← Back to Skills Marketplace
Tistory Publish
by
garibong-labs
· GitHub ↗
· v5.1.4
· MIT-0
446
Downloads
0
Stars
0
Active Installs
13
Versions
Install in OpenClaw
/install tistory-publish
Description
Automate Tistory blog publishing via OpenClaw Playwright CDP. Supports any post format — handles TinyMCE editor manipulation, OG card insertion, banner uploa...
Usage Guidance
This skill appears to do what it claims: automate Tistory blog publishing by controlling a local OpenClaw/Playwright browser instance. Before installing or running it: (1) verify you run the OpenClaw Chrome CDP on a trusted local host (default 127.0.0.1:18800); (2) avoid supplying plaintext Kakao credentials unless necessary — prefer logging into the OpenClaw browser manually and using publish.sh without running login.sh; (3) test on a non-production blog or with --private to confirm behavior before public publishing; (4) review helper JS (tistory-publish.js) to ensure its DOM actions match your expectations (it injects events and clicks to force publishing); (5) ensure any banner files or body HTML you pass are trusted. If you want higher assurance, run the scripts in an isolated environment and inspect network calls from the OpenClaw browser while testing.
Capability Analysis
Type: OpenClaw Skill
Name: tistory-publish
Version: 5.1.4
The tistory-publish skill bundle is a legitimate automation tool designed to publish blog posts to Tistory by controlling a browser via Playwright CDP. It includes scripts for handling Kakao login (login.sh), managing the publishing workflow (publish.sh), and a comprehensive JavaScript helper (tistory-publish.js) for interacting with the TinyMCE editor. While the skill performs high-risk actions such as reading local credential files and injecting JavaScript to bypass 'isTrusted' event filters, these behaviors are clearly documented and essential for its stated purpose following the discontinuation of the official Tistory API. The code is transparent, includes a detailed changelog addressing previous security concerns, and shows no signs of data exfiltration or malicious intent.
Capability Assessment
Purpose & Capability
Name/description (Tistory publish via Playwright CDP) matches the included scripts and helper JS. Declared runtimes (python3, playwright, optional node) and the requirement to connect to an OpenClaw Chrome CDP are appropriate for browser automation. No unrelated cloud or service credentials are requested.
Instruction Scope
SKILL.md and scripts restrict actions to opening the blog newpost page, injecting helper JS, manipulating TinyMCE DOM, uploading local banner files, and clicking publish. The only potentially sensitive action is the optional scripts/login.sh flow which reads a user-supplied credential file and automates a Kakao login (expected for session recovery). The publish path explicitly does not read credentials. No instructions instruct reading arbitrary system files, shell history, or sending data to third-party endpoints beyond Tistory/Kakao pages.
Install Mechanism
No remote install/download step is declared (instruction-only install). All code is bundled with the skill. No external archive URLs, shorteners, or post-install fetches are used. Runtime dependencies (Playwright, optional Node canvas packages) are typical for the stated functionality.
Credentials
The skill declares no required environment variables; an optional credential file or TISTORY_CRED_FILE may be used only by scripts/login.sh for Kakao login. Requesting an email/password for login is proportionate to the optional login use-case, but the credential file is plaintext JSON or key:value — this is a sensitivity to consider before using login.sh.
Persistence & Privilege
Skill does not request always:true or other elevated persistence. It does not modify other skills or system-wide agent settings. It operates by connecting to a local OpenClaw CDP and running transient browser automation.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install tistory-publish - After installation, invoke the skill by name or use
/tistory-publish - Provide required inputs per the skill's parameter spec and get structured output
Version History
v5.1.4
Remove internal templates (mk-review, anthropic-daily, openclaw-release). login.sh requires --cred-file arg. No internal paths in published code.
v5.1.3
Move changelog from SKILL.md to CHANGELOG.md. SKILL.md focuses on usage docs only.
v5.1.2
Declare runtime and credentials in frontmatter metadata. Fix OpenClaw security scan Suspicious.
v5.1.1
Security scan fix: move login logic to separate scripts/login.sh. publish.sh no longer handles credentials.
v5.1.0
Auto-login on expired Kakao session. Reads credentials from ~/.openclaw/secrets/kakao.json.
v5.0.3
Remove child_process usage (OpenClaw security scan). Clipboard copy replaced with terminal instruction.
v5.0.2
VT security scan fix: remove base64/atob/subprocess patterns. Changelog order fixed.
v5.0.1
v5 stable: Playwright CDP engine, mk-review template, banner upload, empty body guard, legacy scripts removed.
v5.0.0
Switch publishing core from agent-browser to OpenClaw Playwright CDP; unify around single publish.sh core with template presets; remove legacy tistory publisher scripts and document the new architecture.
v4.0.0
Redesigned as a generic Tistory publishing skill. Added universal publish.sh script with --title/--body-file/--category/--tags/--banner/--blog/--private options. Moved MK review to templates/mk-review/ as an example. Added templates/simple-post/ for minimal publishing. Any post format can now be published through the same core functions.
v3.0.1
Remove personal identifiers (blog URLs, agent names, workspace paths) from README.md and scripts. No functional changes.
v3.0.0
Breaking: migrated from OpenClaw Playwright to agent-browser CLI. Category selection now uses Playwright native ARIA combobox click instead of JS eval. Banner upload uses agent-browser upload (file input) instead of base64 chunk injection. Significantly improved stability (zero timeouts, zero CDP crashes) and speed (~60s including banner + 4 OG cards).
v1.0.0
Initial release — 티스토리 블로그 자동 발행 (브라우저 자동화)
Metadata
Frequently Asked Questions
What is Tistory Publish?
Automate Tistory blog publishing via OpenClaw Playwright CDP. Supports any post format — handles TinyMCE editor manipulation, OG card insertion, banner uploa... It is an AI Agent Skill for Claude Code / OpenClaw, with 446 downloads so far.
How do I install Tistory Publish?
Run "/install tistory-publish" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Tistory Publish free?
Yes, Tistory Publish is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Tistory Publish support?
Tistory Publish is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Tistory Publish?
It is built and maintained by garibong-labs (@garibong-labs); the current version is v5.1.4.
More Skills