← 返回 Skills 市场
felipegoulu

Passo - Remote Browser Access

作者 Felipe Goulu · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
593
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install passo
功能描述
Enables secure remote access to a browser on your server for manual tasks like logins, 2FA, and captchas via a protected URL.
安全使用建议
This skill is coherent with its stated purpose but carries real risk. Before installing: (1) inspect the install.sh contents (do not run curl | bash without review); (2) test in an isolated VM or disposable server, not a production host; (3) confirm the legitimacy and privacy policy of getpasso.app and what data it stores and shares; (4) assume any remote user with access can view cookies, sessions, and 2FA flows — only grant access to trusted people and revoke immediately after use; (5) prefer a self‑hosted or audited installer, and consider alternatives that don't expose a full browser session to third parties.
功能分析
Type: OpenClaw Skill Name: passo Version: 1.0.0 The skill is suspicious due to the installation method specified in `SKILL.md`. It instructs the agent to execute an external script directly via `curl -fsSL ... | bash` from `https://raw.githubusercontent.com/felipegoulu/passo-client/main/install.sh`. This constitutes a critical remote code execution (RCE) vulnerability and a direct prompt injection against the agent, as it allows arbitrary, unreviewed code from an untrusted external source to be executed on the host system. While the stated purpose of 'Remote Browser Access' is not inherently malicious, this installation method poses a significant supply chain risk and could lead to data exfiltration, persistence, or other harmful actions if the external script were compromised or designed with malicious intent.
能力评估
Purpose & Capability
Name/description align with the SKILL.md: it intends to install a local browser tunnel and provide a protected URL for manual actions. The extra step of signing up at getpasso.app and installing Chromium/VNC is coherent with that purpose, though those external dependencies are not declared in registry metadata.
Instruction Scope
The instructions tell an operator to run a remote install script (curl https://raw.githubusercontent.com/.../install.sh | bash) which will install browser/VNC and create a tunnel. That script will contact getpasso.app and prompt account signup; the instructions therefore create network-exposed remote access to a full browser session (cookies, logins, 2FA) which is a significant data‑exposure risk. The SKILL.md does not show the install script contents or what it transmits/authorizes.
Install Mechanism
No install spec is in the skill bundle, but the runtime instructions explicitly direct piping a script from GitHub raw into bash. Even though GitHub is a known host, piping remote scripts to shell is high risk because arbitrary code will be executed on the host; the install will also add heavy system components (Chromium, VNC, tunnel) that increase attack surface.
Credentials
The skill itself does not request environment variables or credentials. However, it requires sign-up at getpasso.app and uses Google sign-in for access control; that implies external authentication and possible data collection by the service. The skill does not declare what account data or tokens the external service will store or how long access persists.
Persistence & Privilege
The skill does not request always:true, does not include code that modifies other skills, and is instruction-only. It does, however, create persistent system services on the host via the external installer (per the README), so installation will change the host but that behavior is described in the instructions.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install passo
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /passo 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Passo 1.0.0 initial release - Launches remote browser access via a secure, server-hosted tunnel. - Enables trusted users to perform manual actions (logins, 2FA, captchas) in a browser on your server. - Easy installation with automatic setup of required dependencies. - Simple command-line control: start, stop, and status. - 30-day free trial, then $5/month subscription.
元数据
Slug passo
版本 1.0.0
许可证
累计安装 0
当前安装数 0
历史版本数 1
常见问题

Passo - Remote Browser Access 是什么?

Enables secure remote access to a browser on your server for manual tasks like logins, 2FA, and captchas via a protected URL. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 593 次。

如何安装 Passo - Remote Browser Access?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install passo」即可一键安装,无需额外配置。

Passo - Remote Browser Access 是免费的吗?

是的,Passo - Remote Browser Access 完全免费(开源免费),可自由下载、安装和使用。

Passo - Remote Browser Access 支持哪些平台?

Passo - Remote Browser Access 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Passo - Remote Browser Access?

由 Felipe Goulu(@felipegoulu)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论