by 安全扫描
OpenClaw
可疑
medium confidenceThe skill's code generally matches a browser-driven LinkedIn automation tool, but there are multiple internal inconsistencies and a few practices you should verify before installing (notably browser-debugger/cookie access, local WebSocket endpoints, and mismatched docs vs code).
评估建议
This project appears to implement a browser-based LinkedIn automation tool and mostly does what it says, but you should take these precautions before installing:
- Review and understand the Chrome extension code (extension/background.js and extension/dom_commands.js). The extension requests cookies and debugger permissions which let it read and manipulate pages in your logged-in LinkedIn session — only install if you trust the code and author.
- Confirm the correct local WebSocket port: SKILL.m...详细分析 ▾
ℹ 用途与能力
The skill claims to automate LinkedIn using the user's logged-in browser session — the included Chrome extension + Python bridge code implements that. Requesting no API keys and using browser cookies is proportionate to the stated purpose. However, registry metadata (no config paths) versus SKILL.md (declares ~/.linkedin-skills/images) and code comments/docs disagree on the bridge port and other minor details, which suggests sloppy packaging rather than clean alignment.
⚠ 指令范围
SKILL.md enforces using python scripts/cli.py and a Chrome extension that uses cookies and chrome.debugger to read and manipulate the LinkedIn DOM. That scope is consistent with the purpose, but the runtime instructions contain contradictory details (SKILL.md text mentions bridge at ws://localhost:9335 while extension background.js and bridge_server.py use 9336; bridge.py has a default of 9335 but the CLI passes 9336). The doc also asserts 'no external network calls', but the Python image_downloader deliberately fetches user-supplied image URLs and caches them to ~/.linkedin-skills/images (this is disclosed). Because the extension uses chrome.debugger and cookies, it can access and act inside your logged-in LinkedIn session — appropriate for automation but high-impact if you don't trust the code.
ℹ 安装机制
The package doesn't include a formal registry install spec but SKILL.md suggests pip installing websockets or using 'uv sync' (uv package manager). That's an expected moderate-risk install path (pulling from PyPI). There's no remote arbitrary archive download in the install instructions. The extension must be loaded unpacked by the user (manual step) which reduces stealth risk but requires trusting the local extension code.
✓ 凭证需求
No environment variables or external credentials are requested. The skill requires access to your browser session (cookies) and debugging APIs to operate LinkedIn as your logged-in user — this is proportional to the automation purpose but is sensitive (session access allows acting as you on LinkedIn). The project stores downloaded images under ~/.linkedin-skills/images, which is consistent with its functionality.
✓ 持久化与权限
The skill is not marked always:true and does not request to modify other skills. It runs a local WebSocket bridge server and asks you to install a Chrome extension (explicit user action). Those are normal for this architecture; autonomous agent invocation remains enabled by default but is not itself a new red flag here.
安全有层次,运行前请审查代码。
运行时依赖
🖥️ OSmacOS · Linux
版本
latestv1.0.02026/4/16
Initial release: browser-based LinkedIn automation for AI agents
● 无害
安装命令
点击复制官方npx clawhub@latest install linkedin-skills
镜像加速npx clawhub@latest install linkedin-skills --registry https://cn.longxiaskill.com