饿了么外卖点餐
ReviewAudited by ClawScan on May 1, 2026.
Overview
This skill is transparent and purpose-aligned for Ele.me ordering, but it uses your real browser/account and can submit an order after your confirmation.
Use this only when you are comfortable letting the agent operate your Ele.me browser session. Review the final checkout details before confirming, complete payment yourself, and consider pinning the Playwright MCP dependency instead of using @latest.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can add items and, after you confirm the checkout page, submit an Ele.me order in your account.
The skill intentionally gives the agent browser-control authority over a real checkout flow. This is purpose-aligned and disclosed, with a manual-payment boundary, but it can still change the user's cart and submit an order.
The agent controls a real browser via Playwright MCP to browse restaurants, add items to cart, and submit orders. User handles payment manually.
Carefully review the checkout page address, items, quantities, fees, discounts, total price, and delivery time before saying to confirm.
Using the skill may expose your Ele.me login session, phone/SMS login flow, delivery address, recipient name, and phone number to the agent-controlled browser session.
The login flow asks for a phone number and SMS verification code, and the checkout flow displays delivery identity details. This is expected for Ele.me ordering, but it is sensitive account and personal information.
输入手机号 ... 询问用户验证码 ... 收货地址:地址、收件人姓名、电话
Only provide the SMS code when you intend to log in to Ele.me, verify the browser is on the expected Ele.me site, and never provide payment passwords or payment verification credentials.
The MCP package version used for browser automation could change between installs or runs.
The documented setup runs the Playwright MCP server through npx using the moving @latest package tag. That is a common setup pattern, but it is not version-pinned.
"command": "npx", "args": ["@playwright/mcp@latest"]
Prefer a pinned, trusted Playwright MCP version if your environment supports it, and install it from a trusted package source.