auth-manager

Manages web login states using fast-browser-use, automating profile management and session checks across platforms.

Install this skill

or

51/100

Security score

The auth-manager skill was audited on May 26, 2026 and we found 17 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 44

Curl to non-GitHub URL

SourceSKILL.md

44	curl -s --max-time 10 'https://ai.9w7.cn/api/user/info' -H "Authorization: Bearer $TOKEN"

medium line 48

Curl to non-GitHub URL

SourceSKILL.md

48	curl -s --max-time 10 'https://your-provider.example.com/api/user/info' -H "Cookie: $COOKIE"

low line 20

Access to hidden dotfiles in home directory

SourceSKILL.md

20	~/.openclaw/browser/openclaw/user-data/ ← 唯一的 Chrome profile（内置 browser）

low line 21

Access to hidden dotfiles in home directory

SourceSKILL.md

21	~/.openclaw/auth-platforms.json ← 平台配置

low line 22

Access to hidden dotfiles in home directory

SourceSKILL.md

22	~/.openclaw/auth-session-state.json ← 检查结果状态

medium line 83

Access to hidden dotfiles in home directory

SourceSKILL.md

83	登录成功后，cookie/localStorage/IndexedDB 自动保存在 `~/.openclaw/browser/openclaw/user-data/`。

medium line 101

Access to hidden dotfiles in home directory

SourceSKILL.md

101	`~/.openclaw/auth-platforms.json`:

medium line 135

Access to hidden dotfiles in home directory

SourceSKILL.md

135	`~/.openclaw/auth-session-state.json`:

medium line 158

Access to hidden dotfiles in home directory

SourceSKILL.md

158	3. 旧 profile 目录 `~/.openclaw/chrome-profiles/<platform>/` 已废弃，仅保留 session.json 供 curl 读取 token/cookie

medium line 164

Access to hidden dotfiles in home directory

SourceSKILL.md

164	- 旧版：每个平台独立 fbu Chrome profile (`~/.openclaw/chrome-profiles/<platform>/`)

medium line 165

Access to hidden dotfiles in home directory

SourceSKILL.md

165	- 新版：所有平台共享内置 browser profile (`~/.openclaw/browser/openclaw/user-data/`)

low line 44

External URL reference

SourceSKILL.md

44	curl -s --max-time 10 'https://ai.9w7.cn/api/user/info' -H "Authorization: Bearer $TOKEN"

low line 48

External URL reference

SourceSKILL.md

48	curl -s --max-time 10 'https://your-provider.example.com/api/user/info' -H "Cookie: $COOKIE"

low line 74

External URL reference

SourceSKILL.md

74	browser(action='navigate', targetUrl='https://platform.com/login', profile='openclaw')

low line 91

External URL reference

SourceSKILL.md

91	browser(action='navigate', targetUrl='https://polymarket.com', profile='openclaw')

low line 108

External URL reference

SourceSKILL.md

108	"check_url": "https://example.com/dashboard",

low line 109

External URL reference

SourceSKILL.md

109	"login_url": "https://example.com/login",

Scanned on May 26, 2026

View Security Dashboard

Installation guide →

GitHub Stars 62

Rate this skill

Categorydevelopment

UpdatedMay 31, 2026

frontend git api backend backend-developer devops-sre technical-writer development content media

aAAaqwq/AGI-Super-Team