ClawHub

Chrome

v1.0.0

Chrome DevTools Protocol, extension Manifest V3, and debugging patterns that prevent common automation failures.

13· 3.8k·40 current·42 all-time
byIván@ivangdavila
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (CDP, Manifest V3, debugging) align with the SKILL.md content. Nothing in the instructions asks for unrelated capabilities, credentials, or external services.
Instruction Scope
The SKILL.md contains guidance for using CDP, extension patterns, context detection, and debugging. It does not instruct the agent to read local files, environment variables, secrets, or to transmit data to unexpected endpoints. All guidance is scoped to browser automation and extension development.
Install Mechanism
There is no install spec or code — the skill is instruction-only, so nothing is written to disk or downloaded. This is the lowest-risk install profile.
Credentials
The skill declares no environment variables, credentials, or config paths. The instructions reference only browser globals and CDP endpoints appropriate to the stated purpose.
Persistence & Privilege
always is false and the skill does not request persistent privileges or modify other skills or system-wide settings. The default ability for the agent to invoke the skill autonomously is normal and not excessive here.
Assessment
This skill is instruction-only and appears coherent with its purpose: it provides CDP and Manifest V3 best practices and asks for no credentials or installs. If you plan to convert these instructions into runnable code or combine this skill with others that can execute shell commands or make network calls, review the resulting code before running — especially any code that connects to local debug endpoints (e.g., localhost:9222) or executes generated scripts. Also verify the skill's author/source if you require provenance; the content itself is not requesting sensitive access.

Like a lobster shell, security has layers — review code before you run it.

latestvk97327jnghpkgf90s5z73qe1k580tqk1

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments