← Back to Skills Marketplace
linsuisheng034

Ubuntu Browser Session

by GoGoLin · GitHub ↗ · v1.0.3 · MIT-0
cross-platform ⚠ suspicious
322
Downloads
0
Stars
1
Active Installs
4
Versions
Install in OpenClaw
/install ubuntu-browser-session
Description
Use when a request needs a real Ubuntu Server browser session with durable site login reuse, bounded manual login recovery, or host-side page inspection for...
Usage Guidance
This skill appears to do what it says: managing and reusing a local Ubuntu host browser session and offering a bounded manual noVNC takeover. Before installing or giving it runtime access, consider the following: - Persistent session data: it stores profiles and manifests under ~/.agent-browser. If that directory already contains logged-in browser sessions (GitHub, Google, etc.), the skill will reuse them automatically—review or isolate those profiles if you don't want automated agent access to those accounts. - noVNC exposure: the scripts can expose noVNC URLs and have an explicit LAN mode (0.0.0.0). If you enable LAN access, anyone who can reach the host and the port may view/control the browser. Prefer the loopback URL + SSH port-forwarding, and ensure firewall rules prevent unwanted LAN exposure. - Sensitive page content: CDP snapshot/eval tools read structured page content (DOM, links, text). Treat the skill as having full read access to any page loaded in the browser (including possibly secrets visible in the DOM). Use dedicated test accounts or an isolated VM if handling sensitive logins. - Audit and harden: inspect ~/.agent-browser after use, consider running the skill in a disposable VM/container, and ensure only trusted agents are allowed to invoke it autonomously. If you want stricter behavior, modify the scripts to refuse LAN binding, require explicit user confirmation before reusing a stored session, or store profiles in a device-encrypted location. Overall, the skill is coherent with its purpose but carries expected privacy/availability risks (persistent local sessions and optional LAN VNC exposure) that you should manage before enabling it in a production environment.
Capability Analysis
Type: OpenClaw Skill Name: ubuntu-browser-session Version: 1.0.3 The skill bundle implements a persistent browser automation framework using Chrome, Xvfb, and noVNC. It is classified as suspicious because scripts/assisted-session.sh and scripts/browser-runtime.sh configure x11vnc with the '-nopw' (no password) flag and bind websockify to '0.0.0.0', effectively exposing an unauthenticated remote GUI session to the network. While this is documented as a 'manual login recovery' feature, the implementation lacks any authentication or encryption for the VNC/noVNC streams, creating a significant risk of unauthorized remote access and session hijacking if the host firewall is not strictly configured.
Capability Assessment
Purpose & Capability
The name/description (durable host browser sessions, one-per-site identity model, bounded manual takeover) matches the included scripts and helpers: session registry, profile resolution, browser runtime, noVNC-assisted takeover, and CDP-based page inspection. There are no unexpected cloud APIs or unrelated credentials requested.
Instruction Scope
Runtime instructions operate on local browser profiles (~/.agent-browser), start Xvfb/x11vnc/websockify and a browser, use CDP to inspect and snapshot pages, and provide loopback and LAN noVNC URLs for manual login. This is coherent with purpose, but it explicitly supports exposing noVNC on LAN (0.0.0.0) and persists captured session state and profiles on disk—both of which can leak sensitive page contents or active logins if network or filesystem access is not tightly controlled.
Install Mechanism
There is no install spec or remote download; the skill is provided as scripts bundled with the skill. It relies on system-installed binaries (Xvfb, x11vnc, websockify, Chrome/Chromium, curl, jq, python3) as documented in SKILL.md. No external code fetching or archive extraction is present.
Credentials
No environment variables or external credentials are required. The scripts read/write files under the user's home (~/.agent-browser) and rely on local binaries—these are necessary for the stated goal of durable local browser sessions.
Persistence & Privilege
The skill persists profiles, manifests, and a site-session registry under ~/.agent-browser and will reuse logged-in sessions automatically per its rules. It does not declare always:true. However, because it can be invoked autonomously by agents and can access stored browser sessions, it effectively grants the agent ongoing access to any accounts already stored in those profiles unless the host or user restricts it.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install ubuntu-browser-session
  3. After installation, invoke the skill by name or use /ubuntu-browser-session
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.3
Add forum/search-result enhancements (topic-links, click-link-text), safe profile lock cleanup, visibility filtering, version tracking in SKILL.md frontmatter.
v1.0.2
Keep the public package minimal and aligned with the renamed repository identity.
v1.0.1
Align repository and public identity under ubuntu-browser-session.
v1.0.0
Initial clean public release of the Ubuntu browser session workflow.
Metadata
Slug ubuntu-browser-session
Version 1.0.3
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 4
Frequently Asked Questions

What is Ubuntu Browser Session?

Use when a request needs a real Ubuntu Server browser session with durable site login reuse, bounded manual login recovery, or host-side page inspection for... It is an AI Agent Skill for Claude Code / OpenClaw, with 322 downloads so far.

How do I install Ubuntu Browser Session?

Run "/install ubuntu-browser-session" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Ubuntu Browser Session free?

Yes, Ubuntu Browser Session is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Ubuntu Browser Session support?

Ubuntu Browser Session is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Ubuntu Browser Session?

It is built and maintained by GoGoLin (@linsuisheng034); the current version is v1.0.3.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments