← Back to Skills Marketplace
threads-skill
by
gaojiongwenv587-beep
· GitHub ↗
· v1.0.3
· MIT-0
343
Downloads
0
Stars
0
Active Installs
4
Versions
Install in OpenClaw
/install threads-skill
Description
Threads 平台全自動化操作套件。觸發詞:登錄、登出、檢查登錄、是否已登錄、切換帳號、清除Cookie、多帳號管理、搜索、查找、瀏覽首頁、刷一下、抓帖子、獲取帖子、看帖子詳情、查看用戶、用戶主頁、歷史回復、發帖、發布、寫帖子、po文、發Thread、帶圖發帖、點讚、轉發、回覆、評論、關注、批量回覆、批量評論、...
Usage Guidance
This skill appears to be a CLI-based Threads automation tool, but the package contains only instructions (no scripts). Before using it: 1) Inspect the code on the linked GitHub repository and verify the scripts referenced by SKILL.md (scripts/*.py, chrome_launcher.py, reply_assistant.py) — do not run unknown scripts. 2) Confirm what the 'uv' binary refers to and whether you need to install it; SKILL.md uses 'uv run' but metadata only lists python3 and uv, and also mentions brew for tkinter without declaring it. 3) Be cautious about allowing access to your browser cookies or running delete-cookies/login flows — these touch sensitive authentication state. 4) If you plan to use the optional AI features, keep API keys out of world-readable files and prefer to supply credentials via secure environment variables or a credential manager; ask the publisher where credentials are stored and how they're transmitted. 5) Prefer running the tool in an isolated environment (VM/container) and audit network calls that the actual scripts make (especially external api_url endpoints) before granting any secrets or running automated posting actions.
Capability Analysis
Type: OpenClaw Skill
Name: threads-skill
Version: 1.0.3
The skill bundle is classified as suspicious because SKILL.md provides detailed instructions for an AI agent to execute several Python scripts (e.g., scripts/cli.py, scripts/chrome_launcher.py) that are entirely missing from the bundle, and it references a hardcoded external script path on the user's desktop (~/Desktop/threads-filter-comment/filter-comment.py). This reliance on missing or external code for sensitive tasks like account management, cookie handling, and browser control is a significant security risk. Additionally, _meta.json contains a future-dated timestamp (2026), and the instructions include specific behavioral constraints that override user preferences, such as automatically skipping political content and enforcing Traditional Chinese (IOC: github.com/gaojiongwenv587-beep/threads-skills).
Capability Tags
Capability Assessment
Purpose & Capability
The name/description (Threads automation) matches the runtime commands (login, post, like, search, batch reply). However the instructions rely on local Python scripts (scripts/*.py) and a 'uv' CLI that are not included in the skill bundle. The SKILL.md also references installing tkinter via brew (macOS) although brew is not listed as a required binary in metadata. Requiring 'uv' without explanation is unexpected.
Instruction Scope
The instructions tell the agent/user to launch a local Chrome debug instance, read and delete cookies, write and read local files (e.g. ~/.threads/replied_posts.json, ~/.threads-filter-comment.json, /tmp JSON files), and run many scripts that could post or scrape content. They also enable optional AI integration (api_url/api_key/model) implying external API calls and storage of credentials in local config, none of which are declared as required env vars. Because the actual scripts are not present, it's unclear what those scripts do — the SKILL.md gives broad permission to access browser state and local files, which is sensitive and not fully justified by the metadata.
Install Mechanism
There is no install spec (instruction-only), which is lower risk for arbitrary installs. However the runtime assumes local project files and a 'uv' binary; absent those, a user or agent might attempt to fetch/clone code from the declared homepage. The homepage is provided, but the skill does not instruct or declare a verified, trusted install source or release checksum.
Credentials
requires.env is empty, but the SKILL.md references optional AI credentials (api_url, api_key, model) and storing them in a config file. The skill will access browser cookies and session state (delete-cookies, login flows) and write files under the user's home directory. Requesting or storing API keys or accessing browser cookies are sensitive operations and should be explicitly declared; here they are not.
Persistence & Privilege
The skill is not always-enabled and does not claim privileged platform-wide changes. It does expect to create and maintain local state files (~/.threads/*, /tmp/*) and a replied-posts record, which is reasonable for this application. Autonomous invocation is allowed by default (normal), but combined with the other concerns increases potential impact.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install threads-skill - After installation, invoke the skill by name or use
/threads-skill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
**Major update: Removed all source scripts, documentation, and skill modules.**
- All core scripts, CLI tools, and Threads automation modules have been removed.
- Documentation files (e.g., README.md, CLAUDE.md) and skill description files have been deleted.
- The skill no longer includes any operational Python files or command interface.
- No usage, configuration, or automation functionality remains in this version.
v1.0.2
Initial release with full code and documentation.
- Added CLI scripts and all supporting modules for Threads automation.
- Skill is now fully structured with sub-skills for authentication, publishing, exploring, interaction, content ops, and batch replies.
- Complete documentation and usage guides included.
- Supports routing to sub-skills based on user intent.
- Enforces operational and language constraints, plus strict politics content prohibitions.
v1.0.1
Version 1.0.1 is a metadata and documentation update focused on modularizing and clarifying skill boundaries.
- Refactored SKILL.md to describe modular sub-skills and routing logic for all Threads operations.
- Clarified privilege boundaries: all actions must be run via scripts/cli.py and output as JSON.
- Added explicit routing rules for handling authentication, publishing, exploration, interaction, operations, and batch reply via sub-skills.
- Updated language requirements: all AI-generated content must use Traditional Chinese, and political content must be strictly avoided.
- Added pre-run requirements, error handling steps, and quickstart instructions.
- No code-level or functional changes; only documentation and metadata were updated.
v1.0.0
threads 1.0.0 — 首个版本发布
- 实现 Threads.net 全功能自动化,包括登录、浏览、搜索、内容发布与互动。
- 支持多账号管理及批量运营,便捷切换与批量操作。
- 提供分步 & 一步发帖、支持图片上传与内容规则校验。
- 支持批量社交互动、批量回复辅助界面、自动避开政治内容。
- 增强稳定性:内置失败处理与 Chrome 连接检测流程。
Metadata
Frequently Asked Questions
What is threads-skill?
Threads 平台全自動化操作套件。觸發詞:登錄、登出、檢查登錄、是否已登錄、切換帳號、清除Cookie、多帳號管理、搜索、查找、瀏覽首頁、刷一下、抓帖子、獲取帖子、看帖子詳情、查看用戶、用戶主頁、歷史回復、發帖、發布、寫帖子、po文、發Thread、帶圖發帖、點讚、轉發、回覆、評論、關注、批量回覆、批量評論、... It is an AI Agent Skill for Claude Code / OpenClaw, with 343 downloads so far.
How do I install threads-skill?
Run "/install threads-skill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is threads-skill free?
Yes, threads-skill is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does threads-skill support?
threads-skill is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux).
Who created threads-skill?
It is built and maintained by gaojiongwenv587-beep (@gaojiongwenv587-beep); the current version is v1.0.3.
More Skills