← 返回 Skills 市场
601
总下载
1
收藏
5
当前安装
2
版本数
在 OpenClaw 中安装
/install toutiao-publisher
功能描述
Publish articles to Toutiao (Today's Headlines). Handles persistent authentication (login once) and session management. Opens browser for interactive publish...
安全使用建议
This skill appears to do what it says: it automates a browser to publish to Toutiao and saves login state locally. Before installing, consider: 1) The setup script will create a .venv and pip-install packages (including 'patchright') and will download Chrome/Chromium runtime — only proceed if you trust those packages and are comfortable with network downloads. 2) The tool saves authentication cookies and localStorage to data/browser_state/state.json and auth_info.json in the skill directory; treat these files like credentials and store them securely or delete them when you no longer need the skill. 3) Because the skill includes anti-detection/stealth features, be aware it is intentionally designed to mimic human behavior; that is coherent with the purpose but increases the impact if misused. 4) If you plan to let an agent call this autonomously, restrict it from publishing sensitive or unintended content — consider requiring manual confirmation before any automated publish. 5) The skill owner is unknown and there is no homepage; if you need higher assurance, run the setup in an isolated environment (VM/container), audit the 'patchright' package and the code, or only run the interactive (non-headless) workflows so you can observe actions.
功能分析
Type: OpenClaw Skill
Name: toutiao-publisher
Version: 1.0.1
The OpenClaw Toutiao Publisher skill is benign. Its functionality, including browser automation with Playwright (`patchright`), persistent session management, Markdown to HTML conversion, and content publishing, is entirely consistent with its stated purpose. There is no evidence of data exfiltration, malicious execution (e.g., shell injection, arbitrary code execution), persistence mechanisms, or prompt injection attempts in `SKILL.md` or `README.md`. Browser state is saved locally for legitimate session persistence, and all `subprocess.run` and `page.evaluate` calls are used for intended automation tasks without introducing vulnerabilities.
能力评估
Purpose & Capability
Name/description match the included code and SKILL.md: scripts implement interactive and automated browser publishing to mp.toutiao.com, persistent auth, and session management. Required capabilities (Playwright-like automation via patchright, storage of state.json) are expected for this purpose. Minor inconsistency: run.py lists a 'cleanup_manager.py' in help output that is not present in the bundle (harmless but sloppy).
Instruction Scope
SKILL.md only instructs running the included scripts to authenticate, publish, check status, and clear auth. The runtime instructions/CLI map to the bundled scripts and reference only the Toutiao domain and local files under the skill (data/browser_state, .venv). There are no instructions to read unrelated system files or environment variables. Note: the skill persists cookies/localStorage to data/browser_state/state.json (sensitive data).
Install Mechanism
The registry has no install spec, but the bundled setup_environment.py will create a .venv, pip-install requirements (patchright, python-dotenv) and invoke 'python -m patchright install chrome' which downloads/installs Chromium/Chrome components. This is expected for a Playwright-style automation tool, but it will perform network downloads and write binaries to disk — consider trust of the packages (patchright) and network activity during setup.
Credentials
The skill requests no environment variables or external credentials. It persistently stores browser state (cookies/localStorage) and an auth_info.json under the skill's data directory — this is appropriate for maintaining session state but constitutes sensitive account data that will reside on disk. No unrelated credentials or config paths are requested.
Persistence & Privilege
The skill is not always-enabled and does not request elevated platform privileges. It creates a local .venv and writes browser state/auth files under its data directory (expected behavior). Autonomous invocation is allowed by default (platform normal) — consider whether you want the agent to run automated headless publishing without human confirmation.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install toutiao-publisher - 安装完成后,直接呼叫该 Skill 的名称或使用
/toutiao-publisher触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
update skill name
v1.0.0
Toutiao Publisher Skill 1.0.0
- Initial release.
- Enables publishing articles to Toutiao (Today's Headlines) with persistent login and session management.
- Supports interactive login via browser and automated publishing with command-line arguments.
- Enforces Toutiao's title length requirements automatically during publishing.
- Includes commands for checking authentication status and logging out.
- Employs stealth techniques and manages its own virtual environment for reliability.
元数据
常见问题
Toutiao Publisher 是什么?
Publish articles to Toutiao (Today's Headlines). Handles persistent authentication (login once) and session management. Opens browser for interactive publish... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 601 次。
如何安装 Toutiao Publisher?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install toutiao-publisher」即可一键安装,无需额外配置。
Toutiao Publisher 是免费的吗?
是的,Toutiao Publisher 完全免费(开源免费),可自由下载、安装和使用。
Toutiao Publisher 支持哪些平台?
Toutiao Publisher 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Toutiao Publisher?
由 guanyang(@guanyang)开发并维护,当前版本 v1.0.1。
推荐 Skills