← Back to Skills Marketplace
podman-browser
by
ricardodantas
· GitHub ↗
· v1.2.1
2037
Downloads
2
Stars
1
Active Installs
2
Versions
Install in OpenClaw
/install podman-browser
Description
Run a headless Chromium browser via Podman to fetch text or HTML from JavaScript-rendered web pages using Playwright in a container.
Usage Guidance
This skill appears to do what it says: run Playwright in a Podman container to fetch rendered HTML/text. Before installing, consider the following: (1) ensure Podman 5.x+ and Node.js 18+ are installed locally — the package metadata did not declare these required binaries but the script needs them; (2) the first run pulls ~1.5GB from mcr.microsoft.com and each run executes 'npm install' inside the container unless the image already includes Playwright — expect network activity and slower startup; (3) the container is launched with --ipc=host and the script notes sandboxing may be disabled when run as root — avoid running this as root and avoid pointing it at highly sensitive or untrusted URLs unless you accept that risk; (4) if you want stricter isolation, run Podman with additional network or seccomp restrictions or pre-build an image with Playwright to avoid per-run npm installs; (5) consider requesting the publisher update the registry metadata to list required binaries (podman, node) so platform checks can be clearer. Overall the skill is internally coherent, but exercise operational caution when running containers that render arbitrary web pages.
Capability Analysis
Type: OpenClaw Skill
Name: podman-browser
Version: 1.2.1
The skill is classified as suspicious due to the use of `--ipc=host` and `--no-sandbox` flags when launching Chromium within the Podman container, as seen in `browse.js` and documented in `SKILL.md`. While these configurations might be used for browser stability, they significantly increase the attack surface by allowing container processes to access host IPC resources and reducing browser isolation. Additionally, the `browse.js` script performs `npm install playwright` inside the container on every execution, introducing a dynamic dependency resolution step which carries a minor supply chain risk, even for a legitimate package.
Capability Assessment
Purpose & Capability
The code and SKILL.md implement a Podman-based Playwright scraper, which matches the name. However the registry metadata declares no required binaries while the implementation obviously requires the 'podman' binary (and Node.js to run the CLI). The mismatch is a metadata/packaging omission rather than functional misalignment.
Instruction Scope
The runtime instructions stay within the stated purpose (spawning a Playwright Chromium instance to capture rendered HTML/text). Notable operational choices: each run builds (npm install) inside the container (network activity, slower runs), the container is started with --ipc=host (documented for Chromium stability) and no explicit network isolation is applied. The SKILL.md also notes sandbox is disabled when run as root. These are documented but increase the attack surface when browsing untrusted sites or running as root.
Install Mechanism
This is an instruction-only skill with a small CLI script; there is no remote install step in the skill package. The container image used is an official Microsoft Playwright image on mcr.microsoft.com (a known registry). The script runs 'npm install [email protected]' inside that container at runtime — that pulls from the public npm registry each run unless the image already contains the package. No obscure or shortened URLs or external arbitrary downloads are used by the skill itself.
Credentials
The skill does not request secrets, config paths, or environment variables from the platform. It sets container environment variables for the target URL and options, but does not attempt to read platform credentials. The absence of declared required binaries is the only proportionality issue (podman/node should be declared).
Persistence & Privilege
The skill does not request 'always: true' and does not modify other skills or system-wide settings. It runs on-demand and creates ephemeral containers per invocation, so persistence and privilege requests are minimal.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install podman-browser - After installation, invoke the skill by name or use
/podman-browser - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.2.1
- No code or documentation changes in this release.
- Version bumped to 1.2.1 with no modifications detected.
v1.2.0
- Added documentation outlining headless browser automation with Podman and Playwright.
- Clearly lists requirements: Podman 5.x+ and Node.js 18+, Docker not needed.
- Provides installation steps and symlink instructions for the browse.js CLI tool.
- Describes command options: --html, --wait, --selector, and usage examples.
- Explains underlying operation using a Playwright container with Chromium.
- Notes details about container image, security, and runtime considerations.
Metadata
Frequently Asked Questions
What is podman-browser?
Run a headless Chromium browser via Podman to fetch text or HTML from JavaScript-rendered web pages using Playwright in a container. It is an AI Agent Skill for Claude Code / OpenClaw, with 2037 downloads so far.
How do I install podman-browser?
Run "/install podman-browser" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is podman-browser free?
Yes, podman-browser is completely free (open-source). You can download, install and use it at no cost.
Which platforms does podman-browser support?
podman-browser is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created podman-browser?
It is built and maintained by ricardodantas (@ricardodantas); the current version is v1.2.1.
More Skills