← 返回 Skills 市场
threads-skill
作者
gaojiongwenv587-beep
· GitHub ↗
· v1.0.3
· MIT-0
343
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install threads-skill
功能描述
Threads 平台全自動化操作套件。觸發詞:登錄、登出、檢查登錄、是否已登錄、切換帳號、清除Cookie、多帳號管理、搜索、查找、瀏覽首頁、刷一下、抓帖子、獲取帖子、看帖子詳情、查看用戶、用戶主頁、歷史回復、發帖、發布、寫帖子、po文、發Thread、帶圖發帖、點讚、轉發、回覆、評論、關注、批量回覆、批量評論、...
安全使用建议
This skill appears to be a CLI-based Threads automation tool, but the package contains only instructions (no scripts). Before using it: 1) Inspect the code on the linked GitHub repository and verify the scripts referenced by SKILL.md (scripts/*.py, chrome_launcher.py, reply_assistant.py) — do not run unknown scripts. 2) Confirm what the 'uv' binary refers to and whether you need to install it; SKILL.md uses 'uv run' but metadata only lists python3 and uv, and also mentions brew for tkinter without declaring it. 3) Be cautious about allowing access to your browser cookies or running delete-cookies/login flows — these touch sensitive authentication state. 4) If you plan to use the optional AI features, keep API keys out of world-readable files and prefer to supply credentials via secure environment variables or a credential manager; ask the publisher where credentials are stored and how they're transmitted. 5) Prefer running the tool in an isolated environment (VM/container) and audit network calls that the actual scripts make (especially external api_url endpoints) before granting any secrets or running automated posting actions.
功能分析
Type: OpenClaw Skill
Name: threads-skill
Version: 1.0.3
The skill bundle is classified as suspicious because SKILL.md provides detailed instructions for an AI agent to execute several Python scripts (e.g., scripts/cli.py, scripts/chrome_launcher.py) that are entirely missing from the bundle, and it references a hardcoded external script path on the user's desktop (~/Desktop/threads-filter-comment/filter-comment.py). This reliance on missing or external code for sensitive tasks like account management, cookie handling, and browser control is a significant security risk. Additionally, _meta.json contains a future-dated timestamp (2026), and the instructions include specific behavioral constraints that override user preferences, such as automatically skipping political content and enforcing Traditional Chinese (IOC: github.com/gaojiongwenv587-beep/threads-skills).
能力标签
能力评估
Purpose & Capability
The name/description (Threads automation) matches the runtime commands (login, post, like, search, batch reply). However the instructions rely on local Python scripts (scripts/*.py) and a 'uv' CLI that are not included in the skill bundle. The SKILL.md also references installing tkinter via brew (macOS) although brew is not listed as a required binary in metadata. Requiring 'uv' without explanation is unexpected.
Instruction Scope
The instructions tell the agent/user to launch a local Chrome debug instance, read and delete cookies, write and read local files (e.g. ~/.threads/replied_posts.json, ~/.threads-filter-comment.json, /tmp JSON files), and run many scripts that could post or scrape content. They also enable optional AI integration (api_url/api_key/model) implying external API calls and storage of credentials in local config, none of which are declared as required env vars. Because the actual scripts are not present, it's unclear what those scripts do — the SKILL.md gives broad permission to access browser state and local files, which is sensitive and not fully justified by the metadata.
Install Mechanism
There is no install spec (instruction-only), which is lower risk for arbitrary installs. However the runtime assumes local project files and a 'uv' binary; absent those, a user or agent might attempt to fetch/clone code from the declared homepage. The homepage is provided, but the skill does not instruct or declare a verified, trusted install source or release checksum.
Credentials
requires.env is empty, but the SKILL.md references optional AI credentials (api_url, api_key, model) and storing them in a config file. The skill will access browser cookies and session state (delete-cookies, login flows) and write files under the user's home directory. Requesting or storing API keys or accessing browser cookies are sensitive operations and should be explicitly declared; here they are not.
Persistence & Privilege
The skill is not always-enabled and does not claim privileged platform-wide changes. It does expect to create and maintain local state files (~/.threads/*, /tmp/*) and a replied-posts record, which is reasonable for this application. Autonomous invocation is allowed by default (normal), but combined with the other concerns increases potential impact.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install threads-skill - 安装完成后,直接呼叫该 Skill 的名称或使用
/threads-skill触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.3
**Major update: Removed all source scripts, documentation, and skill modules.**
- All core scripts, CLI tools, and Threads automation modules have been removed.
- Documentation files (e.g., README.md, CLAUDE.md) and skill description files have been deleted.
- The skill no longer includes any operational Python files or command interface.
- No usage, configuration, or automation functionality remains in this version.
v1.0.2
Initial release with full code and documentation.
- Added CLI scripts and all supporting modules for Threads automation.
- Skill is now fully structured with sub-skills for authentication, publishing, exploring, interaction, content ops, and batch replies.
- Complete documentation and usage guides included.
- Supports routing to sub-skills based on user intent.
- Enforces operational and language constraints, plus strict politics content prohibitions.
v1.0.1
Version 1.0.1 is a metadata and documentation update focused on modularizing and clarifying skill boundaries.
- Refactored SKILL.md to describe modular sub-skills and routing logic for all Threads operations.
- Clarified privilege boundaries: all actions must be run via scripts/cli.py and output as JSON.
- Added explicit routing rules for handling authentication, publishing, exploration, interaction, operations, and batch reply via sub-skills.
- Updated language requirements: all AI-generated content must use Traditional Chinese, and political content must be strictly avoided.
- Added pre-run requirements, error handling steps, and quickstart instructions.
- No code-level or functional changes; only documentation and metadata were updated.
v1.0.0
threads 1.0.0 — 首个版本发布
- 实现 Threads.net 全功能自动化,包括登录、浏览、搜索、内容发布与互动。
- 支持多账号管理及批量运营,便捷切换与批量操作。
- 提供分步 & 一步发帖、支持图片上传与内容规则校验。
- 支持批量社交互动、批量回复辅助界面、自动避开政治内容。
- 增强稳定性:内置失败处理与 Chrome 连接检测流程。
元数据
常见问题
threads-skill 是什么?
Threads 平台全自動化操作套件。觸發詞:登錄、登出、檢查登錄、是否已登錄、切換帳號、清除Cookie、多帳號管理、搜索、查找、瀏覽首頁、刷一下、抓帖子、獲取帖子、看帖子詳情、查看用戶、用戶主頁、歷史回復、發帖、發布、寫帖子、po文、發Thread、帶圖發帖、點讚、轉發、回覆、評論、關注、批量回覆、批量評論、... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 343 次。
如何安装 threads-skill?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install threads-skill」即可一键安装,无需额外配置。
threads-skill 是免费的吗?
是的,threads-skill 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
threads-skill 支持哪些平台?
threads-skill 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(darwin, linux)。
谁开发了 threads-skill?
由 gaojiongwenv587-beep(@gaojiongwenv587-beep)开发并维护,当前版本 v1.0.3。
推荐 Skills