← 返回 Skills 市场

PinchTab Browser Ops

Name: PinchTab Browser Ops
Author: wiszhou

作者 WisZhou · GitHub ↗ · v0.1.4 · MIT-0

cross-platform ✓ 安全检测通过

383

总下载

当前安装

版本数

在 OpenClaw 中安装

/install pinchtab-browser-ops

功能描述

Browser automation via PinchTab CLI (nav/snap/find/click/fill/press/text) with low-token accessibility-tree flow. Use when the user asks to operate websites,...

使用说明 (SKILL.md)

PinchTab Browser Ops

Use PinchTab as the default browser-control path.

Workflow

Start and verify PinchTab
Navigate and snapshot page structure
Operate elements by refs (click/fill/press) from fresh snapshots
Verify outcome with text, URL, and key UI markers

1) Instance lifecycle policy (mandatory)

Always reuse existing running instance first.

Rules:

Reuse current running instance/profile whenever it is operable.
Launch a new instance only when no operable instance exists.
Do not close browser instances after task completion.
Keep the instance alive for subsequent tasks and state continuity.

Check state first:

pinchtab health
pinchtab instances
pinchtab tab list

Only if unavailable, start service/instance:

pinchtab server
# then launch an instance only when needed

2) Navigate and map page

Open the target page:

pinchtab nav \x3Curl>
# or
pinchtab nav \x3Curl> --new-tab

Get actionable structure (preferred):

pinchtab snap -i -c

Use pinchtab find "\x3Clabel>" if the page is large, then confirm with a fresh snap before action.

3) Operate safely by refs

Prefer deterministic commands:

pinchtab click \x3Cref>
pinchtab fill \x3Cref> "..."
pinchtab press \x3Cref> Enter

Rules:

Re-snapshot after each major state change (modal open, route change, submit, tab switch).
Insert a short stabilization delay (1-2s) between critical actions on dynamic pages.
Do not reuse stale refs after navigation or rerender.
Retry at most 2 times with fresh snap; then ask for human intervention.

4) Verify and finish

Always validate completion using:

pinchtab text
pinchtab tab list

Check at least one concrete success signal (for example: “草稿箱(1)”, “保存成功”, changed URL, expected title).

Login/CAPTCHA policy

Require user to complete login, QR scan, SMS code, CAPTCHA, or 2FA manually in local browser.
Do not request, store, or relay one-time codes.
Resume automation only after user confirms “已登录”.

Fallback policy

If strict nav/snap/find/click/fill/press/text cannot progress:

Recheck page state and auth state.
Ask user for one manual step (focused unblock only).
Use eval only when explicitly approved and only for short-lived unblock; revert to normal flow immediately.

Resource map

小红书长文发布标准流程（标题\x3C=20、正文描述、话题、暂存离开）: references/xiaohongshu-longform.md

安全使用建议

This skill appears internally consistent for driving a local PinchTab CLI to automate web tasks (including posting drafts on 小红书). Before installing: (1) Ensure you trust and have installed the pinchtab CLI from a trusted source — the skill assumes that binary but provides no install or verification steps. (2) Be aware the skill's workflow intentionally keeps browser instances/profiles alive to preserve login state; if that persistence is undesirable, avoid reuse or close instances manually. (3) The skill says it will not request or store OTPs/CAPTCHAs — still avoid entering sensitive credentials via any automated path and perform 2FA/logins manually as instructed. (4) The skill owner/source is unknown and there is no homepage; if you need higher assurance, ask the author for the pinchtab CLI install instructions, signed release link, or source code for review, or restrict the skill's autonomous invocation.

功能分析

Type: OpenClaw Skill Name: pinchtab-browser-ops Version: 0.1.4 The skill bundle provides browser automation workflows using the PinchTab CLI, specifically for navigating websites and publishing content on Xiaohongshu. It includes explicit safety policies requiring manual user intervention for logins and 2FA, and it lacks any indicators of data exfiltration, unauthorized persistence, or malicious command execution in SKILL.md or references/xiaohongshu-longform.md.

能力评估

✓ Purpose & Capability

Name/description match the SKILL.md: the skill provides step-by-step PinchTab CLI browser automation (nav/snap/find/click/fill/press/text) and the instructions only reference the PinchTab commands and the targeted site (xiaohongshu). No unrelated environment variables, binaries, or config paths are requested.

ℹ Instruction Scope

Instructions stay within browser automation scope (navigate, snapshot, operate refs, verify). They explicitly forbid requesting/storing one-time codes and require manual login for CAPTCHAs/2FA. The workflow mandates reusing browser instances and keeping them alive — this is coherent for session continuity but implies persistent authenticated state which is a privacy/attack-surface consideration.

✓ Install Mechanism

No install spec or downloaded code is included (instruction-only). That minimizes disk-write risk. However, the skill assumes a local 'pinchtab' CLI is available; the skill provides no guidance for installing or verifying that binary.

✓ Credentials

The skill requests no environment variables or credentials in metadata and the SKILL.md does not ask for secrets. This is proportionate to its stated purpose. It does rely on the local user's browser session (kept alive), so credentials reside in the local browser, not in the skill.

ℹ Persistence & Privilege

Skill is not always: true and does not request system-wide privileges. The recommended behavior to keep browser instances alive and reuse profiles increases persistence of authenticated sessions (intentional for automation). Autonomous invocation of the skill is allowed by default (platform standard) — if you are concerned about automated runs reusing logged-in sessions, restrict invocation or monitor runs.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install pinchtab-browser-ops
安装完成后，直接呼叫该 Skill 的名称或使用 /pinchtab-browser-ops 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v0.1.4

Harden XHS longform flow: 1-2s pacing, ProseMirror-first body write, strict description-box targeting with 0/1000->N/1000 verification, relevance-aware topic tagging, and step-by-step confirmation mode.

v0.1.3

XHS correction: do not force topic-picker selection and do not hardcode #openclaw. Append summarized hashtags directly in description.

v0.1.2

Add XHS longform end-to-end publishing SOP: title<=20, humanized body, one-click layout, description field targeting, hashtag/topic rules, and draft-save verification.

v0.1.1

Policy update: always reuse existing browser instance, only launch when none operable, and never close instance after task.

v0.1.0

Initial release: PinchTab-first browser automation workflow with login policy, retry rules, and 小红书长文 SOP.

元数据

Slug pinchtab-browser-ops

版本 0.1.4

许可证 MIT-0

累计安装 2

当前安装数 2

历史版本数 5

常见问题