← 返回 Skills 市场
188
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install sjht-web-screenshot
功能描述
Capture screenshots of web pages running on local or remote servers using Puppeteer in headless Chromium. Use when user asks to screenshot web pages, capture...
安全使用建议
This skill appears to do what it says: run a Node script that drives headless Chromium to capture screenshots and optionally perform SPA login. Before using it: 1) Verify and install dependencies (Node, puppeteer-core, and a Chromium binary at the expected path) since the registry metadata omitted them. 2) Do not point baseUrl to untrusted third-party sites — the script runs arbitrary JS in-page (including calling app internals) which could access page-local secrets/cookies. 3) Protect credentials: the login credentials live in the config JSON you pass; treat that file securely and avoid storing plaintext secrets in shared locations (use ephemeral files or limited-permission directories). 4) Avoid writing outputDir as root-owned system paths unless intended. 5) Consider running the tool in a sandboxed container or VM because Chromium is launched with --no-sandbox (common for headless automation but reduces process isolation). If you want stronger assurance, request the publisher to declare required binaries in registry metadata and provide a vetted installation path for puppeteer-core.
功能分析
Type: OpenClaw Skill
Name: sjht-web-screenshot
Version: 1.0.0
The skill is a utility designed to capture screenshots of web pages, specifically targeting Single Page Applications (SPAs) that require authentication. It uses Puppeteer and Node.js to automate browser tasks, including form-based login and direct interaction with Vue/Pinia state stores to maintain session state during navigation. The code in `scripts/screenshot.js` and the instructions in `SKILL.md` are well-documented and align with the stated functionality, with no evidence of data exfiltration, backdoors, or malicious prompt injection.
能力评估
Purpose & Capability
The name/description, SKILL.md, and the included Node script all align: the tool captures screenshots, supports SPA form login and direct Pinia store login, and writes PNGs/result.json. One inconsistency: the registry metadata lists no required binaries/env but SKILL.md and the script clearly require Node, puppeteer-core, and a Chromium binary (e.g. /usr/bin/chromium-browser). This is likely an omission in metadata rather than malicious.
Instruction Scope
SKILL.md instructs running the included script with a JSON config file; the script reads only that provided config, navigates to baseUrl/pages, and writes screenshots/result.json to the configured outputDir. It executes arbitrary JS inside the target pages (page.evaluate) to set input values, call Pinia store methods, and invoke Vue router — this is necessary for the claimed SPA login/navigation features but means the skill will run code inside whatever page you point it to (so pointing at untrusted sites or injecting untrusted config could expose page-local secrets).
Install Mechanism
This is an instruction-only skill with a shipped script; there is no install hook or remote download. That keeps risk low. The SKILL.md asks you to ensure puppeteer-core and Chromium are present (no installer provided), so the operator must install those dependencies manually.
Credentials
The skill requests no environment variables or credentials from the runtime environment. The only credentials it uses are those you provide in the config JSON (username/password or storeLogin args). There are no other undeclared secrets or credentials in the files.
Persistence & Privilege
always is false and the skill doesn't attempt to modify agent/system-wide configuration. It creates files in the supplied outputDir (as expected). It does run Chromium with --no-sandbox flags (common for CI/headless usage) — not a privilege escalation request from the skill, but an operational note.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install sjht-web-screenshot - 安装完成后,直接呼叫该 Skill 的名称或使用
/sjht-web-screenshot触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
v1.0.0 — Major overhaul: Migrated from shell script to Node.js with Puppeteer, introducing robust SPA login and advanced screenshot automation.
- Replaced shell script (screenshot.sh) with a Node.js script (screenshot.js) using Puppeteer for modern browser control.
- Supports full login automation for Vue/React/Angular SPAs via CSS selector-based or store-based methods.
- Screenshots are configured via JSON, enabling batch capture with per-page wait, naming, and descriptions.
- Automatically generates a result.json metadata file with detailed capture info.
- Enhanced troubleshooting and advanced config options, such as custom login flows and capturing the login page itself.
元数据
常见问题
sjht-web-screenshot 是什么?
Capture screenshots of web pages running on local or remote servers using Puppeteer in headless Chromium. Use when user asks to screenshot web pages, capture... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 188 次。
如何安装 sjht-web-screenshot?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install sjht-web-screenshot」即可一键安装,无需额外配置。
sjht-web-screenshot 是免费的吗?
是的,sjht-web-screenshot 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
sjht-web-screenshot 支持哪些平台?
sjht-web-screenshot 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 sjht-web-screenshot?
由 Aowind(@aowind)开发并维护,当前版本 v1.0.0。
推荐 Skills