← 返回 Skills 市场
368
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install web-skills-protocol
功能描述
Auto-discover and use Web Skills Protocol (WSP) skills when interacting with websites. Use this skill whenever the user asks you to interact with, use, or pe...
安全使用建议
This skill is coherent with its purpose — it makes an agent check for site-published SKILL.md files and follow them — but that capability is a double-edged sword. Before installing or enabling this skill, consider: 1) only allow automatic discovery for trusted sites or require explicit user confirmation before fetching/using a site's SKILL.md; 2) always ask the user before providing credentials or performing financial/account actions; 3) treat remote SKILL.md content as untrusted input: validate frontmatter (auth/base_url/rate_limit), limit what instructions the agent will follow automatically, and sandbox or audit actions (no silent exfiltration of sensitive data); 4) prefer policies that block or warn on SKILL.md files containing strange control characters or other obfuscation (the scanner found unicode-control-chars here); and 5) if you operate in a high-risk environment, do not enable autonomous invocation of web-published skills without additional safety checks. If you want help drafting user-confirmation prompts or a checklist for safe SKILL.md consumption, I can provide one.
功能分析
Type: OpenClaw Skill
Name: web-skills-protocol
Version: 1.0.0
The bundle implements a 'Web Skills Protocol' that instructs the AI agent to automatically discover, fetch, and follow instructions from arbitrary remote websites (via `skills.txt` and remote `SKILL.md` files). While the protocol includes safety guidelines in `SKILL.md` and `SPEC.md`—such as respecting `robots.txt` and requiring user consent for authentication—the core logic essentially enables Remote Instruction Execution (RIE) via prompt injection from any website the agent visits. Furthermore, the `README.md` encourages high-risk installation patterns using `curl | bash` style commands to fetch the skill from a GitHub repository (0xtresser/Web-Skills-Protocol).
能力评估
Purpose & Capability
The name/description match the actual instructions: the skill only describes discovering /skills.txt or /agents.txt and fetching SKILL.md files to drive site-specific interactions. No unrelated binaries, env vars, or installs are required.
Instruction Scope
The runtime instructions require the agent to fetch and follow arbitrary remote SKILL.md files and act on them. That is necessary for the stated purpose, but it also means any website can serve instructions the agent will follow. The SKILL.md content becomes an execution surface and can contain adversarial directives (prompt-injection). The skill text does include sensible guardrails (respect robots.txt; ask user for auth) but does not specify validation, provenance checks, or sandboxing of remote instructions.
Install Mechanism
There is no install specification in the registry entry (instruction-only). The README shows optional curl-based install examples from raw.githubusercontent.com (a well-known host) — that is traceable. No archive downloads or obscure URLs are required by the skill itself.
Credentials
The skill declares no environment variables, credentials, or config-path access (proportionate). However, by design it will surface SKILL.md files that may request authentication or credentials for the target site; the SKILL.md instructs the agent to ask the user before using creds, but the skill does not enforce or validate that flow, creating a social-engineering risk.
Persistence & Privilege
The skill is not always-enabled, is user-invocable, and the registry flags are default. It does not request permanent privileges or modify other skills/config. No elevated persistence is requested.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install web-skills-protocol - 安装完成后,直接呼叫该 Skill 的名称或使用
/web-skills-protocol触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release of web-skills-protocol—enables interaction with websites via the Web Skills Protocol:
- Auto-discovers and uses WSP skills by checking for skills.txt and agents.txt files on websites.
- Provides structured steps to parse skill discovery files, match user actions to available skills, and retrieve SKILL.md instructions.
- Enforces authentication, rate limits, and session caching per published skill requirements.
- Prioritizes using site-published skills over scraping or UI automation for reliability and compliance.
- Includes clear operational rules and workflows for safe, user-consented web interactions.
元数据
常见问题
web-skills-protocol 是什么?
Auto-discover and use Web Skills Protocol (WSP) skills when interacting with websites. Use this skill whenever the user asks you to interact with, use, or pe... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 368 次。
如何安装 web-skills-protocol?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install web-skills-protocol」即可一键安装,无需额外配置。
web-skills-protocol 是免费的吗?
是的,web-skills-protocol 完全免费(开源免费),可自由下载、安装和使用。
web-skills-protocol 支持哪些平台?
web-skills-protocol 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 web-skills-protocol?
由 Tresser(@0xtresser)开发并维护,当前版本 v1.0.0。
推荐 Skills