ClawHub

Weibo Browser Ops

v0.1.0

Operate Weibo via browser automation for composing posts, publishing content, replying to comments, checking mentions, and monitoring basic account metrics....

2· 946·14 current·15 all-time
byLucas@yikailucas
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description (Weibo browser automation for posting, replying, checking metrics) align with the SKILL.md which instructs opening Weibo pages, composing/publishing posts, replying, and reading visible metrics; no unrelated services, binaries, or credentials are requested.
Instruction Scope
Runtime instructions are scoped to browser automation of Weibo workflows (open pages, snapshot+act, ask for confirmation before publish/delete, pause on CAPTCHA). They do not instruct the agent to read arbitrary files, request unrelated environment variables, or exfiltrate data to other endpoints.
Install Mechanism
Instruction-only skill with no install spec or code files. No downloads, package installs, or disk writes are declared — lowest-risk install mechanism.
Credentials
No environment variables, credentials, or config paths are required. The SKILL.md asks the user to perform login/verification interactively rather than requesting stored credentials, which is proportionate for a browser-automation account manager.
Persistence & Privilege
always is false and there are no statements about modifying other skills or system-wide settings. The skill can be invoked autonomously by the agent (platform default), which is expected for skills that perform actions; the SKILL.md also requires explicit confirmation before irreversible actions.
Assessment
This skill appears coherent with its stated purpose, but it will control a browser session and perform actions on whatever Weibo account is logged in. Before installing or using: 1) Only use while you (the user) are present to complete logins/2FA—do not paste credentials into prompts for the agent. 2) Confirm the skill asks for explicit confirmation before any publish/delete and test that behavior. 3) Try it first with a secondary/test account. 4) Be aware snapshots may capture page content (including sensitive info in the DOM or images); avoid exposing other accounts or data in the browser session. 5) Monitor account activity and revoke sessions or tokens if you see unexpected actions.

Like a lobster shell, security has layers — review code before you run it.

latestvk97bap9sczx1esfeaa7kb92n85825f5b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments