← 返回 Skills 市场
pipedream941

RegexVisualizer

作者 Zhong Siyao · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
611
总下载
2
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install regex-visualizer
功能描述
Render Regulex-style railroad diagrams for a JavaScript regular expression and export the exact same SVG/PNG as the Regulex-Plus web UI (docs/index.html) "Ex...
安全使用建议
This skill appears to do exactly what it claims: run a local Node script that loads the included Regulex HTML in a headless browser and writes SVG/PNG output. Before installing, note: (1) npm install will add puppeteer-core and its dependencies to the skill folder; (2) you must have a local Chrome/Edge installed (or set CHROME_PATH/--chrome); (3) the script launches the browser with --no-sandbox (common for headless automation) — only run it on trusted content and in a safe environment; (4) review assets/regulex.html if you have concerns about remote resource loading (the packaged file appears self-contained). If you only need simple diagram rendering and prefer fewer dependencies, consider alternative tools that don't require a headless browser, but from a coherence/security standpoint this package is consistent with its purpose.
功能分析
Type: OpenClaw Skill Name: regex-visualizer Version: 1.0.0 The skill is classified as suspicious due to significant vulnerabilities in `scripts/render.mjs`. The script uses `writeFileSync` with a user-controlled `--out` argument, which, when combined with `path.resolve()`, could allow an attacker to write arbitrary SVG/PNG content to arbitrary file system locations (e.g., using `../` or absolute paths). Additionally, the `--chrome` argument allows specifying an executable path for the headless browser, which could lead to Remote Code Execution if a malicious path is provided. While there is no clear evidence of intentional malicious behavior like data exfiltration or persistence, these vulnerabilities present a high risk of abuse.
能力评估
Purpose & Capability
Name/description match the implementation: the skill embeds Regulex-Plus HTML and provides a Node script that launches puppeteer-core to produce the same SVG/PNG output as the web UI. Required tooling (Node, local Chrome/Edge) is appropriate and documented. No unrelated env vars, binaries, or credentials are requested.
Instruction Scope
SKILL.md instructs running the included scripts, installing puppeteer-core, and supplying a regex/out path. The runtime instructions only read the included assets/regulex.html and write the requested <out>.svg/.png files. There is no instruction to read arbitrary user files, environment secrets, or transmit data to external endpoints. Note: since the HTML is rendered by a browser, if that HTML referenced remote assets it could cause network fetches; the bundled assets appear self-contained.
Install Mechanism
No automatic install spec is present (instruction-only), but package.json depends on puppeteer-core and SKILL.md documents running npm install. This is a normal, proportionate approach. puppeteer-core does not bundle Chromium so the script correctly requires a local browser; package-lock is included and references npm registry packages (expected).
Credentials
The skill requests no credentials or config paths. It optionally respects CHROME_PATH / PUPPETEER_EXECUTABLE_PATH or a --chrome flag to locate the browser, which is reasonable and proportional to launching puppeteer. No secrets are required or accessed.
Persistence & Privilege
always is false and disable-model-invocation is false (normal). The skill does not attempt to persist system-wide configuration, modify other skills, or request permanent elevated presence.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install regex-visualizer
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /regex-visualizer 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release — export Regulex-style railroad diagrams to PNG and SVG by reusing the original Regulex-Plus web UI renderer. - Generates diagrams from JavaScript regexes, supporting flags i/m/g. - Outputs match the Regulex-Plus web UI's "Export Image" feature exactly. - Command-line interface enables export to SVG and/or PNG. - Surfaces UI error messages for invalid regexes. - No custom rendering; all output is from the embedded Regulex-Plus UI.
元数据
Slug regex-visualizer
版本 1.0.0
许可证
累计安装 0
当前安装数 0
历史版本数 1
常见问题

RegexVisualizer 是什么?

Render Regulex-style railroad diagrams for a JavaScript regular expression and export the exact same SVG/PNG as the Regulex-Plus web UI (docs/index.html) "Ex... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 611 次。

如何安装 RegexVisualizer?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install regex-visualizer」即可一键安装,无需额外配置。

RegexVisualizer 是免费的吗?

是的,RegexVisualizer 完全免费(开源免费),可自由下载、安装和使用。

RegexVisualizer 支持哪些平台?

RegexVisualizer 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 RegexVisualizer?

由 Zhong Siyao(@pipedream941)开发并维护,当前版本 v1.0.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论