← 返回 Skills 市场
Web Freedom Toolkit
作者
Biogod2020
· GitHub ↗
· v8.0.0
· MIT-0
275
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install web-freedom-toolkit
功能描述
Universal Server-Side Web Freedom Toolkit. Harmonizes Scrapling (Self-Healing Fetch), curl_cffi (TLS Impersonation), and DrissionPage (D-Mode) for undetectab...
安全使用建议
This package appears to implement advanced, high‑privilege tooling for bypassing anti‑bot protections (CDP takeovers, driver injection, local tunnel forwarding). That capability can be legitimate for research but is risky. Before installing or running: 1) Verify whether the registry actually enforces disable-model-invocation (SKILL.md/_meta.json claim disable-model-invocation:true but registry flags here show false). If autonomous invocation is permitted, assume the agent could run high‑privilege code. 2) Inspect and understand the gating mechanisms: the code expects a lock file (~/.openclaw/tmp/sota_active.lock), a Unix socket (/tmp/.sota_auth.sock), and an env var SOTA_NUCLEAR_CONFIRMED for ‘nuclear’ actions — none are declared in manifest. 3) Only run in an isolated VM/container with no sensitive host services reachable; the relay/tunnel and CDP takeover code can be used to pivot to other local services. 4) If you do not need driver injection or socket tunneling, prefer a minimal tool that only uses scrapling or curl_cffi. 5) If you trust the author and need this functionality, require a registry-level policy that enforces disable-model-invocation:true and document the explicit human approval workflow for the nuclear paths. If any of these checks fail or you are uncomfortable, do not install or run this skill.
功能分析
Type: OpenClaw Skill
Name: web-freedom-toolkit
Version: 8.0.0
The bundle is a highly sophisticated web scraping toolkit designed to bypass advanced anti-bot protections using DrissionPage, curl_cffi, and Scrapling. It contains several high-risk components, including a local TCP relay (python_relay.py) that forwards traffic between ports 9223 and 9222, and scripts for raw Chrome DevTools Protocol (CDP) takeover (force_takeover.py, nuclear_option.py). While the toolkit includes custom security 'gates' such as Unix Domain Socket handshakes (sota_core.py) and human-interactive challenges (secure_wrapper.py), the ability to perform low-level browser injection and maintain local listeners constitutes a high-risk capability. There is no explicit evidence of data exfiltration or malicious intent, but the 'offensive' framing and 'nuclear' options for bypassing security flags justify a suspicious classification.
能力评估
Purpose & Capability
The name/description (web-bypass, stealth browsing) aligns with included scripts: scrapling, curl_cffi, DrissionPage usage, and utilities for CDP takeovers and tunneling. However multiple included scripts provide low-level driver injection, CDP Runtime.evaluate execution, and a socket relay — features that are high‑privilege and go beyond simple 'fetch' helpers. These advanced capabilities can be coherent for the stated goal but are disproportionate for a lightweight 'fetch' helper and should be explicitly justified.
Instruction Scope
SKILL.md instructs running the unified engine (freedom_engine.py) which is expected, but bundled code references/executes high‑scope actions: raw CDP takeover (force_takeover.py / force injection), direct BrowserDriver injection (nuclear_option.py), creation of local relays and Unix auth sockets, and opening of HTTP CDP endpoints on localhost. Several scripts expect interactive gating or token files; those gating mechanisms are fragile or not enforced by the declared runtime instructions. The agent instructions do not declare or warn about these local privileged operations.
Install Mechanism
No remote installers or downloads are used; dependencies are Python packages listed in requirements.txt and SKILL.md. There is no download-from-URL or extract step in the manifest. This reduces supply‑chain risk compared to remote binary pulls.
Credentials
Manifest/metadata declare no required env vars, yet code expects external signals and secrets not declared: SOTA_NUCLEAR_CONFIRMED env var (nuclear_option.py), a lock file at ~/.openclaw/tmp/sota_active.lock (sota_security.py), and a memory Unix socket /tmp/.sota_auth.sock used for UDS handshakes. Those are control/authorization mechanisms but are not described in SKILL.md or manifest. The number and sensitivity of implicit controls is high relative to the declared 'no env vars' policy.
Persistence & Privilege
The package does not request 'always: true' (good), and SKILL.md/_meta.json include disable-model-invocation: true (which would prevent autonomous invocation). However the registry-level flags reported at the top of this evaluation show disable-model-invocation:false — a metadata mismatch. The code can create local relays/tunnels and spawn subprocesses that run for up to an hour; while scripts include self‑destruct/timeouts, these capabilities increase the blast radius if the skill is invoked — particularly if autonomous invocation is allowed. The metadata inconsistency about model invocation is an important red flag.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install web-freedom-toolkit - 安装完成后,直接呼叫该 Skill 的名称或使用
/web-freedom-toolkit触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v8.0.0
MAJOR EVOLUTION: Rebranded to Web Freedom Toolkit. Integrated the Scrapling engine for self-healing stealth fetches. Unified S-Mode, CFFI-Mode, and D-Mode into a single offensive strategy (v8.0.0).
元数据
常见问题
Web Freedom Toolkit 是什么?
Universal Server-Side Web Freedom Toolkit. Harmonizes Scrapling (Self-Healing Fetch), curl_cffi (TLS Impersonation), and DrissionPage (D-Mode) for undetectab... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 275 次。
如何安装 Web Freedom Toolkit?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install web-freedom-toolkit」即可一键安装,无需额外配置。
Web Freedom Toolkit 是免费的吗?
是的,Web Freedom Toolkit 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Web Freedom Toolkit 支持哪些平台?
Web Freedom Toolkit 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Web Freedom Toolkit?
由 Biogod2020(@biogod2020)开发并维护,当前版本 v8.0.0。
推荐 Skills