Form Auto
v1.0.0Universal form auto-fill tool for OpenClaw. Use when user needs to fill out web forms automatically. Supports job applications, registrations, surveys, and a...
⭐ 1· 97·0 current·0 all-time
by@tobewin
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The skill is a universal form autofill and the SKILL.md uses browser automation and simple field-matching logic; these requirements are coherent with the description. It declares python3 and needsBrowser: true in metadata (python3 plausibly used for the matching helper function, and browser access is required to operate). The only mismatch is marketing wording like "Works with any web form" (overbroad claim) but nothing else appears unrelated to the stated purpose.
Instruction Scope
The instructions explicitly state the skill will access the browser session / existing login state and run injected JS in arbitrary pages to detect and fill fields — this is necessary for autofill but is high-risk because it implicitly has access to cookies, auth tokens, and other sensitive page DOM. The SKILL.md also says "use saved profile from previous sessions" but does not specify where/how profiles are stored or protected, which raises concerns about persistent storage of user data. The provided runtime steps do not show any explicit external exfiltration, but a full review of the truncated portion is needed to ensure no hidden external endpoints or uploads are present.
Install Mechanism
Instruction-only skill with no install spec and no code files beyond SKILL.md — lowest install risk. Nothing is downloaded or written to disk by an installer in the manifest.
Credentials
The skill requests no environment variables or external credentials, which is proportionate. However, it requires access to the browser session (declared via needsBrowser), which is a legitimate need for a form-filling tool but is sensitive: browser profiles can contain cookies and tokens for unrelated services. The skill's use of saved profiles is not justified with storage details.
Persistence & Privilege
The skill is not always-enabled and is user-invocable; model invocation is allowed (platform default). It does not request elevated platform privileges in the manifest. Still, because it interacts with the browser session and mentions saved profiles, check how/where any persisted profile data would be stored and who can access it.
Assessment
This skill appears to do what it says (automatically fill web forms) but it needs access to your browser session and may store form profiles. Before installing or using it: 1) Only use it on trusted sites — autofill will operate with your logged-in session and could submit sensitive data. 2) Ask the publisher (or inspect the full SKILL.md) how saved profiles are stored, encrypted, and deleted; avoid saving highly sensitive items (passwords, SSNs) in profiles. 3) Prefer invoking it manually rather than allowing autonomous runs; verify prompts before submission. 4) If possible run it against an ephemeral browser profile or in a test account to validate behavior. 5) Request the truncated remainder of the SKILL.md (or full file) and confirm there are no external upload endpoints or telemetry calls that would exfiltrate filled data. If you cannot get those assurances, treat the skill as privacy-sensitive and limit its use.Like a lobster shell, security has layers — review code before you run it.
latestvk971vb02gymvqb3sh2nc4hw8nh83hemw
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📝 Clawdis
Binspython3