ScrapeFun

v0.0.2

Use this skill when OpenClaw needs to operate a scrapefun server through the dedicated OpenClaw-facing APIs. Prefer /api/openclaw/* query and download endpoi...

⭐ 0· 243·0 current·0 all-time

byHaowei Li@haoweili97

OpenClaw Prompt Flow

Install with OpenClaw

Best for remote or guided setup. Copy the exact prompt, then paste it into OpenClaw for haoweili97/scrapefun.

Previewing Install & Setup.

Prompt PreviewInstall & Setup

Install the skill "ScrapeFun" (haoweili97/scrapefun) from ClawHub.
Skill page: https://clawhub.ai/haoweili97/scrapefun
Keep the work scoped to this skill only.
After install, inspect the skill metadata and help me finish setup.
Use only the metadata you can verify from ClawHub; do not invent missing requirements.
Ask before making any broader environment changes.

Command Line

CLI Commands

Use the direct CLI path if you want to install manually and keep every step visible.

OpenClaw CLI

Canonical install target

openclaw skills install haoweili97/scrapefun

ClawHub CLI

Package manager switcher

npx clawhub@latest install scrapefun

Security Scan

VirusTotal

Benign

View report →

OpenClaw

Benign

high confidence

ℹ

Purpose & Capability

The skill's name/description match the endpoints, required header, and operations documented in SKILL.md and references. The declared primary credential (OPENCLAW_ACCESS_KEY) is appropriate for calling OpenClaw-facing APIs. Minor inconsistency: registry metadata lists no required env vars while the skill metadata declares a primaryEnv (OPENCLAW_ACCESS_KEY). This is likely a bookkeeping mismatch rather than functional misalignment, but it should be clarified.

✓

Instruction Scope

SKILL.md limits runtime actions to calling /api/openclaw/* endpoints (with documented narrow fallbacks) and describes clear permission checks and error handling. It does not instruct the agent to read local files, other env vars, or exfiltrate data to arbitrary external endpoints. The references file sets a base URL of http://localhost:4000 (i.e., calls target the local server), which is consistent with operating a local scrapefun instance.

✓

Install Mechanism

Instruction-only skill with no install spec and no bundled code — nothing is written to disk or downloaded by the skill installer. This is the lowest install risk.

ℹ

Credentials

The single credential in use (OPENCLAW_ACCESS_KEY) is proportional to the task. However, the registry record's 'required env vars' field is empty while SKILL.md/metadata reference a primaryEnv — this should be reconciled so users know which env var to provide. The skill explicitly forbids using other API keys (e.g., OPENCLAW_SCRAPEFUN_API_KEY), which is a helpful constraint.

✓

Persistence & Privilege

always:false and normal autonomous invocation are set (agent may call the skill autonomously, which is standard). The skill does not request persistent system-level privileges or modify other skills' configs.

Assessment

This skill appears to do what it claims: it instructs the agent to interact with a Scrapefun/OpenClaw server using an access key. Before installing, confirm the following: (1) Clarify whether OPENCLAW_ACCESS_KEY must be supplied as an environment variable (registry metadata currently omits it) and ensure you only provide a key scoped with minimal necessary permissions (library_query, download_submit, etc.). (2) The skill targets local/hosted APIs (references show http://localhost:4000) — verify the base URL and that you trust the target server. (3) Because source/homepage is unknown, monitor the first uses (network logs or a proxy) to confirm it only calls the documented endpoints and does not send data elsewhere. (4) Only grant the access key to agents or environments you trust and prefer keys with narrowly scoped permissions and an expiration where possible.

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

🦀 Clawdis

Primary envOPENCLAW_ACCESS_KEY

latestvk9743q2gh5sszxcny38dj32t99830gzb

243downloads

0stars

2versions

Updated 1mo ago

v0.0.2

MIT-0

OpenClaw Scrapefun

Purpose

Use this skill only for scrapefun operational APIs.

Default rule:

Prefer X-OpenClaw-Key
Prefer /api/openclaw/*
Do not silently fall back to /api/metadata, /api/metadata/stats, /api/settings/webdav/search, or /api/settings/webdav/add_offline_download
If an expected /api/openclaw/* endpoint returns 404, 403, or validation failure, report the exact blocker instead of switching to an old path unless the fallback is explicitly allowed below

This skill does not perform OpenClaw-side resource discovery.

Auth

Preferred auth:

Header: X-OpenClaw-Key: <access key>

Fallback auth:

POST /api/auth/login
Reuse Authorization: Bearer <token>

Rules:

Prefer OPENCLAW_ACCESS_KEY or the saved skill api key
Never use OPENCLAW_SCRAPEFUN_API_KEY
State the required OpenClaw permissions before calling /api/openclaw/*
If a permission is missing, stop and report it

Primary Endpoints

Use these endpoints as the default interface surface:

GET /api/openclaw/libraries/catalog Required permission: library_query Use for listing media entries in a library
GET /api/openclaw/media/:metadataId/state Required permission: library_query Use for existing files, existing episodes, and missing episodes
GET /api/openclaw/media/:metadataId/download-target Required permission: download_target_query Use for target path, season path, storage, and next missing episode
POST /api/openclaw/media/:metadataId/download-check Required permission: download_dedupe Use before every download submission Minimum payload: {} or {"seasonNumber":<n>,"episodeNumber":<n>} Optional fields: candidateName, candidateSize, strictEpisodeMatch
POST /api/openclaw/downloads/submit Required permission: download_submit Use for offline download submission Minimum payload: {"metadataId":"<metadataId>","magnet":"<magnet>"} or {"metadataId":"<metadataId>","urls":["<url>"]} Optional fields: preferredPath, seasonNumber, episodeNumber, candidateMeta
POST /api/openclaw/downloads/:downloadId/confirm-landed Required permission: download_confirm Use to verify landed files after submission Minimum payload: {"metadataId":"<metadataId>"} Optional fields: expectedPath, seasonNumber, episodeNumber, waitMs, forceRefresh
POST /api/openclaw/media/:metadataId/finalize-import Required permission: import_finalize Use for post-download scan, organize, and verification Minimum payload: {"downloadPath":"<webdav path>"} Optional fields: seasonNumber, episodeNumber, matchMode, forceScan, downloadId
GET /api/openclaw/downloads/:downloadId Required permission: download_status or one of download_submit, download_confirm, import_finalize Use for compact workflow status
POST /api/openclaw/libraries/scan Required permission: library_scan Use only for explicit rescan or forced refresh

Default Operation Order

Use these sequences.

1. List a library

GET /api/openclaw/libraries/catalog?libraryName=<name>

Do not use:

GET /api/metadata
GET /api/metadata/stats

2. Read a show's current state

Resolve metadataId from catalog
GET /api/openclaw/media/:metadataId/state

Do not use:

GET /api/metadata

3. Prepare a download

GET /api/openclaw/media/:metadataId/download-target
POST /api/openclaw/media/:metadataId/download-check

Do not manually combine:

/api/libraries
/api/settings/webdav/storage/resolve
/api/settings/webdav/search

unless the fallback rules below explicitly allow it

4. Submit a download

POST /api/openclaw/downloads/submit

Do not call:

POST /api/settings/webdav/add_offline_download

directly from this skill

5. Continue after submission

POST /api/openclaw/downloads/:downloadId/confirm-landed
POST /api/openclaw/media/:metadataId/finalize-import
GET /api/openclaw/downloads/:downloadId

Do not manually combine:

GET /api/scrape/webdav/list
POST /api/scrape/webdav/scan
POST /api/scrape/match

as the default path

Endpoint Availability Checks

Before relying on a path in your answer, treat these failures distinctly:

404: endpoint not available on this server version
403: missing OpenClaw permission
400: required parameters missing or invalid

Rules:

If catalog, state, download-target, download-check, downloads/submit, confirm-landed, or finalize-import returns 404, say the server does not expose that OpenClaw endpoint
If GET /api/openclaw/downloads/:downloadId returns 404, report Download workflow not found; do not describe it as route absence
If one of them returns 403, report the exact missing permission and stop
Do not describe a legacy fallback as if it were equivalent
If POST /api/openclaw/libraries/scan returns partial: true, report the failed library root paths explicitly

Strict Fallback Rules

Fallback is allowed only in these cases.

Allowed fallback

GET /api/libraries Use only when the user explicitly asks for raw library config fields such as path, scraper, sourceMode, or sourcePreferencesJson
GET /api/scrape/search Use only when the user explicitly asks for raw scraper candidates
GET /api/scrape/webdav/list Use only when the user explicitly asks for directory-level file enumeration detail that the OpenClaw endpoints do not return
POST /api/openclaw/libraries/scan Use only when the user explicitly wants a scan or when finalize-import is unavailable and the user still wants a best-effort refresh

Disallowed fallback

Do not fall back to GET /api/metadata for library listing
Do not fall back to GET /api/metadata for missing episode detection
Do not fall back to GET /api/metadata/stats for media browsing
Do not fall back to POST /api/settings/webdav/add_offline_download for normal download submission
Do not fall back to GET /api/settings/webdav/search for normal landed-file checks

Prohibited Endpoints

Do not use:

/api/openclaw/bootstrap/status
/api/openclaw/connect/context
/api/openclaw/jobs/*
/api/openclaw/sites/*
/api/openclaw/tasks/*
OPENCLAW_URL remote delegation flow

Response Rules

Keep responses functional only.

Always state:

auth method
endpoint
required permission
payload shape
returned result or blocker

Execution:

GET /api/libraries
Return only the matched library's path, type, sourceMode, scraper, and sourcePreferencesJson

Comments

Loading comments...