← Back to Skills Marketplace
502
Downloads
3
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install xianyu-auto-fulfill
Description
闲鱼自动发货监控。使用 agent-browser 自动检查闲鱼新消息,检测付款订单并自动发货。触发词:闲鱼发货、闲鱼监控、闲鱼自动化、xianyu、自动发货。
Usage Guidance
Before installing or enabling this skill, consider the following: (1) It will ask to reuse your main Chrome profile and may read local files (secret pools) or invoke user-specified APIs — only allow this if you trust the exact configuration and understand the data flows. (2) Prefer not to point it at your full Chrome profile; use a dedicated profile with only the necessary Xianyu session if possible. (3) Avoid storing production keys as plaintext files; use a secure credential store or environment variables and document them in the skill metadata. (4) Test in a safe environment with dummy keys and dummy buyer accounts to confirm it sends only intended text. (5) Require explicit confirmation steps or content review before sending secrets to buyers. (6) If you cannot review/run the automation yourself safely, treat this skill as high risk and do not enable scheduled runs that reuse your main session.
Capability Analysis
Type: OpenClaw Skill
Name: xianyu-auto-fulfill
Version: 0.0.1
The `SKILL.md` file contains instructions that create a severe prompt injection vulnerability. The agent is explicitly told to ask the user for their '发货方式' (fulfillment method) and then '据此配置自动化' (configure automation based on this). Examples provided show that this configuration can involve arbitrary file system operations (reading/deleting files) and network requests (e.g., `curl` to an API). A malicious user could craft their fulfillment method description to instruct the agent to exfiltrate sensitive data (e.g., `~/.ssh/id_rsa`, `/etc/passwd`) or execute arbitrary commands, making this a critical remote code execution risk via prompt injection.
Capability Assessment
Purpose & Capability
Name/description match the instructions: monitoring chat, detecting paid orders and sending fulfillment messages. The capabilities requested in SKILL.md (browser automation, reading local files, calling APIs) are plausible for this purpose, but the skill metadata declares no required env/config while the instructions explicitly rely on local Chrome profiles and local secret pools — an omission worth noting.
Instruction Scope
The instructions tell the agent to reuse the main Chrome profile, read local txt key pools (delete lines after use), and call user-provided APIs (curl). Those actions allow access to browser cookies, session tokens, filesystem secrets, and arbitrary network endpoints. There are no safeguards in the prose to prevent accidental exfiltration (e.g., validating destinations or sanitizing output) and little guidance to prevent sending incorrect/secret content to buyers.
Install Mechanism
This is instruction-only (no install spec, no code files). That minimizes supply-chain risk because nothing is downloaded or written by an installer step.
Credentials
The skill declares no required env vars or credentials, yet instructs use of a main Chrome profile path and local secret files and external API calls. Those are effectively requests for high-value local secrets and session data but are not represented in the metadata, creating a transparency gap.
Persistence & Privilege
always is false (normal). The skill recommends scheduling a recurring cron job that must run in the 'main' session to reuse the browser profile — this increases runtime access to persistent browser credentials. Autonomous invocation is permitted (default), which expands blast radius if misconfigured, but autonomous invocation alone is expected for skills.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install xianyu-auto-fulfill - After installation, invoke the skill by name or use
/xianyu-auto-fulfill - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.0.1
xianyu-auto-fulfill 0.0.1
- Initial release of the skill for automated order fulfillment on Xianyu.
- Monitors Xianyu chat for new payment orders using agent-browser and sends delivery messages automatically.
- Requires user to specify their delivery method before setup; does not assume any fulfillment approach.
- Provides important operational guidelines, such as not clicking the "去发货" button and ensuring tasks use the main browser session.
- Includes examples and tips for integrating various auto-fulfillment workflows.
- Offers commands for OpenClaw cron scheduling and efficient order checking.
Metadata
Frequently Asked Questions
What is 咸鱼自动发货?
闲鱼自动发货监控。使用 agent-browser 自动检查闲鱼新消息,检测付款订单并自动发货。触发词:闲鱼发货、闲鱼监控、闲鱼自动化、xianyu、自动发货。 It is an AI Agent Skill for Claude Code / OpenClaw, with 502 downloads so far.
How do I install 咸鱼自动发货?
Run "/install xianyu-auto-fulfill" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is 咸鱼自动发货 free?
Yes, 咸鱼自动发货 is completely free (open-source). You can download, install and use it at no cost.
Which platforms does 咸鱼自动发货 support?
咸鱼自动发货 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created 咸鱼自动发货?
It is built and maintained by Bijin (@sliverp); the current version is v0.0.1.
More Skills