← 返回 Skills 市场
117
总下载
0
收藏
0
当前安装
3
版本数
在 OpenClaw 中安装
/install claw-windows-automator
功能描述
当用户想要**Windows自动化**、**自动打开CMD**、**在指定目录执行命令**、**运行bat脚本**、**GitHub自动下载最新版**、**一键下载仓库源码**、**桌面GUI自动化**、**pyautogui任务**、**全屏可视化提示**、**鼠标单击强制停止**、**输入法自动切换**、**...
使用说明 (SKILL.md)
\r \r
OpenClaw Windows Automation Skill\r
\r 功能:高稳定、可视化、安全可中断的 Windows 桌面自动化引擎。集成全屏 Overlay 实时进度提示、鼠标左键一键强制终止、输入法自动切换、CMD 自动打开执行命令、GitHub 最新源码一键下载等能力。通过统一 CLI 入口,让 LLM 大模型能够可靠地驱动 Windows 完成复杂自动化任务。\r \r
触发时机(Triggers)\r
- 用户明确提到 Windows 自动化、CMD 命令执行、GitHub 下载、项目初始化、批量部署等需求。\r
- 用户提供文件夹路径并要求“在该目录下执行命令/脚本”。\r
- 用户提供 GitHub 仓库地址并要求“下载最新版”或“下载源码包”。\r
- 用户希望看到实时进度提示或需要“鼠标一点就能停止”的安全自动化。\r
- 用户提到“自动打开命令提示符”“输入法干扰”“pyautogui”“桌面自动化”等关键词。\r \r
支持的任务(Tasks)\r
cmd_task(默认推荐)\r- 在指定目录自动打开 CMD 并执行任意命令或 bat 脚本\r
- 支持失败重试 + 容错继续模式\r \r
github_download\r- 自动打开浏览器,智能解析 GitHub
/releases/latest,一键下载最新源码 ZIP 包\r \r (后续可无限扩展新任务,只需注册到 OPERATIONS 字典即可被 LLM 调用)\r \r
- 自动打开浏览器,智能解析 GitHub
参数提取指南\r
当决定调用此技能时,请从用户消息中准确提取以下参数:\r \r
\x3C任务名称>(必填): 必须是cmd_task或github_download中的一个。\r\x3C路径>(cmd_task 必填): 要打开 CMD 的文件夹路径(支持相对/绝对路径)。\r\x3C脚本/命令>(cmd_task 必填): 需要在 CMD 中执行的具体命令或脚本内容。\r\x3CGitHub地址>(github_download 必填): GitHub 仓库完整地址(如https://github.com/user/repo)。\r\x3C容错模式>(cmd_task 选填): 默认开启(continue_on_error=true),出错后继续执行后续步骤。\r \r
执行步骤\r
- 解析意图:识别用户想要执行的任务类型(cmd_task 或 github_download)以及对应参数。\r
- 路径/地址提取:从用户消息中提取文件夹路径或 GitHub URL。\r
- 任务选择:根据用户关键词自动匹配对应 task。\r
- 调用命令:使用以下兼容性命令启动脚本(优先
python3,失败则python)。脚本会自动启动 Overlay 提示、执行任务,并在结束或用户点击鼠标时安全退出。\r \r(python3 scripts/operations.py run --task "\x3C任务名>" [--path "\x3C路径>"] [--script "\x3C脚本>"] [--url "\x3C地址>"]) || (python scripts/operations.py run --task "\x3C任务名>" [--path "\x3C目录路径>"] [--script "\x3C执行脚本>"] [--url "\x3C连接地址>"])
安全使用建议
This skill appears to implement the claimed Windows automation features, but it performs intrusive environment actions without explicit user consent: on import it runs a fix_setuptools pip install, it auto-installs packages, and its env_manager can create a shared venv and re-launch the program inside it. Before installing or running:
- Only run on Windows and preferably in an isolated environment (VM/container) or throwaway account.
- Inspect and remove/disable ensure_package.fix_setuptools() automatic call (it runs pip on import). Consider making package installation explicit instead of automatic.
- Be aware running operations.py will create a venv path (VENV_DIR), logs, and model/data dirs; confirm those paths are acceptable.
- If you only need simple CMD automation or GitHub ZIP downloads, consider extracting and running only the minimal modules (cmd_task/github_download and the overlay) after removing auto-install and env_manager bootstrap code.
- If you trust the author and intend to use it, run it interactively the first time so you can observe prompts and network activity; otherwise run in an isolated VM and audit network traffic.
I assessed this as 'suspicious' (not clearly malicious) because the unexpected auto-install and environment-modifying behavior could be legitimate design choices but are disproportionate and risky without clear prompt/consent. Additional author provenance (official homepage, repo, maintainer identity) or changing the code to remove import-time installs would increase confidence.
功能分析
Type: OpenClaw Skill
Name: claw-windows-automator
Version: 1.0.2
The skill bundle provides powerful Windows desktop automation capabilities, including executing arbitrary commands in CMD (cmd_task.py) and automating browser downloads via keyboard simulation (github_download.py). It uses pyautogui to simulate user input and ctypes to manipulate window styles and input methods, which are high-risk behaviors. While the skill includes safety features like a full-screen visual overlay and a mouse-click emergency stop (gradient_overlay.py), the inherent ability to perform GUI-level automation and arbitrary command execution provides a significant attack surface for prompt injection or agent misuse. No clear evidence of intentional malice, such as data exfiltration or backdoors, was found.
能力评估
Purpose & Capability
Name/description (Windows desktop automation, CMD automation, GitHub downloads, overlay, pyautogui) align with the code (cmd_task, github_download, gradient overlay). However several modules include unrelated heavy infra (Project MODEL_DIR, env_manager logic to install PyTorch/audio libs) that are not needed for basic CMD/GitHub automation.
Instruction Scope
SKILL.md instructs running scripts/operations.py, which will import modules that (a) call ensure_package on import and thus run pip operations, (b) may create a virtualenv and restart the process, and (c) create directories (logs/models/data/venv). Those import-time side-effects go beyond 'open CMD / download zip' and give the skill broad discretion over the host environment.
Install Mechanism
There is no formal install spec, but the code self-installs Python packages via ensure_package (subprocess pip calls). Notably, ensure_package runs fix_setuptools at module import time (unconditional pip install to modify setuptools), which triggers network downloads/installs on import—this is intrusive and higher risk than an instruction-only skill.
Credentials
The skill requests no credentials, but it will create/modify a virtualenv path (VENV_DIR computed relative to project root), write logs, and may install large packages (pip, potentially torch/audio libraries). Those filesystem and network privileges are disproportionate for a simple 'open CMD / download GitHub ZIP' task and could alter the host environment unexpectedly.
Persistence & Privilege
always:false and model invocation is normal. However the skill's bootstrap will create a persistent venv and log directories and can re-launch itself inside that venv—this grants a persistent footprint on disk. It does not modify other skills' configs but will install packages system-wide inside the created venv and may alter global Python environment when run as imported.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install claw-windows-automator - 安装完成后,直接呼叫该 Skill 的名称或使用
/claw-windows-automator触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.2
- Removed the file scripts/openclaw_dashboard.py.
- No other functional or documentation changes.
v1.0.1
No code or documentation changes detected in this version.
- No changes found between version 1.0.1 and the previous release.
v1.0.0
claw-windows-automator 1.0.0
- Initial release of a robust Windows desktop automation skill.
- Supports automated CMD opening/execution, GitHub latest-source downloading, bat script running, and project batch initialization.
- Includes real-time full-screen overlay progress indication and mouse-click emergency stop.
- Features automatic input method switching and comprehensive error-tolerant execution modes.
- All tasks are run locally with detailed visual feedback and logs; no extra configuration required.
元数据
常见问题
claw-windows-automator 是什么?
当用户想要**Windows自动化**、**自动打开CMD**、**在指定目录执行命令**、**运行bat脚本**、**GitHub自动下载最新版**、**一键下载仓库源码**、**桌面GUI自动化**、**pyautogui任务**、**全屏可视化提示**、**鼠标单击强制停止**、**输入法自动切换**、**... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 117 次。
如何安装 claw-windows-automator?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install claw-windows-automator」即可一键安装,无需额外配置。
claw-windows-automator 是免费的吗?
是的,claw-windows-automator 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
claw-windows-automator 支持哪些平台?
claw-windows-automator 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 claw-windows-automator?
由 顶尖王牌程序员(@wangminrui2022)开发并维护,当前版本 v1.0.2。
推荐 Skills