AccessMind

v6.0.0

Enterprise WCAG 2.2/2.1/EN 301 549 accessibility audit platform. OpenClaw Browser Tool ile entegre çalışan, güvenli ve profesyonel erişilebilirlik denetim si...

⭐ 0· 125·1 current·1 all-time

by@sarperarikan

Security Scan

VirusTotal

Pending

View report →

OpenClaw

Suspicious

medium confidence

ℹ

Purpose & Capability

Name, description, SKILL.md and the included files (content/background/devtools scripts, many Python audit scripts) are consistent with an accessibility auditing tool. The declared dependency on python3 and Python parsing packages aligns with the presence of many Python scripts. However, the code contains a hard-coded absolute path to a user's workspace (/Users/sarper/.openclaw/...), which is unusual for a general-purpose skill and suggests the package was packaged from a specific developer environment without path generalization.

Instruction Scope

Content/background scripts gather full page HTML, images, element attributes, form inputs and take screenshots; they also store behavioral event logs in chrome.storage.local and can export them. While this data collection is plausible for an auditor, it can capture sensitive information (page HTML, input names/values, screenshots). SKILL.md does not explicitly warn about collecting page HTML/screenshots or export behavior; background.js also attempts to send images and URLs to local endpoints (OpenClaw Gateway / Ollama). The presence of many shell scripts (.sh) and Python scripts that appear to implement crawling and auditing means the skill can perform network requests, write output files, and run system commands if executed—this expands the runtime surface beyond the simple browser actions shown in SKILL.md.

ℹ

Install Mechanism

There is no install spec (instruction-only), which reduces automated installation risk. However, the repo includes many executable artifacts (multiple .py and .sh scripts) and a browser extension. Those files will be written to disk when the skill is installed by the platform and could be executed later. No external download URLs are used (good), but the presence of shell scripts (audit-page.sh, full-audit.sh, stealth-audit.sh) and scripts that may spawn processes means users should review them before running. The background script also expects local services (OpenClaw Gateway, Ollama) to be present.

✓

Credentials

The skill declares python3 and Python parsing libraries (beautifulsoup4, lxml, html5lib) — reasonable for web crawling and HTML analysis. It does not request environment variables, cloud credentials, or unrelated secrets. The only surprising element is reliance on local services (localhost:8765, localhost:11434) and a hard-coded developer workspace path; these are not environment variables but are environment-dependent and may fail or leak data if pointed incorrectly.

ℹ

Persistence & Privilege

always is false (normal). The Chrome extension code stores behavioralEvents in chrome.storage.local (up to 1000 events) and exposes an export function; it also logs operations and may create reports on disk via Python scripts. That is expected for an audit tool, but it means persistent storage of potentially sensitive page data. The skill does not declare modifying other skills or system-wide configurations, but the hard-coded absolute paths and included shell scripts mean a careful review of what those scripts write or execute is recommended.

What to consider before installing

What to check before installing: - Inspect the hard-coded path (/Users/sarper/.openclaw/...) in extension/background.js; it should be replaced with a configurable path or discovered dynamically. Hard-coded user paths can cause failures or accidentally point to sensitive files. - Expect the extension to collect full page HTML, screenshots, images, and form element metadata (names/labels). If you will run audits on pages that contain sensitive data, be cautious — exported audit artifacts could include sensitive content. - The skill talks to local services (OpenClaw Gateway at 127.0.0.1:8765 and an Ollama-like API at 127.0.0.1:11434). Verify you are comfortable running those local services and that they are configured to accept only local connections. - Review the included shell scripts (.sh) and Python scripts before running them. They perform crawling and reporting and may invoke system commands or write files. Prefer to run them in a controlled environment (isolated VM or container) first. - Confirm whether the extension is the only component that will execute automatically; the repository contains many scripts that likely require manual execution. If you do not want background local servers or files written to disk, do not run those scripts. - If you intend to use this on enterprise or sensitive sites, get written assurances (or source review) that exported reports and stored event logs will not be transmitted to remote servers. The code appears to use only localhost endpoints, which is better than unknown remote endpoints, but verify at runtime. If you want, I can: (1) point to the exact lines that reference the hard-coded path and localhost endpoints; (2) summarize what each .sh and top Python script does so you can decide which to allow; or (3) suggest a minimal, safer configuration for running audits (e.g., run in a disposable VM and disable export/auto-tracking).

Like a lobster shell, security has layers — review code before you run it.

Runtime requirements

Binspython3

accessibilityvk97d7361fqkqj6haffss53ke6583hqn4auditvk97d7361fqkqj6haffss53ke6583hqn4cloudflare-bypassvk97d7361fqkqj6haffss53ke6583hqn4element-testingvk97d7361fqkqj6haffss53ke6583hqn4glm-5vk9761t3hzvavh3ctv96hfvnq8183hzgdkeyboard-simulationvk97d7361fqkqj6haffss53ke6583hqn4langgraphvk9761t3hzvavh3ctv96hfvnq8183hzgdlatestvk972frrwvwabzj8sndckfqgd9n83n7ypollamavk9761t3hzvavh3ctv96hfvnq8183hzgdpytestvk97d7361fqkqj6haffss53ke6583hqn4wcagvk97d7361fqkqj6haffss53ke6583hqn4

125downloads

0stars

14versions

Updated 3w ago

v6.0.0

MIT-0

AccessMind Enterprise v6.0

🆕 v6.0: Güvenli ve Profesyonel Erişilebilirlik Denetimi

AccessMind, OpenClaw Browser Tool ile tam entegre çalışan, güvenli ve profesyonel erişilebilirlik denetim platformudur.

┌─────────────────────────────────────────────────────────────┐
│  AccessMind Enterprise v6.0                                  │
├─────────────────────────────────────────────────────────────┤
│  1. OpenClaw Browser → Güvenli site açma                    │
│  2. ARIA Snapshot → DOM analizi                             │
│  3. Keyboard Navigation → Tab simülasyonu                   │
│  4. Focus Testing → Focus trap tespiti                      │
│  5. Visual Analysis → Screenshot + LLM analiz                │
│  6. ACT Rules → 50+ WCAG kuralı                             │
│  7. Professional Report → HTML/JSON çıktı                   │
└─────────────────────────────────────────────────────────────┘

🛡️ Güvenlik

AccessMind v6.0, tüm tarayıcı işlemlerini OpenClaw Browser Tool üzerinden gerçekleştirir. Bu sayede:

✅ Güvenli tarama - OpenClaw yönetilen tarayıcı kullanır
✅ Cloudflare uyumlu - Browser tool, korumalı sitelerde çalışır
✅ İzolü ortam - Sandbox içinde çalışır
✅ Şeffaf - Tüm işlemler loglanır
✅ Hafif - Ekstra browser kurulumu gerektirmez

🚀 Hızlı Başlangıç

Örnek Kullanım

Kullanıcı: https://arcelik.com.tr için erişilebilirlik denetimi yap

AccessMind:
1. Browser tool ile siteyi açar
2. ARIA snapshot alır
3. Klavye navigasyon testi yapar
4. Focus trap kontrolü yapar
5. Ekran görüntüsü alır
6. ACT Rules çalıştırır
7. Profesyonel rapor oluşturur

OpenClaw Browser Tool ile Entegrasyon

# Siteyi aç
browser action=open url=https://example.com

# ARIA snapshot al (erişilebilirlik için optimize)
browser action=snapshot refs=aria

# Klavye navigasyonu test et
browser action=act kind=press key=Tab
browser action=snapshot refs=aria

# Focus kontrolü
browser action=act kind=press key=Tab
browser action=snapshot refs=aria

# Ekran görüntüsü al
browser action=screenshot

⌨️ Klavye Navigasyon Testi

AccessMind, gerçek kullanıcı davranışını simüle eder:

Tab Simülasyonu - Tüm focusable elementleri gez
Focus Tracking - Focus değişimlerini takip et
Focus Indicator - Focus göstergesi kontrolü
Focus Trap Detection - Klavye tuzaklarını tespit et
Escape Test - Modal ve dialog kapatma testi

Sonuç Formatı

{
  "keyboard_navigation": {
    "total_steps": 50,
    "focus_changes": 31,
    "visible_outlines": 28,
    "focus_visible_support": 25,
    "issues": 12
  },
  "focus_traps": {
    "total": 0,
    "details": []
  },
  "metrics": {
    "focus_efficiency": 85,
    "keyboard_accessibility": 76,
    "sr_friendliness": 92
  }
}

📊 ACT Rules (50+ Kural)

AccessMind, W3C ACT Rules Format'a uygun 50+ atomik kural içerir:

Perceivable (Algılanabilir)

Kural ID	Kriter	Açıklama
ACT-1.1	1.1.1	Image has accessible name
ACT-1.2	1.1.1	SVG has accessible name
ACT-1.3	1.1.1	Area has accessible name
ACT-2.1	1.3.1	Heading has content
ACT-2.2	1.3.1	List has proper structure
ACT-2.3	1.3.1	Table has headers
ACT-3.1	1.4.3	Text has sufficient contrast
ACT-3.2	1.4.3	UI components have sufficient contrast
ACT-3.3	1.4.4	Text resizes properly
ACT-3.4	1.4.10	Content reflows horizontally

Operable (İşletilebilir)

Kural ID	Kriter	Açıklama
ACT-4.1	2.1.1	Interactive element is keyboard accessible
ACT-4.2	2.1.1	Focusable element has keyboard event
ACT-4.3	2.1.2	No keyboard trap
ACT-4.4	2.4.1	Page has bypass blocks
ACT-4.5	2.4.2	Page has title
ACT-4.6	2.4.3	Focus order is logical
ACT-4.7	2.4.4	Link has accessible name
ACT-4.8	2.4.4	Link purpose is clear
ACT-4.9	2.4.6	Heading describes topic
ACT-4.10	2.4.7	Focus is visible
ACT-4.11	2.5.1	Clickable has accessible name
ACT-4.12	2.5.5	Target size is sufficient

Understandable (Anlaşılabilir)

Kural ID	Kriter	Açıklama
ACT-5.1	3.1.1	Page language is specified
ACT-5.2	3.1.2	Part language is specified
ACT-5.3	3.2.1	Focus doesn't change context
ACT-5.4	3.2.2	Input doesn't change context unexpectedly
ACT-5.5	3.2.4	Consistent navigation
ACT-5.6	3.3.1	Error identification
ACT-5.7	3.3.2	Form has labels
ACT-5.8	3.3.3	Error suggestion
ACT-5.9	3.3.4	Error prevention

Robust (Sağlam)

Kural ID	Kriter	Açıklama
ACT-6.1	4.1.1	Parsing is valid
ACT-6.2	4.1.2	Custom element has accessible name
ACT-6.3	4.1.2	Custom element has role
ACT-6.4	4.1.2	ARIA state is valid
ACT-6.5	4.1.2	Form has accessible name
ACT-6.6	4.1.3	Status message has role

📈 Innovative Metrics

Focus Efficiency Score (0-100)

Focus'un sayfada ne kadar verimli hareket ettiğini ölçer:

Focus değişim tutarlılığı (40%)
Visible focus outlines (30%)
:focus-visible desteği (30%)

Keyboard Accessibility Score (0-100)

Klavye erişilebilirlik sorunlarını ölçer:

Critical sorun: -10 puan
Serious sorun: -5 puan
Moderate sorun: -2 puan

Screen Reader Friendliness Score (0-100)

ARIA live region kalitesini ölçer:

Doğru aria-live attribute'ları (50%)
Dinamik içerik duyuruları (50%)

Focus Trap Risk Score (0-100)

Klavye tuzağı riskini ölçer:

0 tuzak: 100 puan
1 tuzak: 70 puan
2 tuzak: 40 puan
3+ tuzak: 20 puan

📝 Profesyonel Raporlama

HTML Rapor

<!DOCTYPE html>
<html lang="tr">
<head>
    <title>WCAG Erişilebilirlik Raporu - example.com</title>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
</head>
<body>
    <header>
        <h1>Erişilebilirlik Denetim Raporu</h1>
        <p>Site: example.com</p>
        <p>Tarih: 2026-03-26</p>
    </header>
    
    <section id="summary">
        <h2>Özet</h2>
        <div class="score">Overall Score: 85/100</div>
        <div class="issues">Toplam İhlal: 12</div>
    </section>
    
    <section id="wcag-criteria">
        <h2>WCAG Kriterleri</h2>
        <!-- Her kriter için detaylı sonuç -->
    </section>
    
    <section id="recommendations">
        <h2>Öneriler</h2>
        <!-- Düzeltme önerileri -->
    </section>
</body>
</html>

JSON Rapor

{
  "audit_info": {
    "url": "https://example.com",
    "date": "2026-03-26T08:00:00Z",
    "auditor": "AccessMind Enterprise v6.0",
    "standard": "WCAG 2.2 AA"
  },
  "summary": {
    "overall_score": 85,
    "total_issues": 12,
    "critical": 2,
    "serious": 5,
    "moderate": 5
  },
  "criteria_results": [
    {
      "criterion": "1.1.1",
      "name": "Non-text Content",
      "result": "FAIL",
      "issues": [
        {
          "element": "<img src='logo.png'>",
          "issue": "Image missing alt attribute",
          "severity": "critical",
          "wcag": "1.1.1"
        }
      ]
    }
  ],
  "metrics": {
    "focus_efficiency": 85,
    "keyboard_accessibility": 76,
    "sr_friendliness": 92,
    "focus_trap_risk": 100
  }
}

🔧 Kullanım

CLI (Eski Script'ler)

# Klavye navigasyon testi
python3 /Users/sarper/.openclaw/workspace/skills/accessmind/scripts/accessmind-behavioral-navigator.py \
  --url https://example.com \
  --steps 50 \
  --output /Users/sarper/.openclaw/workspace/audits

# Derinlemesine tarama
python3 /Users/sarper/.openclaw/workspace/skills/accessmind/scripts/accessmind-deep-crawler.py \
  --url https://example.com \
  --depth 5 \
  --pages 12 \
  --output /Users/sarper/.openclaw/workspace/audits

OpenClaw Browser Tool (Önerilen)

AccessMind artık OpenClaw Browser Tool ile tam entegre çalışıyor. Kullanıcıdan gelen "siteyi denetle" talebi otomatik olarak browser tool ile gerçekleştirilir.

📁 Dosya Yapısı

/Users/sarper/.openclaw/workspace/skills/accessmind/
├── SKILL.md                              # Ana dokümantasyon
├── references/
│   ├── wcag-2.2-criteria.md              # WCAG 2.2 kriterleri
│   ├── aria-guide.md                     # ARIA kılavuzu
│   ├── screen-reader-patterns.md         # Screen reader kalıpları
│   ├── voiceover-patterns.md             # VoiceOver kalıpları
│   ├── common-issues.md                  # Yaygın sorunlar
│   ├── browser-tool-workflow.md          # Browser tool workflow
│   └── mobile-testing.md                 # Mobil test
├── scripts/
│   ├── accessmind-behavioral-navigator.py # Klavye navigasyon testi
│   ├── accessmind-deep-crawler.py         # Derinlemesine tarama
│   ├── act-rules-engine.py                # ACT Rules motoru
│   ├── report-generator.py                # Rapor oluşturucu
│   └── wcag-em-evaluator.py               # WCAG-EM değerlendirici
└── assets/
    └── report-template.md                 # Rapor şablonu

🎯 WCAG Kriterleri

Kriter	Kategori	Test Edildi
1.1.1	Non-text Content	✅
1.2.1	Audio-only and Video-only	✅
1.3.1	Info and Relationships	✅
1.3.2	Meaningful Sequence	✅
1.4.3	Contrast Minimum	✅
1.4.4	Resize Text	✅
1.4.10	Reflow	✅
1.4.11	Non-text Contrast	✅
2.1.1	Keyboard	✅
2.1.2	No Keyboard Trap	✅
2.1.4	Character Key Shortcuts	✅
2.4.1	Bypass Blocks	✅
2.4.2	Page Titled	✅
2.4.3	Focus Order	✅
2.4.4	Link Purpose	✅
2.4.5	Multiple Ways	✅
2.4.6	Headings and Labels	✅
2.4.7	Focus Visible	✅
2.5.1	Pointer Gestures	✅
2.5.2	Pointer Cancellation	✅
2.5.3	Label in Name	✅
2.5.4	Motion Actuation	✅
2.5.5	Target Size	✅
2.5.8	Target Size (Minimum)	✅
3.1.1	Language of Page	✅
3.1.2	Language of Parts	✅
3.2.1	On Focus	✅
3.2.2	On Input	✅
3.2.3	Consistent Navigation	✅
3.2.4	Consistent Identification	✅
3.3.1	Error Identification	✅
3.3.2	Labels or Instructions	✅
3.3.3	Error Suggestion	✅
3.3.4	Error Prevention	✅
3.3.7	Redundant Entry	✅
4.1.2	Name, Role, Value	✅
4.1.3	Status Messages	✅

📚 Referanslar

WCAG-EM: https://www.w3.org/TR/WCAG-EM/
ACT Rules: https://www.w3.org/WAI/standards-guidelines/act/
WCAG 2.2: https://www.w3.org/TR/WCAG22/
ARIA Authoring Practices: https://www.w3.org/WAI/ARIA/apg/
Axe-core Rules: https://dequeuniversity.com/rules/axe/4.10/

AccessMind Enterprise v6.0
Güvenli ve Profesyonel Erişilebilirlik Denetimi
OpenClaw Browser Tool Entegrasyonu
WCAG 2.2 AA Uyumluluk

Comments

Loading comments...