Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
PW Browser Setup
v1.0.0浏览器自动化环境的一键安装、检查和验证工具。 安装 Playwright + Chromium,支持非头模式(模拟真实用户浏览器)和头模式。 包含系统兼容性检查(内存、CPU、磁盘)、依赖安装、Xvfb 虚拟显示器配置。 当用户要求:(1) 安装浏览器自动化环境 (2) 配置 Playwright (3) 检查系...
⭐ 0· 45·0 current·0 all-time
by@jerryxn
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description match the included scripts: check system requirements, install Xvfb and Playwright/Chromium, and verify by opening a page and taking a screenshot. All required actions and resources in the scripts are coherent with browser setup.
Instruction Scope
Runtime instructions and scripts perform expected checks and operations (read /proc/meminfo, df, sysctl, install packages, run npm/npx and a Node/Playwright verification that visits https://www.baidu.com). SKILL.md includes an optional Feishu (open.feishu.cn) example that references a TENANT_TOKEN environment variable — the scripts do not themselves require or read that variable, but the example shows how a user could upload the screenshot to an external service. Be aware the verification step performs outgoing network requests (to download browsers and to visit baidu.com).
Install Mechanism
No formal install spec (instruction-only) but bundled scripts call npm/npx which will download Playwright and binaries (~hundreds of MB) from Playwright mirrors via the npm ecosystem. This is expected for this purpose but carries standard supply-chain and bandwidth implications (npm downloads, playwright browser artifacts). No arbitrary URL downloads or shorteners are used.
Credentials
The skill declares no required credentials and does not access unexpected env vars. The SKILL.md example shows using a TENANT_TOKEN for Feishu uploads but this is optional and not declared as required — if you supply such a token to send screenshots, that token would be sent to Feishu as shown. The scripts may also attempt to run package managers with sudo (non-interactive sudo -n) and will fall back to asking the user to run commands manually if sudo is unavailable.
Persistence & Privilege
always is false; the skill only creates/supports local helper scripts in its own scripts directory (start-xvfb.sh) and writes caches to the user's standard Playwright cache under $HOME/.cache. It does not modify other skills or system-wide agent settings.
Assessment
This skill is coherent for setting up Playwright + Chromium. Before running it: (1) review and be comfortable with npm installing packages (it may install globally and download ~300MB of browser artifacts); (2) expect some steps require sudo to install system libs/Xvfb—the scripts try non-interactive sudo and will ask you to run commands manually if unavailable; (3) verification opens an external site (baidu.com) and performs outgoing downloads—run in an environment with network access you trust; (4) the SKILL.md shows an optional Feishu upload that would use a TENANT_TOKEN you provide—do not supply sensitive tokens unless you trust the destination; (5) if you need stricter isolation, run the install/verify scripts inside a disposable VM or container and inspect commands before granting sudo.Like a lobster shell, security has layers — review code before you run it.
latestvk97cv031wtfe8mxrwfq2a3xzzd83pmy3
License
MIT-0
Free to use, modify, and redistribute. No attribution required.