← Back to Skills Marketplace
368
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install web-skills-protocol
Description
Auto-discover and use Web Skills Protocol (WSP) skills when interacting with websites. Use this skill whenever the user asks you to interact with, use, or pe...
Usage Guidance
This skill is coherent with its purpose — it makes an agent check for site-published SKILL.md files and follow them — but that capability is a double-edged sword. Before installing or enabling this skill, consider: 1) only allow automatic discovery for trusted sites or require explicit user confirmation before fetching/using a site's SKILL.md; 2) always ask the user before providing credentials or performing financial/account actions; 3) treat remote SKILL.md content as untrusted input: validate frontmatter (auth/base_url/rate_limit), limit what instructions the agent will follow automatically, and sandbox or audit actions (no silent exfiltration of sensitive data); 4) prefer policies that block or warn on SKILL.md files containing strange control characters or other obfuscation (the scanner found unicode-control-chars here); and 5) if you operate in a high-risk environment, do not enable autonomous invocation of web-published skills without additional safety checks. If you want help drafting user-confirmation prompts or a checklist for safe SKILL.md consumption, I can provide one.
Capability Analysis
Type: OpenClaw Skill
Name: web-skills-protocol
Version: 1.0.0
The bundle implements a 'Web Skills Protocol' that instructs the AI agent to automatically discover, fetch, and follow instructions from arbitrary remote websites (via `skills.txt` and remote `SKILL.md` files). While the protocol includes safety guidelines in `SKILL.md` and `SPEC.md`—such as respecting `robots.txt` and requiring user consent for authentication—the core logic essentially enables Remote Instruction Execution (RIE) via prompt injection from any website the agent visits. Furthermore, the `README.md` encourages high-risk installation patterns using `curl | bash` style commands to fetch the skill from a GitHub repository (0xtresser/Web-Skills-Protocol).
Capability Assessment
Purpose & Capability
The name/description match the actual instructions: the skill only describes discovering /skills.txt or /agents.txt and fetching SKILL.md files to drive site-specific interactions. No unrelated binaries, env vars, or installs are required.
Instruction Scope
The runtime instructions require the agent to fetch and follow arbitrary remote SKILL.md files and act on them. That is necessary for the stated purpose, but it also means any website can serve instructions the agent will follow. The SKILL.md content becomes an execution surface and can contain adversarial directives (prompt-injection). The skill text does include sensible guardrails (respect robots.txt; ask user for auth) but does not specify validation, provenance checks, or sandboxing of remote instructions.
Install Mechanism
There is no install specification in the registry entry (instruction-only). The README shows optional curl-based install examples from raw.githubusercontent.com (a well-known host) — that is traceable. No archive downloads or obscure URLs are required by the skill itself.
Credentials
The skill declares no environment variables, credentials, or config-path access (proportionate). However, by design it will surface SKILL.md files that may request authentication or credentials for the target site; the SKILL.md instructs the agent to ask the user before using creds, but the skill does not enforce or validate that flow, creating a social-engineering risk.
Persistence & Privilege
The skill is not always-enabled, is user-invocable, and the registry flags are default. It does not request permanent privileges or modify other skills/config. No elevated persistence is requested.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install web-skills-protocol - After installation, invoke the skill by name or use
/web-skills-protocol - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of web-skills-protocol—enables interaction with websites via the Web Skills Protocol:
- Auto-discovers and uses WSP skills by checking for skills.txt and agents.txt files on websites.
- Provides structured steps to parse skill discovery files, match user actions to available skills, and retrieve SKILL.md instructions.
- Enforces authentication, rate limits, and session caching per published skill requirements.
- Prioritizes using site-published skills over scraping or UI automation for reliability and compliance.
- Includes clear operational rules and workflows for safe, user-consented web interactions.
Metadata
Frequently Asked Questions
What is web-skills-protocol?
Auto-discover and use Web Skills Protocol (WSP) skills when interacting with websites. Use this skill whenever the user asks you to interact with, use, or pe... It is an AI Agent Skill for Claude Code / OpenClaw, with 368 downloads so far.
How do I install web-skills-protocol?
Run "/install web-skills-protocol" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is web-skills-protocol free?
Yes, web-skills-protocol is completely free (open-source). You can download, install and use it at no cost.
Which platforms does web-skills-protocol support?
web-skills-protocol is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created web-skills-protocol?
It is built and maintained by Tresser (@0xtresser); the current version is v1.0.0.
More Skills