Deploy is completely free (open-source). You can download, install and use it at no cost.
Which platforms does Camoufox Deploy support?
Camoufox Deploy is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Camoufox Deploy?
It is built and maintained by AdAstraAbyssoque (@adastraabyssoque); the current version is v1.0.0.
More Skills