← Back to Skills Marketplace
deardavidzheng

Web Access Skill

by deardavidzheng · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ⚠ suspicious
105
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install web-access-skill
Description
所有联网操作必须通过此 skill 处理,包括:搜索、网页抓取、登录后操作、网络交互等。 触发场景:用户要求搜索信息、查看网页内容、访问需要登录的网站、操作网页界面、抓取社交媒体内容(小红书、微博、推特等)、读取动态渲染页面、以及任何需要真实浏览器环境的网络任务。
Usage Guidance
This skill legitimately implements full-browser automation by attaching to your Chrome via the DevTools protocol, but that capability is powerful: it can read any page your browser can see (including logged-in pages), run arbitrary JavaScript in page contexts, take screenshots, and programmatically set local file paths into file inputs (enabling file uploads). Before installing, consider these precautions: - Only enable this skill if you understand and trust the code author; repository homepage is missing and origin is unknown — review the scripts yourself or from a trusted reviewer. - Do not enable it against your regular Chrome profile that contains sensitive logins. Instead create and use a separate Chrome instance/profile launched with --remote-debugging-port for the skill, or run it against a disposable browser. - Be aware the skill will start a detached background Node process (cdp-proxy) that remains running until killed; you can stop it with pkill -f cdp-proxy.mjs or by locating the process. Review the log file in OS temp directory if troubleshooting. - If you must use it, restrict autonomous invocation: prefer manual user-invocation and deny always:true or unrestricted autonomous use. Limit what data the agent is allowed to fetch (avoid instructing it to access private accounts or upload local files). - If you cannot audit the code, avoid installing or run it in an isolated environment (VM/container) and inspect network and file activity while testing. If you want, I can list the exact code locations that allow high-risk actions (e.g., /eval, /setFiles, reading DevToolsActivePort, detached process launch) so you can review them more closely.
Capability Analysis
Type: OpenClaw Skill Name: web-access-skill Version: 1.0.0 The skill implements a CDP (Chrome DevTools Protocol) proxy (`cdp-proxy.mjs`) that grants the AI agent full control over the user's active Chrome browser, including access to authenticated sessions and cookies. Key high-risk features include the ability to execute arbitrary JavaScript in any tab (`/eval`), capture screenshots, and programmatically upload local files to websites (`/setFiles`) by bypassing standard file-picker dialogs. While the `SKILL.md` instructions frame these capabilities as tools for advanced web research and automation, the lack of sandboxing and the broad access to the user's live browser environment and local filesystem represent a significant security risk that could be exploited for data exfiltration.
Capability Assessment
Purpose & Capability
Name/description (browser-based web access, login-required scraping, interactive tasks) align with the included scripts and the CDP Proxy approach. Requiring remote Chrome access and a local Proxy is coherent for the declared functionality.
Instruction Scope
SKILL.md and the proxy expose arbitrary JS execution (/eval), DOM read/write, screenshots, navigation, and file-input setting (/setFiles). These are necessary for full browser automation, but they also allow reading protected pages (cookies/session-backed content), extracting any page DOM, and programmatically attaching local files for upload — operations that can expose sensitive data if misused. The skill's pledge not to touch user tabs is a policy choice, not a technical enforcement: the proxy can list/attach to any target.
Install Mechanism
Instruction-only install (git clone) and Node.js scripts — no remote binary downloads or obscure URLs. The proxy is started as a detached background Node process by the check-deps script, which means code is written to disk and runs persistently; this is expected but increases runtime footprint.
Credentials
No external credentials requested, which is proportional. However the skill reads local Chrome debug info (DevToolsActivePort) and relies on Chrome carrying user login state. Features like DOM eval and /setFiles permit access to session-backed resources and local files (by providing local filesystem paths to the browser), which are high-privilege actions relative to a typical 'search' skill and can lead to exfiltration of sensitive data.
Persistence & Privilege
always:false, but the skill auto-starts a detached proxy process and recommends keeping it running across sessions. That gives it ongoing local presence (a background process binding to Chrome remote debugging) until explicitly stopped — not inherently malicious but increases blast radius and requires the user to manage/kill the process when not needed.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install web-access-skill
  3. After installation, invoke the skill by name or use /web-access-skill
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
web-access-skill v1.0.0 - Initial release of the web-access skill. - Centralizes all web interaction tasks: search, browsing, logged-in operations, interactive/automation tasks, and dynamic content handling through a unified interface. - Adopts a human-like, goal-oriented browsing philosophy for efficient and adaptive task completion. - Provides detailed procedures and tool choices for searching, direct fetching, browser automation, and login-detection. - Supports Chrome DevTools Protocol (CDP) for real-browser operations including logged-in sessions, DOM interaction, and media extraction. - Includes a framework for parallel research by sub-agents and encourages contribution of site-specific operational knowledge.
Metadata
Slug web-access-skill
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is Web Access Skill?

所有联网操作必须通过此 skill 处理,包括:搜索、网页抓取、登录后操作、网络交互等。 触发场景:用户要求搜索信息、查看网页内容、访问需要登录的网站、操作网页界面、抓取社交媒体内容(小红书、微博、推特等)、读取动态渲染页面、以及任何需要真实浏览器环境的网络任务。 It is an AI Agent Skill for Claude Code / OpenClaw, with 105 downloads so far.

How do I install Web Access Skill?

Run "/install web-access-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Web Access Skill free?

Yes, Web Access Skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Web Access Skill support?

Web Access Skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Web Access Skill?

It is built and maintained by deardavidzheng (@deardavidzheng); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments