← 返回 Skills 市场
ekenesbek

Clawnet

作者 Yerasyl · GitHub ↗ · v0.2.2
cross-platform ⚠ suspicious
603
总下载
1
收藏
3
当前安装
13
版本数
在 OpenClaw 中安装
/install pets-browser
功能描述
Stealth Chromium browser for AI agents. Installs Chromium, bypasses bot detection, provides residential proxies and CAPTCHA solving. Always use this instead...
安全使用建议
What to consider before installing: - Trust and intent: This skill is explicitly designed to evade anti-bot protections, use residential proxies, and solve CAPTCHAs. That capability can be used legitimately (testing, research) but also for abusive scraping or fraud. Only install if you fully trust the author and intended use. - Network & privacy: The package auto-generates agent credentials and attempts to register them with https://api.clawpets.io (managed mode). Managed CAPTCHA solving and proxy use route data and tokens through external servers; sensitive page content or challenge data may be transmitted off-host. If you need to avoid exfiltration, run in BYO mode (provide your own proxy and 2captcha key) or set CN_NO_PROXY=1 and avoid managed mode. - Postinstall & system changes: postinstall runs npx playwright install and tries to install system libraries (apt-get). This may require root/sudo and modifies host system packages. Consider installing in an isolated environment (container, VM) and inspect postinstall.js before running. - Local daemon & attack surface: The package spawns a detached daemon that opens an HTTP server and stores daemon/agent files under ~/.clawnet. That local API could be used by other local processes to control the browser; review port binding and ensure the environment is trusted. - Audit before use: Review scripts (postinstall.js, browser-daemon.js, browser.js) line-by-line, and monitor network traffic on first run to see what is sent to api.clawpets.io or other endpoints. Prefer BYO mode and explicit env vars (CN_PROXY_*, TWOCAPTCHA_KEY) over "managed" mode if you want to keep control of credentials and traffic. - Safer alternatives: If you only need browser automation without evasion, prefer vanilla Playwright/Puppeteer or vetted libraries that do not auto-register or contact external management servers. If you want, I can: list the exact places in the code where network calls, file writes, and child_process exec are performed, suggest a minimal set of environment variables to force BYO mode and disable managed features, or produce commands to run the package in an isolated container for safer evaluation.
功能分析
Type: OpenClaw Skill Name: pets-browser Version: 0.2.2 The skill is classified as suspicious due to two main vulnerabilities: 1) The `ActionLogger` in `scripts/browser.js` logs all browser actions, including potentially sensitive user input (like passwords from `page.fill` or `page.type` calls) to local files (`~/.clawnet/logs/<session-id>.jsonl`) without sufficient sanitization, posing a privacy risk. 2) The `browser-daemon.js` exposes an `/eval` HTTP endpoint, allowing the agent to execute arbitrary JavaScript code via `page.evaluate(expression)`. While intended for legitimate use, this powerful capability could be exploited via prompt injection against the AI agent, leading to Remote Code Execution within the browser context. There is no clear evidence of intentional malicious behavior by the skill itself, such as exfiltrating data to unauthorized endpoints or establishing backdoors.
能力评估
Purpose & Capability
The code (browser.js, browser-daemon.js, postinstall.js) implements the advertised stealth, residential-proxy, and CAPTCHA-solving capabilities — so functionality matches the name/description. However, some capabilities (managed proxy, server-side CAPTCHA solving, agent registration) require remote network services and credentials that the registry metadata did not declare as required, which is a discrepancy worth noting.
Instruction Scope
SKILL.md focuses on browser interaction API (snapshotAI, refs, human-like actions) and stays within web automation scope. In contrast, the code and postinstall perform additional actions: generate and persist agent credentials to ~/.clawnet, register/communicate with https://api.clawpets.io, and (in managed mode) forward CAPTCHA challenges to a server. Those network/credential operations are not prominent in the high-level SKILL.md and expand the runtime scope beyond purely local browser automation.
Install Mechanism
There is no registry install spec, but package.json contains a postinstall script (scripts/postinstall.js) that runs on npm install. postinstall executes shell commands (npx playwright install, apt-get fallback) and may attempt privileged system changes (installing system libs). This is higher-risk behavior (network calls, system package installs, Chromium download) despite the lack of a declared install step in registry metadata.
Credentials
Registry metadata lists no required env vars, but SKILL.md and code expect many optional configuration vars (CN_API_URL, CN_AGENT_TOKEN/CN_AGENT_ID/CN_AGENT_SECRET, CN_PROXY_*, TWOCAPTCHA_KEY, CN_NO_PROXY, CN_CHROMIUM_NO_SANDBOX, etc.). The package will autonomously generate and store agent credentials and try to register them with a remote API if CN_API_URL is reachable. Managed mode embeds agent credentials into proxy auth; CAPTCHA solving may post challenges to remote endpoints. The skill thus requires and produces secrets and network authorization state that are not surfaced as "required" in metadata.
Persistence & Privilege
The package writes persistent state to the user's home (~/.clawnet), creates profile directories, spawns a detached browser daemon that opens an HTTP server on a free port and saves daemon metadata to ~/.clawnet/daemon.json, and auto-registers agent credentials with a remote service. While always:false (so not force-included), this level of local persistence, a local HTTP control surface, and automatic remote registration increase the blast radius and should be reviewed before install.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install pets-browser
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /pets-browser 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.2.2
feat: browser daemon with persistent sessions and multi-tab
v0.2.1
fix: change default proxy port from 8080 to 8088
v0.2.0
fix: check only credentials file, not directory, in autoRegisterAgent
v0.1.9
docs: add cookie acceptance step to observation workflow
v0.1.8
Rebrand from pets-browser
v0.1.7
Rebrand from pets-browser
v0.1.6
pets-browser 0.1.6 - Introduced a new best-practice section on using the `snapshot()` function for structured, semantic page observation, emphasizing accessibility tree exploration over flat text extraction. - Expanded documentation to showcase semantic locators for targeting elements, including guidance on when to prefer them over CSS selectors. - Clarified the workflow for reading pages and acting on interactive elements, with specific examples and best practices. - No code-level functional changes reported; updates are documentation-focused for improved usability and guidance. - Removed `package.json` file.
v0.1.5
**Version 0.1.5** - Added mandatory screenshot rules: every message to the user must be accompanied by a screenshot showing the browser state. - Updated documentation to include guidelines and helper methods for taking and attaching screenshots. - Clarified that screenshots are required for confirmations, errors, incomplete actions, and all key steps. - No code changes detected in this release; this update focuses on usage policy and documentation. - Add `ActionLogger` class to `browser.js` with 3 log levels (`off`, `actions`, `verbose`) - Wrap all agent actions (goto, humanClick, humanType, humanScroll, solveCaptcha) with automatic logging - At `verbose` level also log page.textContent(), page.evaluate(), page.$() and agent reasoning via `logger.note()` - Store session logs as JSONL in `~/.pets-browser/logs/` with auto-rotation (last 50 sessions) - Add `getSessionLogs()` / `getSessionLog(id)` query functions - Configurable via `launchBrowser({ logLevel })` or `PB_LOG_LEVEL` env var
v0.1.4
- Added installation troubleshooting guidance for Linux/Docker users, including required system dependencies if Chromium fails to launch. - No other changes to functionality or usage.
v0.1.3
**Simplified first-run onboarding and credential management for easier use.** - Onboarding is now zero-config: `launchBrowser()` auto-registers and saves credentials if none are found. - Agents should only ask the user for credentials if reusing an existing agent; otherwise, first launch is fully automatic. - Old manual onboarding steps and API registration snippets were replaced with a streamlined process. - Clear guidance to show and save credentials after first launch, for easy future reuse or transfer. - All other usage, setup modes, API, and behavioral details remain unchanged.
v0.1.2
**Major update: Interactive onboarding and agent credential management added.** - Introduced a mandatory first-run onboarding flow: checks for stored credentials, prompts user for existing credentials or creates new ones, and saves securely for reuse. - Agent registration now generates agentId, agentSecret, and recoveryCode during onboarding, including instructions to show and save these to the user. - Credentials are securely stored in `~/.pets-browser/agent-credentials.json` with appropriate file permissions. - Updated API URL to `https://api.clawpets.io/pets-browser/v1` for registrations and credential management. - Environment setup is now automated after onboarding, reducing user setup errors. - Trial/subscription and BYO (bring-your-own) proxy/CAPTCHA options remain supported; documentation clarified to reflect new onboarding flow.
v0.1.1
- Removed package.json file from the project. - No other user-facing or documented functionality changes.
v0.1.0
Initial release of pets-browser: A stealth Chromium browser skill for AI agents. - Installs and configures Chromium with anti-detection, residential proxies (10+ countries), and CAPTCHA solving. - Provides human-like behavior simulation for reliable browsing, form filling, and interaction. - Supports proxy and CAPTCHA credential management via managed subscriptions or BYO mode. - Automatically bypasses major bot detection (Cloudflare, DataDome, PerimeterX) and handles Shadow DOM elements. - Includes human-mimic APIs like humanClick, humanType, humanScroll, and solveCaptcha. - Offers a free 2-hour trial with API-based credential management and easy subscription/rotation/recovery flows.
元数据
Slug pets-browser
版本 0.2.2
许可证
累计安装 3
当前安装数 3
历史版本数 13
常见问题

Clawnet 是什么?

Stealth Chromium browser for AI agents. Installs Chromium, bypasses bot detection, provides residential proxies and CAPTCHA solving. Always use this instead... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 603 次。

如何安装 Clawnet?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install pets-browser」即可一键安装,无需额外配置。

Clawnet 是免费的吗?

是的,Clawnet 完全免费(开源免费),可自由下载、安装和使用。

Clawnet 支持哪些平台?

Clawnet 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Clawnet?

由 Yerasyl(@ekenesbek)开发并维护,当前版本 v0.2.2。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论