首页龙虾技能列表 › Screenshots for AI agents via x402

Screenshots for AI agents via x402

v1.0.1

Browser screenshots and vision over MCP Streamable HTTP with x402 USDC micropayments at this deployment. Paid tools require an x402-aware MCP client and a fu...

0· 29·0 当前·0 累计
by @buildinhk·MIT-0
下载技能包
License
MIT-0
最后更新
2026/4/14
安全扫描
VirusTotal
可疑
查看报告
OpenClaw
可疑
medium confidence
The skill's behavior (remote screenshotting with on-chain x402 payments) is coherent with its description, but there are mismatches and privacy/billing risks you should understand before enabling paid features.
评估建议
This skill is coherent for remote, paid screenshot capture, but take these precautions before using it: - Read https://screenshotx402.com/discovery.json and call the free health tool to confirm pricing, network (e.g., base), and mcp.url before any paid call. - Understand that any URL you submit (and prompts for analyze_screenshot) will be fetched and rendered on the operator's infrastructure — do NOT submit non-public or sensitive URLs or URLs containing secrets. - Paid features require an x402-...
详细分析 ▾
用途与能力
The skill claims to provide remote browser screenshots via an MCP Streamable HTTP endpoint with x402 USDC micropayments — and its instructions describe exactly that flow, so the requested capabilities match the stated purpose. However, the registry metadata declares no required environment variables or primary credential even though the SKILL.md explains paid tools require a signing wallet (examples: AGENT_PRIVATE_KEY, X402_PRIVATE_KEY). The absence of declared required credentials in metadata is an inconsistency you should confirm with the publisher.
指令范围
Instructions explicitly send submitted URLs and prompts to the remote operator (https://screenshotx402.com) which fetches and renders pages and processes screenshots off-host. The SKILL.md does warn not to submit private or auth-gated URLs, but this off-host processing and transmission of page content and prompts is an inherent privacy risk and should be treated as expected behavior before using the skill.
安装机制
This is an instruction-only skill with no install spec and no code files — nothing is written to disk by the skill itself. That reduces installation risk.
凭证需求
While the registry lists no required environment variables, the runtime docs state paid features require an x402-aware MCP client and signing keys (examples: AGENT_PRIVATE_KEY, X402_PRIVATE_KEY) and USDC on-chain. Requesting private keys and on-chain funds for paid capture is proportionate to the paid feature, but the metadata omission means the skill may prompt you to supply sensitive credentials or platform vault entries at runtime; verify how your platform will store/require those secrets.
持久化与权限
The skill does not request permanent/always-on inclusion (always: false). It does not request to modify other skills or system-wide settings. Autonomous invocation is allowed (platform default); combine that with paid operations only if you trust the deployment.
安全有层次,运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发,无需署名。

运行时依赖

无特殊依赖

版本

latestv1.0.12026/4/14

**Security, privacy, and usage requirements clarified for paid tools.** - Added explicit guidance about privacy: only use for public, non-sensitive URLs, as all page data and prompts are processed off-host. - Stated requirement for x402-aware MCP client and funded wallet: paid endpoints require signing USDC payments via agent environment, never in user prompts. - Warned users not to store keys or secrets in prompts—use secure environment variables as per documentation. - Clarified that free discovery and health checks require no wallet or signing access. - Updated description and onboarding steps to emphasize security and payment prerequisites.

● 可疑

安装命令 点击复制

官方npx clawhub@latest install screenshots-for-ai-agents
镜像加速npx clawhub@latest install screenshots-for-ai-agents --registry https://cn.clawhub-mirror.com
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制

了解定制服务