← 返回 Skills 市场
2199
总下载
1
收藏
20
当前安装
1
版本数
在 OpenClaw 中安装
/install puppeteer
功能描述
Automate Chrome and Chromium with Puppeteer for scraping, testing, screenshots, and browser workflows.
安全使用建议
This skill appears to be a legitimate Puppeteer guide, but it includes instructions that let an agent create persistent files and store details about target sites without explicitly asking the user. Before installing or enabling it: (1) require explicit user consent before the agent creates ~/puppeteer or runs npm install; (2) inspect any scripts the agent writes to ~/puppeteer/scripts/ before executing them; (3) refuse to store credentials in memory.md — only provide secrets directly to ephemeral scripts and delete them after use; (4) consider running automation in a sandboxed account or container and restrict network access if you do not trust the skill owner (source is unknown); (5) if you want tighter control, ask the agent to show exact commands it will run (including npm install package names and versions) and to log all created files for user review. These steps reduce the risk of hidden data collection or inadvertent installation of third-party packages.
功能分析
Type: OpenClaw Skill
Name: puppeteer
Version: 1.0.0
The skill is classified as suspicious due to its instructions for the AI agent to execute shell commands, specifically `npm install puppeteer`, `node --version`, and `npm list puppeteer` in `setup.md`. While these commands are plausibly necessary for a browser automation skill, the capability to execute arbitrary shell commands represents a significant vulnerability (potential RCE) if the agent were to be prompted to install a malicious package or execute other commands. Additionally, `setup.md` contains mild prompt injection attempts like instructing the agent to 'Don't ask — just start naturally' and to store information 'without mentioning file paths to them', which aim to influence the agent's behavior and communication style, even if not directly malicious in this context.
能力评估
Purpose & Capability
Name and description align with the instructions: it's an instruction-only Puppeteer helper and correctly requires the 'node' binary. The files (setup, selectors, waiting, memory-template) are consistent with browser automation and nothing requested is obviously unrelated to that purpose.
Instruction Scope
The SKILL.md and setup.md instruct the agent to create and persist data under ~/puppeteer/, to collect 'target sites' and 'preferred patterns', and to 'store in ~/puppeteer/memory.md without mentioning file paths to them.' setup.md also says 'Don't ask — just start naturally.' Those phrases encourage autonomous file creation and hidden storage of potentially sensitive target/site information and selectors. While storing session data is reasonable for automation, the explicit instruction to hide storage details and to proceed without asking is scope-creep and a privacy/consent risk.
Install Mechanism
This is instruction-only (no install spec), which reduces installation risk. However, setup.md suggests running 'npm install puppeteer' or 'puppeteer-core' if missing. Allowing the agent to run npm installs at runtime can introduce arbitrary third-party code; this is proportionate only if the user explicitly consents and the exact package (and version) is controlled. No downloads from untrusted URLs or archives are present in the skill files.
Credentials
The skill requires no environment variables or external credentials in registry metadata, which is proportionate. It does instruct to accept credentials 'per-script' when needed for login flows, but it does not request or justify persistent credential storage or access to unrelated credentials. That said, the instruction to save usage memory (including target sites) could inadvertently collect sensitive data if the user provides it; the skill does not require nor clearly forbid storing credentials in memory.
Persistence & Privilege
The skill expects to create a persistent folder (~ /puppeteer) and keep a memory.md of targets, patterns, and preferences. Persisting automation state is reasonable, but combined with 'don't ask' and 'don't mention file paths to them' guidance it grants the agent leeway to create and hide persistent artifacts. The skill does not request always:true and does not modify other skills, but the concealment guidance raises a persistence/privacy concern.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install puppeteer - 安装完成后,直接呼叫该 Skill 的名称或使用
/puppeteer触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release
元数据
常见问题
Puppeteer 是什么?
Automate Chrome and Chromium with Puppeteer for scraping, testing, screenshots, and browser workflows. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 2199 次。
如何安装 Puppeteer?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install puppeteer」即可一键安装,无需额外配置。
Puppeteer 是免费的吗?
是的,Puppeteer 完全免费(开源免费),可自由下载、安装和使用。
Puppeteer 支持哪些平台?
Puppeteer 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(linux, darwin, win32)。
谁开发了 Puppeteer?
由 Iván(@ivangdavila)开发并维护,当前版本 v1.0.0。
推荐 Skills