首页 / 技能 / Font Interceptor — 网站字体提取

📦 Font Interceptor — 网站字体提取

v1.0.0

输入任意网址,即可一键识别并下载网页所用 TTF/OTF 字体文件,无需安装插件。

0· 423·0 当前·0 累计
by @honeybee1130
文件处理网络工具开发工具
下载技能包
最后更新
2026/2/25
0
安全扫描
VirusTotal
无害
查看报告
OpenClaw
可疑
medium confidence
NULL
评估建议
This skill will open a third-party website (fontinterceptor.mschfmag.com) and submit the URL you provide. Before installing or using it: (1) consider privacy — the target URL and any page contents may be transmitted to that external site (avoid submitting private/internal URLs or pages behind auth); (2) the instructions reference using a browser profile named "openclaw" and taking snapshots — confirm what that profile contains and whether snapshots or DOM data are stored or shared; (3) if you ar...
详细分析 ▾
用途与能力
Name/description (extract fonts from websites) align with the SKILL.md: it directs the agent to use the MSCHF Font Interceptor to input a URL and report found fonts and download links. Using a web tool for this task is coherent.
指令范围
SKILL.md instructs the agent to use a browser tool with profile:"openclaw", take snapshots, locate input fields, and submit the target URL to a third-party site. Taking snapshots and using a named profile may capture or reuse cookies, stored credentials, open tabs, or other sensitive data. The skill does not declare or justify use of that profile or describe how snapshots are stored/handled, which is scope creep beyond simple URL submission.
安装机制
Instruction-only skill with no install steps or external downloads; nothing is written to disk by the skill itself. This is low install risk.
凭证需求
The skill requests no environment variables or credentials, which is appropriate, but it references a specific browser profile (openclaw) that may grant access to stored cookies/credentials or local browser state. It also sends the target URL (and possibly resulting page content) to a third-party service (fontinterceptor.mschfmag.com), which could leak information about the target site (including private or internal URLs). These privacy/credential-exposure risks are not acknowledged in the skill metadata or instructions.
持久化与权限
The skill does not request always:true, does not modify other skills, and has no install-time persistence. Autonomous invocation is allowed (platform default) but not by itself a red flag here.
安全有层次,运行前请审查代码。

运行时依赖

无特殊依赖

版本

latestv1.0.02026/2/24

NULL

无害

安装命令

点击复制
官方npx clawhub@latest install font-interceptor
镜像加速npx clawhub@latest install font-interceptor --registry https://cn.longxiaskill.com
数据来源ClawHub ↗ · 中文优化:龙虾技能库