← 返回 Skills 市场

MoreLogin

Name: MoreLogin
Author: moreloginbrowser

作者 MoreLogin Antidetect Browser · GitHub ↗ · v1.0.3

cross-platform ✓ 安全检测通过

434

总下载

当前安装

版本数

在 OpenClaw 中安装

/install morelogin

功能描述

Manage MoreLogin anti-detect browser profiles and cloud phones through the official Local API (http://127.0.0.1:40000), including browser profile lifecycle,...

安全使用建议

This skill appears to do what it claims: a local CLI to control MoreLogin's Local API. Before installing, confirm you want to run a Node CLI that will: (1) call http://127.0.0.1:40000 (local only) to manage profiles/cloud phones, (2) install Node packages (npm install) which by default will also download devDependencies like Playwright/puppeteer that are large, and (3) optionally use adb (the brew formula installs android-platform-tools). Recommended precautions: run npm install with NODE_ENV=production or remove devDependencies if you only need the CLI; review bin/morelogin.js and common helpers if you want to be sure of specific network calls; do not commit any API tokens or MORELOGIN_TOKEN into repositories—store them in your secret manager if needed; verify the MoreLogin local API port on your system (docs show 40000 in some places and 5050 in others) and ensure MoreLogin desktop is the expected version. If you need a stricter footprint, consider running the CLI in an isolated environment (container or VM) and audit network access during use.

功能分析

Type: OpenClaw Skill Name: morelogin Version: 1.0.3 The skill is designed to manage MoreLogin anti-detect browser profiles and cloud phones through their official local API (http://127.0.0.1:40000). All network communication from the skill's core logic (`bin/morelogin.js`, `bin/common.js`, `bin/cloudphone-commands.js`) is directed to this local loopback address. Crucially, the `SKILL.md` and `bin/morelogin.js` explicitly state that the `cloudphone exec` command, which could execute arbitrary shell commands on cloud phones, has been removed from this skill. Furthermore, input validation (e.g., regex for `packageName` in `bin/cloudphone-commands.js`) is present to prevent injection. The documentation also includes clear security instructions for the AI agent, such as not exposing sensitive data and adhering to execution guardrails. While `adb` is a required binary, its use is mediated by the MoreLogin local API, and the skill itself does not directly expose raw `adb` command execution to user input. There is no evidence of intentional harmful behavior, data exfiltration to external endpoints, or persistence mechanisms.

能力评估

✓ Purpose & Capability

Name/description match the implemented artifacts: a Node CLI that calls the MoreLogin Local API on localhost and exposes browser profile, cloud phone, proxy/group/tag management. Declared requirements (node, adb) and the brew install of android-platform-tools are appropriate for ADB-related features. Minor documentation inconsistencies exist (some docs mention port 5050 while SKILL.md/README-OFFICIAL-API use 40000), but this looks like stale docs rather than malicious mismatch.

ℹ Instruction Scope

SKILL.md and the included docs constrain operations to the MoreLogin Local API (localhost) and describe expected flows (start/status/close, cloudphone info/ADB metadata, CDP connections). The instructions do not direct reading of unrelated host files or exfiltration. Notes: several docs/INSTALL.md suggest optional local config steps (TOOLS.md, optional env vars like MORELOGIN_API_URL/MORELOGIN_TOKEN) and include examples that mention ADB commands — review these optional steps to avoid accidentally persisting tokens in repo/config files.

ℹ Install Mechanism

Install steps are npm install for the CLI and a Homebrew formula for adb (android-platform-tools). These are standard for a Node-based CLI that interacts with local devices. Caveat: npm install will pull devDependencies listed (playwright, puppeteer-core) which are large and may download additional browser artifacts; consider installing with production mode or pruning dev deps if you want a minimal footprint.

✓ Credentials

The skill does not require secrets or external service credentials to operate; required binaries (node, adb) match the feature set. Some docs show optional env vars and advise storing an API token in config (user-provided), but these are optional and not declared as required. No unrelated credential names or excessive env access are requested.

✓ Persistence & Privilege

Skill is not force-included (always: false) and does not declare system-wide modifications. It provides a CLI and examples that run on demand; nothing in the repo indicates it will persistently modify other skills or global agent settings.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install morelogin
安装完成后，直接呼叫该 Skill 的名称或使用 /morelogin 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.3

**Removed legacy CLI entry points and restricted direct command execution for improved security.** - Removed CLI files: `bin/cloudphone.js`, `bin/start-profile.js`, `bin/test-api.js`. - Disabled local ADB/SSH connection methods and direct `cloudphone exec` capability. - Updated documentation to reflect removal of direct command execution endpoints. - Focused all usage and automation guidance on supported Local API methods only.

v1.0.2

- Added initial example scripts covering core use cases (browser automation, multi-tab, form handling, and scraping) in the examples directory. - Introduced bin/cloudphone-commands.js for cloud phone command operations. - Improved discoverability and onboarding by providing ready-to-run sample code for common automation scenarios.

v1.0.1

- Internal structure update: Added .git repository and metadata (82 new files added, 5 removed document files). - Documentation: Updated SKILL.md to instruct strictly referencing `local-api.yaml` and `API-CONTRACT.md` as the canonical source for API parameters. - Usage guidelines: Added directive to always verify required request key names and types ("id" vs "ids", object vs array) before constructing API calls. - No runtime or end-user visible feature changes.

v1.0.0

Initial release of the MoreLogin skill. - Manage browser profiles and cloud phones via the official MoreLogin Local API. - Supports browser profile lifecycle, fingerprint refresh, cache management, CDP integration. - Cloud phone management: power operations, ADB, app and file operations. - Includes proxy, group, and tag API management. - Requires node, ADB, and MoreLogin Desktop v2.15.0+ (logged in). - Provides both CLI and direct API usage examples for workflows.

元数据

Slug morelogin

版本 1.0.3

许可证 —

累计安装 0

当前安装数 0

历史版本数 4

常见问题

MoreLogin 是什么？

Manage MoreLogin anti-detect browser profiles and cloud phones through the official Local API (http://127.0.0.1:40000), including browser profile lifecycle,... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 434 次。

如何安装 MoreLogin？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install morelogin」即可一键安装，无需额外配置。

MoreLogin 是免费的吗？

是的，MoreLogin 完全免费（开源免费），可自由下载、安装和使用。

MoreLogin 支持哪些平台？

MoreLogin 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 MoreLogin？

由 MoreLogin Antidetect Browser（@moreloginbrowser）开发并维护，当前版本 v1.0.3。