← 返回 Skills 市场
kckyan

Web Autopilot

作者 kckyan · GitHub ↗ · v1.1.0
cross-platform ⚠ suspicious
345
总下载
0
收藏
1
当前安装
3
版本数
在 OpenClaw 中安装
/install web-autopilot
功能描述
Record any web app operation once, AI turns it into a reusable automation tool. Use when: (1) automating repetitive tasks on any web application (reports, su...
安全使用建议
This skill appears to implement the advertised record-and-replay functionality, but you should be cautious before installing/running it on a machine with real accounts: - It captures network request/response bodies and user actions and saves them under ~/.openclaw/rpa/. Those recordings and saved sessions can contain sensitive cookies, tokens, or form-posted passwords. - The code includes an extractor that automatically finds username/password pairs in recorded POST bodies and saves them (encrypted) to credentials.enc. That extraction can happen without an obvious separate consent step, so review how you record workflows before using the extractor. - Credentials.enc is encrypted, but by default the key is derived from machine identity (hostname, username, HOME). If you do not set RPA_CREDENTIAL_KEY, anyone with access to your account/machine can decrypt the file. If you plan to use this skill, set RPA_CREDENTIAL_KEY to a strong passphrase before saving credentials. - The registry metadata omits required runtime tools (Node, ts-node, Playwright). Do not assume the skill will ‘just work’ without installing those dependencies. Concrete recommendations: - Inspect the code locally (especially scripts/utils/credentials.ts and scripts/record.ts) before running. - If you will store credentials, set RPA_CREDENTIAL_KEY and restrict file permissions (the code already writes 0600 for the encrypted file but confirm). Consider using a dedicated machine or VM for recording sensitive workflows. - Consider disabling or avoiding use of the extract-and-save CLI helper if you do not want credentials auto-saved; run recordings manually and delete recordings that contain secrets. - Audit or securely delete ~/.openclaw/rpa/ recordings/sessions/credentials if you stop using the skill. Given these behaviors (automatic credential extraction/storage and undeclared runtime assumptions), treat the skill as suspicious until you confirm safe configuration and review of the code.
功能分析
Type: OpenClaw Skill Name: web-autopilot Version: 1.1.0 The bundle implements a powerful Web RPA framework that captures full network traffic, session cookies, and local storage (record.ts). It includes high-risk features such as automated credential extraction from recorded POST bodies and local storage in an encrypted file (credentials.ts), as well as the execution of AI-generated TypeScript code using shell commands (run-task.ts). While the instructions in SKILL.md and the code logic include security-positive measures like password redaction and AES-256-GCM encryption, the inherent combination of automated secret harvesting and dynamic code execution via execSync creates a significant risk profile typical of dual-use tools.
能力评估
Purpose & Capability
Name/description match the code: the package records browser actions and network traffic, analyzes requests, generates TS scripts, and manages sessions/credentials for auto-login. However, the registry metadata declares no required binaries or env vars while the code clearly expects Node/ts-node and Playwright and optionally uses RPA_CREDENTIAL_KEY; that mismatch is worth noting.
Instruction Scope
SKILL.md promises redaction and user confirmation for submit tasks, but the code includes an automated extractor (extractAndSaveFromRecording) that searches recordings for POST bodies containing username/password and will save them to the encrypted credential store. That behavior may occur without an explicit, separate confirmation step in some flows. The recorder also captures full network request/response bodies and persists them to disk (recordings and session cookies), which can contain sensitive tokens.
Install Mechanism
There is no install spec in the registry (instruction-only), which is lower risk for remote download, but package.json lists non-trivial dependencies (playwright, ts-node, etc.). The SKILL.md requires Playwright and Node, but the skill metadata doesn't declare these required binaries—an inconsistency the user must handle when installing manually.
Credentials
The skill declares no required environment variables yet the credentials module reads an optional RPA_CREDENTIAL_KEY to strengthen encryption. Credentials are encrypted but the key derivation defaults to machine-identifying values (hostname, username, HOME) when no passphrase is provided, meaning stored credentials are decryptable on the same machine without a user-set passphrase. The skill persists cookies, sessions, and an encrypted credentials file (~/.openclaw/rpa/credentials.enc) — reasonable for auto-login but sensitive and not fully reflected in the declared requirements.
Persistence & Privilege
The skill persists state to ~/.openclaw/rpa/ (recordings, sessions, tasks, credentials.enc). That is expected for an RPA tool, but it raises persistent-privilege concerns: saved cookies/tokens and stored credentials increase the blast radius if the machine or files are compromised. The skill does not request always:true, and it does not modify other skills, which is good.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install web-autopilot
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /web-autopilot 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.1.0
**Web Autopilot 1.1.0 Changelog** - English translation and internationalization: All documentation and UI text have been rewritten in English for broader accessibility. - Clarified terminology: Field classification categories and confirmation steps now use concise, universal English terms. - Improved user guidance: All examples, field mapping instructions, and command usage are now provided in English with updated descriptions. - No file-level technical changes; the update is documentation- and usability-focused.
v1.0.1
v1.0.1 — Sanitize examples and remove real enterprise references. All SSO URLs, app domains, and credential patterns replaced with generic examples (sso.example.com, app.example.com). No functional changes.
v1.0.0
Web Autopilot v1.0.0 — Initial Release Your AI assistant can now handle repetitive enterprise web tasks for you. Record a workflow once, and it becomes a reusable automation — no more manual clicking through the same forms every week. What it automates: • Expense reports — Fill amounts, attach receipts, submit for approval automatically • Travel & leave requests — Enter dates, destinations, project codes, route through approval workflows • Payment processing — Match invoices to POs, fill payment forms, trigger approval chains • Data extraction & reporting — Pull sales data, service records, or project metrics from CRM/ERP systems and export as structured CSV/JSON • Any repetitive web workflow — If you can do it in a browser, Web Autopilot can learn it Key capabilities: • Record-and-replay: Operate once in a real browser, AI analyzes the network traffic and generates a parameterized script • Universal login support: Works with SSO (OIDC/SAML/CAS), OAuth, username/password, multi-step login (Google, Microsoft, Okta), and manual login for CAPTCHA/2FA sites • Smart field classification: AI distinguishes fixed fields (hardcoded), dynamic fields (CLI parameters), session tokens (auto-managed), and relational fields (auto-resolved via lookup) • Submit safety: Mandatory field confirmation before script generation, plus --dry-run mode to preview requests before committing • Self-healing tests: Up to 5 rounds of automated testing with AI-driven error diagnosis and fixes • Tool registration: Register completed automations as OpenClaw tools — invoke them with natural language ("submit my expense report for last week's trip") • Encrypted credentials: AES-256-GCM encrypted credential storage, automatic session refresh, zero plaintext passwords Built for knowledge workers who spend hours each week on repetitive enterprise web tasks. Record it once, let your AI handle it forever.
元数据
Slug web-autopilot
版本 1.1.0
许可证
累计安装 1
当前安装数 1
历史版本数 3
常见问题

Web Autopilot 是什么?

Record any web app operation once, AI turns it into a reusable automation tool. Use when: (1) automating repetitive tasks on any web application (reports, su... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 345 次。

如何安装 Web Autopilot?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install web-autopilot」即可一键安装,无需额外配置。

Web Autopilot 是免费的吗?

是的,Web Autopilot 完全免费(开源免费),可自由下载、安装和使用。

Web Autopilot 支持哪些平台?

Web Autopilot 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Web Autopilot?

由 kckyan(@kckyan)开发并维护,当前版本 v1.1.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论