ChatGPT Web Skill
v0.1.0Automate ChatGPT Web conversations through a local browser session with persistent login state, one-shot prompts, reusable multi-turn sessions, and conversat...
⭐ 0· 257·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description claim to drive ChatGPT Web via a local browser and the repo contains Playwright-based automation, auth management, session management, and local data storage under the skill directory. No unrelated cloud credentials, exotic binaries, or surprising host-level access are requested — capabilities align with purpose.
Instruction Scope
SKILL.md directs the agent to run the provided wrapper (python3 scripts/run.py) which creates a skill-local virtualenv and executes the scripts. Runtime instructions and scripts operate on local skill data (data/, browser_state/, screenshots/) and the ChatGPT Web UI only. Note: the skill will read proxy-related environment variables and can capture page content/screenshots and persist cookies/storage state; these behaviors are expected for a web-automation skill but are sensitive and should be acknowledged.
Install Mechanism
There is no external install spec in the registry; the wrapper will create a local .venv and install packages from requirements.txt (patchright and python-dotenv) — installation from PyPI is standard but carries the usual supply-chain risk of third-party packages. No arbitrary remote archive downloads or obscure URLs were seen.
Credentials
The skill does not declare required credentials or config paths and does not ask for unrelated secrets. It will, however, read proxy-related env vars (HTTPS_PROXY, HTTP_PROXY, CHATGPT_PROXY_URL, NO_PROXY, DISPLAY, etc.) which are reasonable for a browser automation tool. Important: the skill persists ChatGPT auth cookies/storage under the skill's data directory, so that local state contains sensitive account authentication data.
Persistence & Privilege
The skill does not request always:true and does not modify other skills. It creates runtime artifacts (session runtime directory, daemon socket/pid, screenshots, stored browser profile/state) and can run a session daemon for persistent sessions — this is coherent with its purpose but introduces a persistent local surface (background process, sockets, files) that you should monitor and secure.
Assessment
This package appears to do exactly what it says: drive the ChatGPT web UI through a local browser session. Before installing, consider the following:
- The skill will create a local .venv and install dependencies from PyPI (patchright, python-dotenv). Treat these installs as you would any third‑party package install.
- It will persist your ChatGPT login state (cookies, local storage, a browser profile) under the skill's data/ directory. Anyone with access to those files could reuse your session, so protect/backup/encrypt or remove them if you stop using the skill.
- The skill reads standard proxy and display env vars; set these explicitly if you run it in CI or a multi-user system.
- It can spawn a long‑lived session daemon and create sockets/pid files under data/session_runtime/. If you need to audit or limit long-running processes, review session_manager and cleanup_manager behavior before enabling persistent sessions.
- If you do not trust this code or the package owner, prefer the official API or run the scripts in an isolated environment (container or dedicated VM) and review the full code. If you want additional assurance, request a full diff of the truncated files (the package contains some truncated content in the provided manifest) so they can be reviewed as well.Like a lobster shell, security has layers — review code before you run it.
latestvk972j2jpfwvngfyy5spm2qb89n82g0g0
License
MIT-0
Free to use, modify, and redistribute. No attribution required.