← 返回 Skills 市场

Use agentbrowser to convert html to image

Name: Use agentbrowser to convert html to image
Author: upwell

作者 upwell · GitHub ↗ · v1.0.0

cross-platform ⚠ suspicious

384

总下载

当前安装

版本数

在 OpenClaw 中安装

/install html-to-image

功能描述

Takes a URL, HTML file path, or raw HTML code and generates a printable image.

使用说明 (SKILL.md)

HTML to Image Skill (via agent-browser)

This skill utilizes OpenClaw's agent-browser composition to render a URL, local HTML file, or raw HTML string into an image. It executes a lightweight Bash script wrapper.

Usage Guide

When using this skill to generate an image, provide the source_type and source_content.

source_type: The content format (url, file, or code).
source_content: The target URL, absolute file path, or HTML code block.
format: The desired image format (png, jpeg, or webp). Default is png.
width: The width of the browser viewport. Default is 1200px.
full_page: Set to true to take a full page screenshot instead of just the viewport.

安全使用建议

This skill appears to perform the advertised task, but exercise caution before installing or running it: - The script calls 'npx --yes agent-browser' at runtime, which will download and execute code from npm. Only proceed if you trust the 'agent-browser' package and the npm environment, or modify the skill to pin a known-safe version or vendor the renderer. - The metadata does not declare that Node/npx are required; ensure your environment has Node and npx if you intend to use it. - Avoid passing URLs that contain credentials (user:pass@host) because the script may echo the constructed command on error and leak those credentials. - The skill can access local files (it accepts absolute file paths). Do not allow it to run on sensitive filesystem paths unless you trust the environment and the renderer. Recommended mitigations: pin or vendor the agent-browser executable, declare Node/npx as required binaries in metadata, remove or sanitize command-string output on error, and run the skill in a restricted/sandboxed environment if you cannot fully trust npm package provenance.

功能分析

Type: OpenClaw Skill Name: html-to-image Version: 1.0.0 The skill contains a critical shell injection vulnerability in `src/main.sh` because it uses `eval` to execute a command string constructed with unsanitized user input (`source_content`). While the script's logic is consistent with its stated purpose of converting HTML or URLs to images using `agent-browser`, the lack of input validation allows for arbitrary command execution on the host system. No clear evidence of intentional malice or data exfiltration was found, but the implementation is highly insecure.

能力评估

⚠ Purpose & Capability

Name/description match the implementation (render URL/file/code -> image). However the runtime script depends on the 'npx' / Node toolchain (it runs npx --yes agent-browser) and network access to fetch packages, yet the skill metadata declares no required binaries or install steps. That omission is incoherent: a legitimate implementer should declare Node/npx as required or vendor the renderer.

ℹ Instruction Scope

Instructions and the script stay within the stated task: open a URL or local file or a temp HTML file and take a screenshot. The script reads local files (file:// handling) and writes temp files and an output file in the current working directory, which is expected. Two minor but important issues: (1) on error the script echoes the full constructed command (including the target URL), which can leak credentials embedded in URLs; (2) accepting raw HTML via CLI and writing it into a temp file without sanitization is expected for this task but should be noted for privacy and injection considerations.

⚠ Install Mechanism

No install spec is provided, but the script uses npx --yes to fetch and run 'agent-browser' at runtime. npx will download and execute code from the npm registry (or cache) — this is effectively executing remote code on-demand. That is proportional to the purpose only if 'agent-browser' is trusted and pinned; using npx --yes without pinning or an explicit install spec increases risk of supply-chain or remote-code execution.

✓ Credentials

The skill does not request environment variables or credentials in metadata, which is appropriate. Note: because the script prints the constructed command on failure, secrets embedded in target URLs (e.g., https://user:pass@host) could be revealed in error output.

✓ Persistence & Privilege

The skill is not always-enabled and does not request persistent or elevated platform privileges. It only writes temp files and an 'output' directory under the current working directory and cleans up temp HTML files; that scope is proportional.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install html-to-image
安装完成后，直接呼叫该 Skill 的名称或使用 /html-to-image 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release of the html-to-image skill. - Converts a URL, local HTML file, or raw HTML code into a printable image. - Supports output formats: PNG (default), JPEG, and WebP. - Allows customization of viewport width and full-page capture options. - Returns a JSON response with the absolute path to the generated image and metadata.

元数据

Slug html-to-image

版本 1.0.0

许可证 —

累计安装 2

当前安装数 2

历史版本数 1

常见问题