← 返回 Skills 市场

Ganidhuz-FoxX

Name: Ganidhuz-FoxX
Author: ganidhuz

作者 Ganidhu Kandepola · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ⚠ suspicious

321

总下载

当前安装

版本数

在 OpenClaw 中安装

/install ganidhuz-foxx

功能描述

🦊 Ganidhuz-FoxX (Firefox + X combined lol). Browse X/Twitter using a real logged-in Firefox session via cookie injection. Supports profile viewing, tweet fe...

使用说明 (SKILL.md)

Ganidhuz-FoxX 🦊

Browse X/Twitter through Firefox with your real session cookies. Built because Chromium kept getting bot-blocked by X.

Requirements

Python 3.7+
Playwright: pip install playwright && playwright install firefox
Firefox installed with an active X/Twitter login
Xvfb display (for headless servers): Xvfb :1 &

Setup

1. Export your X cookies

Close Firefox first, then:

bash scripts/export-x-cookies.sh
# Cookies saved to secrets/x-cookies.json by default
# Override: FOXX_COOKIES_OUT=/custom/path.json bash scripts/export-x-cookies.sh

Custom Firefox profile path:

FIREFOX_PROFILE_PATH=/path/to/profile bash scripts/export-x-cookies.sh

2. Health check

bash scripts/check-firefox-env.sh

Usage

Run a plan file:

DISPLAY=:1 python3 scripts/playwright-firefox-control.py --plan /tmp/foxx-plan.json

Plan Examples

View a profile

{
  "needs_gui": true,
  "gui_reason": "site_only_action",
  "url": "https://x.com/elonmusk",
  "cookies_path": "secrets/x-cookies.json",
  "steps": [
    {"action": "wait", "ms": 4000},
    {"action": "screenshot", "path": "/tmp/foxx-profile.png"}
  ],
  "close_delay_ms": 3000
}

Search tweets (live)

{
  "needs_gui": true,
  "gui_reason": "site_only_action",
  "url": "https://x.com/search?q=AI+agents&src=typed_query&f=live",
  "cookies_path": "secrets/x-cookies.json",
  "steps": [
    {"action": "wait", "ms": 4000},
    {"action": "screenshot", "path": "/tmp/foxx-search.png"}
  ],
  "close_delay_ms": 3000
}

Fetch a tweet

{
  "needs_gui": true,
  "gui_reason": "site_only_action",
  "url": "https://x.com/user/status/123456789",
  "cookies_path": "secrets/x-cookies.json",
  "steps": [
    {"action": "wait", "ms": 3000},
    {"action": "content", "selector": "article"},
    {"action": "screenshot", "path": "/tmp/foxx-tweet.png"}
  ],
  "close_delay_ms": 3000
}

Plan Options

Field	Default	Description
`needs_gui`	required	Must be `true` to launch browser
`gui_reason`	required	One of: `login`, `captcha`, `mfa`, `visual_verification`, `site_only_action`
`url`	required	Starting URL
`cookies_path`	optional	Path to exported cookies JSON
`close_delay_ms`	`3000`	Wait (ms) before closing browser - validate result first
`validation_screenshot`	`/tmp/firefox-openclaw-validate.png`	Auto-taken final screenshot before close
`storage_state_path`	optional	Save session state to this path after run

Supported Step Actions

goto - navigate to URL
click - click element by selector
fill - fill input by selector
type - type text with delay
press - press keyboard key
wait - wait ms
wait_for_selector - wait for element
screenshot - take screenshot
content - extract inner text from element

Behaviour Rules

Always wait for page load (wait step, min 3000ms recommended)
A validation screenshot is always taken before closing
Browser waits close_delay_ms before closing - verify result is correct
If cookies expired (redirects to login), re-run export-x-cookies.sh
Always close browser after task - don't leave it idle

安全使用建议

This skill is coherent with its goal but requires strong caution: it reads your Firefox profile and exports live X/Twitter session cookies to disk, and it may terminate Firefox to copy the cookie DB. Only run it on a machine you fully control (not shared or CI), inspect the scripts yourself, and install Playwright in an isolated environment. After use, securely delete the exported cookie file (default ./secrets/x-cookies.json) and any screenshots or storage_state files. Consider creating a dedicated, disposable Firefox profile for this purpose and avoid running the export on a profile containing other important accounts. If you are uncomfortable with local cookie extraction or pkill behavior, do not install/use this skill.

功能分析

Type: OpenClaw Skill Name: ganidhuz-foxx Version: 1.0.0 The skill bundle contains a script (`export-x-cookies.sh`) that terminates the Firefox process and extracts sensitive session cookies from the user's local `cookies.sqlite` database. While this is documented as a feature to enable authenticated browsing on X/Twitter without an API key, the automated extraction of session tokens is a high-risk behavior. The Playwright automation script (`playwright-firefox-control.py`) provides a generic interface to perform arbitrary actions using these credentials, which could be leveraged for unauthorized account access if the agent is misdirected.

能力评估

✓ Purpose & Capability

The name/description (browse X/Twitter via Firefox with cookie injection) aligns with the included scripts: a cookie exporter (reads Firefox's cookies.sqlite), a Playwright controller for Firefox, and a small environment check script. There are no unrelated credentials, external APIs, or surprising binaries requested.

ℹ Instruction Scope

The SKILL.md explicitly instructs the agent to extract cookies from the user's Firefox profile, kill Firefox (pkill -f firefox) before copying the DB, and run Playwright to drive Firefox. Those actions are necessary for the stated approach but are intrusive and access highly sensitive local data (session cookies). The instructions do not send cookies to remote endpoints; they store them locally.

✓ Install Mechanism

No install spec is provided (instruction-only). Playwright is required per README (pip install + playwright install firefox) but nothing is downloaded by the skill itself. All code is local and readable.

ℹ Credentials

The skill requests no declared environment variables, but the scripts will read the user's Firefox profile and cookies.sqlite (auto-detection includes snap and ~/.mozilla paths) and accept optional env vars (FIREFOX_PROFILE_PATH, FOXX_COOKIES_OUT). Accessing browser cookies is proportional to the feature but is high sensitivity and should be justified by the user before use.

ℹ Persistence & Privilege

The skill does not request always:true or system-wide privileges, but it does create local files (default ./secrets/x-cookies.json and validation screenshots) and will kill Firefox if running. Persisting session cookies on disk is risky (they can be reused to impersonate your session) and the skill may create profile directories or files if defaults are used.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install ganidhuz-foxx
安装完成后，直接呼叫该 Skill 的名称或使用 /ganidhuz-foxx 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

🦊 Initial release - Browse X/Twitter via Firefox cookie injection. No API key, no bot blocks.

元数据

Slug ganidhuz-foxx

版本 1.0.0

许可证 MIT-0

累计安装 1

当前安装数 1

历史版本数 1

常见问题

Ganidhuz-FoxX 是什么？

🦊 Ganidhuz-FoxX (Firefox + X combined lol). Browse X/Twitter using a real logged-in Firefox session via cookie injection. Supports profile viewing, tweet fe... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 321 次。

如何安装 Ganidhuz-FoxX？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install ganidhuz-foxx」即可一键安装，无需额外配置。

Ganidhuz-FoxX 是免费的吗？

是的，Ganidhuz-FoxX 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Ganidhuz-FoxX 支持哪些平台？

Ganidhuz-FoxX 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Ganidhuz-FoxX？

由 Ganidhu Kandepola（@ganidhuz）开发并维护，当前版本 v1.0.0。