← Back to Skills Marketplace
81
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install windows-browser-ops
Description
Windows Desktop 浏览器远程操控。用于在 Discord / 本地会话中触发 Edge/Chrome 执行“打开网页、交互、截图、打包下载”等动作,并回传证据。
Usage Guidance
Do not install or run this skill until you confirm the missing pieces and audit them: 1) The SKILL.md references scripts (scripts/*.ps1) that are not included — ask the publisher to provide the exact scripts or include them in the package so you can review them. 2) Understand that the skill will request permission to run PowerShell on a Desktop node, take screenshots, read the Downloads folder, and upload files (Discord mentioned). Those are sensitive actions — only allow on a fully trusted, isolated test machine or VM. 3) Never accept global execution policy changes (Set-ExecutionPolicy) without reviewing the script contents; prefer executing signed scripts or running with the least privileges required. 4) If you must use it, require the publisher to: include all scripts, show full script source, document exactly where uploads go (Discord webhook/channel IDs or other endpoints), and provide a least-privilege mode (read-only, screenshot-only) before enabling download/exfiltration features. 5) If you cannot obtain the scripts for review, treat the skill as unsafe and decline to enable Desktop approval for it.
Capability Analysis
Type: OpenClaw Skill
Name: windows-browser-ops
Version: 0.1.0
The skill provides extensive remote control over a Windows desktop, including browser manipulation, screen capture, and file exfiltration. A primary concern is the 'download_and_zip.ps1' script and instructions in 'SKILL.md' which direct the agent to zip the entire Downloads folder and upload it to a remote channel (e.g., Discord). While these capabilities are aligned with the stated purpose of 'Remote Browser Ops,' the broad access to sensitive user data and the potential for unauthorized data exfiltration make it high-risk.
Capability Assessment
Purpose & Capability
The declared purpose (remote control of Edge/Chrome on a Windows Desktop node for navigation, interaction, screenshotting and packaging downloads) is plausible. However the SKILL.md repeatedly references local PowerShell scripts (scripts/*.ps1) that are not included in the skill bundle. The skill also assumes the presence of an approved Desktop node and ability to run tools.exec node=Desktop; the registry metadata does not declare these runtime dependencies or any required config paths. Referencing absent scripts and external runtime assumptions without documenting them is an incoherence.
Instruction Scope
Runtime instructions tell the agent to execute PowerShell on a Desktop node, take full-screen screenshots, poll and zip the user's Downloads folder, change execution policy, and upload artifacts (mentions openclaw message send --channel discord ... --file path). Those actions legitimately fit the stated 'evidence collection' purpose, but they involve high-sensitivity data (screenshots, Downloads, possibly logged browser accounts) and system policy changes. The instructions also give wide discretion (copy scripts to arbitrary local paths, run SendKeys/AutoHotkey, use tscon to avoid lockscreen) which increases risk.
Install Mechanism
There is no install spec (instruction-only), which limits what is written to disk by the skill package itself. That normally reduces risk. However, because the SKILL.md expects external PowerShell scripts and suggests manually copying them to C:\Users\... or running them via WSL/powershell, the actual runtime behavior depends on scripts that are missing from the bundle. This absence prevents a full review of what will execute on the Desktop node and is therefore a notable gap.
Credentials
The skill declares no required environment variables or config paths, yet its instructions require access to: a Desktop node (tools.exec node=Desktop), the user's Downloads folder, the ability to take screenshots and possibly access Edge profile/account state, and the ability to upload files to external channels (Discord is explicitly referenced). The requested capability to change PowerShell execution policy (Set-ExecutionPolicy) and use tscon to manipulate remote sessions are privileged actions. These privileges and sensitive accesses are not represented in the metadata, which is disproportionate.
Persistence & Privilege
always:false and default model invocation are appropriate. The skill does not request to persist or modify other skills. However, because it operates by executing arbitrary PowerShell scripts on a Desktop node, granting it Desktop approval gives it broad runtime reach. That runtime reach is normal for a remote-control/evidence-collection skill but should be treated as high-privilege and limited to trusted nodes.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install windows-browser-ops - After installation, invoke the skill by name or use
/windows-browser-ops - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release: remote Edge automation playbook with launch/focus scripts, navigation helpers, screenshots, and download packaging.
Metadata
Frequently Asked Questions
What is Windows Browser Ops?
Windows Desktop 浏览器远程操控。用于在 Discord / 本地会话中触发 Edge/Chrome 执行“打开网页、交互、截图、打包下载”等动作,并回传证据。 It is an AI Agent Skill for Claude Code / OpenClaw, with 81 downloads so far.
How do I install Windows Browser Ops?
Run "/install windows-browser-ops" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Windows Browser Ops free?
Yes, Windows Browser Ops is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Windows Browser Ops support?
Windows Browser Ops is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Windows Browser Ops?
It is built and maintained by LuLu (@louisownopenclaw-netizen); the current version is v0.1.0.
More Skills