@getfoundry/unbrowse-openclaw 0.3.0

package/README.md

@@ -0,0 +1,243 @@
+# Unbrowse
+
+**100x faster web access for OpenClaw agents.**
+
+## The Problem
+
+AI agents like OpenClaw need to interact with websites. Today, they have two options:
+
+1. **Official APIs** — Fast and reliable, but only ~1% of websites have them
+2. **Browser automation** — Universal but painfully slow (5-60 seconds per action)
+
+Browser automation means launching headless Chrome, waiting for pages to load, finding elements with fragile CSS selectors, clicking buttons, waiting for navigation, parsing DOM... all to get data that's already available as clean JSON in the network layer.
+
+```
+Browser Automation Reality
+──────────────────────────
+Launch browser         3-5s
+Navigate to page       2-10s
+Wait for load          1-5s
+Find element           0.5-2s
+Click/interact         0.5-1s
+Wait for response      2-10s
+Parse DOM              1-3s
+──────────────────────────
+Total: 10-40 seconds per action
+Success rate: 70-85%
+```
+
+## The Solution
+
+Every website has internal APIs — the XHR/fetch calls their frontend makes to load data. These endpoints are undocumented but return clean JSON, handle auth properly, and are 50-100x faster than browser automation.
+
+**Unbrowse captures these internal APIs and turns them into skills your agent can call directly.**
+
+```
+Unbrowse
+────────
+Direct API call    →    JSON response
+────────
+Total: 200-500ms
+Success rate: 95%+
+```
+
+## How It Works
+
+### 1. You browse normally
+
+Login to Twitter, scroll your feed, like a post. Unbrowse captures every API call the frontend makes:
+
+- `GET /2/timeline/home.json` — fetches your feed
+- `POST /2/timeline/like.json` — likes a tweet
+- Auth headers, cookies, rate limits — all recorded
+
+### 2. Unbrowse generates a skill
+
+From captured traffic, Unbrowse creates a callable skill:
+
+```typescript
+// Generated automatically
+twitter.getTimeline()     // 200ms, returns JSON
+twitter.likeTweet(id)     // 150ms, returns status
+twitter.postTweet(text)   // 180ms, returns tweet
+```
+
+### 3. Your agent uses it forever
+
+No browser. No waiting. No fragile selectors. Just direct API calls at network speed.
+
+```
+┌─────────────────────────────────────────────────────────────┐
+│                     BEFORE UNBROWSE                         │
+│                                                             │
+│  Agent → Launch browser → Load page → Find element →       │
+│          Click → Wait → Parse DOM → Extract data           │
+│                                                             │
+│  Time: 30 seconds          Success: 75%                    │
+├─────────────────────────────────────────────────────────────┤
+│                     WITH UNBROWSE                           │
+│                                                             │
+│  Agent → API call → JSON response                          │
+│                                                             │
+│  Time: 300ms               Success: 95%+                   │
+└─────────────────────────────────────────────────────────────┘
+```
+
+## What is OpenClaw?
+
+[OpenClaw](https://openclaw.ai) is an open-source AI assistant that runs locally on your devices. It connects to your messaging apps (WhatsApp, Telegram, Slack, Discord, iMessage) and acts as a proactive digital assistant — managing emails, updating calendars, running commands, and taking autonomous actions across your online life.
+
+Unlike cloud-based assistants, OpenClaw:
+- Runs on your hardware (your data stays local)
+- Has persistent memory across sessions
+- Can execute shell commands and scripts
+- Extends via community-built skills and plugins
+
+**Unbrowse is an OpenClaw extension that gives your agent fast, reliable web access without browser automation overhead.**
+
+## Installation
+
+```bash
+openclaw plugins install @getfoundry/unbrowse-openclaw
+```
+
+Also works on Clawdbot and Moltbot:
+```bash
+clawdbot plugins install @getfoundry/unbrowse-openclaw
+moltbot plugins install @getfoundry/unbrowse-openclaw
+```
+
+## Quick Start
+
+### Capture APIs
+
+```bash
+# Tell your agent to browse a site
+"Browse twitter.com and capture the API"
+
+# Or use the tool directly
+unbrowse_capture url="twitter.com"
+```
+
+### Generate a skill
+
+```bash
+unbrowse_generate_skill domain="twitter.com"
+```
+
+### Use it
+
+```bash
+# Your agent can now call Twitter's internal API directly
+unbrowse_replay skill="twitter" action="get_timeline"
+```
+
+## Tools
+
+### Capture & Generate
+
+| Tool | Description |
+|------|-------------|
+| `unbrowse_browse` | Open URL with traffic capture |
+| `unbrowse_capture` | Capture API traffic from domain |
+| `unbrowse_generate_skill` | Generate skill from captured endpoints |
+| `unbrowse_replay` | Execute API calls using skills |
+
+### Auth & Sessions
+
+| Tool | Description |
+|------|-------------|
+| `unbrowse_login` | Login and save session |
+| `unbrowse_session` | Manage saved sessions |
+| `unbrowse_cookies` | Export cookies for a domain |
+
+### Marketplace
+
+| Tool | Description |
+|------|-------------|
+| `unbrowse_search` | Find skills others have created |
+| `unbrowse_install` | Install a skill (own it forever) |
+| `unbrowse_publish` | Share your skills |
+
+## Skill Marketplace
+
+Don't want to capture APIs yourself? Browse skills others have already created.
+
+```bash
+# Search for Twitter skills
+unbrowse_search query="twitter"
+
+# Install one (you own it forever)
+unbrowse_install skill="twitter-timeline"
+```
+
+### Publish Your Own
+
+Share captured APIs with other agents:
+
+```bash
+# Free
+unbrowse_publish name="twitter-timeline"
+
+# Paid ($2.50 USDC)
+unbrowse_publish name="twitter-timeline" price="2.50"
+```
+
+**Earnings:** 70% to creator, 30% platform. Instant payout via x402 protocol on Solana.
+
+**Ownership model:** Buyers own skills forever. One purchase, unlimited use. No per-execution fees.
+
+## Configuration
+
+```json
+{
+  "plugins": {
+    "entries": {
+      "unbrowse-openclaw": {
+        "enabled": true,
+        "config": {
+          "skillsOutputDir": "~/.openclaw/skills",
+          "autoDiscover": true,
+          "creatorWallet": "YOUR_SOLANA_ADDRESS"
+        }
+      }
+    }
+  }
+}
+```
+
+| Option | Default | Description |
+|--------|---------|-------------|
+| `skillsOutputDir` | `~/.openclaw/skills` | Where skills are saved |
+| `autoDiscover` | `true` | Auto-generate skills while browsing |
+| `creatorWallet` | - | Solana address for marketplace earnings |
+| `credentialSource` | `none` | Password lookup: none/keychain/1password |
+
+## Why Not Just Use Browser Automation?
+
+| | Browser Automation | Unbrowse |
+|---|---|---|
+| **Speed** | 10-40 seconds | 200-500ms |
+| **Reliability** | 70-85% (DOM changes break selectors) | 95%+ (APIs rarely change) |
+| **Resource usage** | High (headless browser) | Minimal (HTTP calls) |
+| **Auth handling** | Complex (cookies, sessions, CAPTCHAs) | Built-in (captured with traffic) |
+| **Data format** | Parse from DOM | Clean JSON |
+
+Browser automation has its place — when you need to interact with sites that truly require JavaScript rendering. But most "automation" is just fetching data that's already available via internal APIs.
+
+## x402 Payments
+
+Skill purchases use the [x402 protocol](https://x402.org) for machine-to-machine payments:
+
+1. Agent requests skill download
+2. Server returns HTTP 402 with payment requirements
+3. Agent signs USDC transaction on Solana
+4. Server verifies, returns skill
+
+No intermediaries. Direct creator payment. Instant settlement.
+
+---
+
+**Skip the browser. Call the API.**
+
+*Built for [OpenClaw](https://openclaw.ai). Powered by [x402](https://x402.org).*

package/clawdbot.plugin.json

@@ -0,0 +1,58 @@
+{
+  "id": "unbrowse-openclaw",
+  "uiHints": {
+    "skillsOutputDir": {
+      "label": "Skills Output Directory",
+      "help": "Where generated skills are saved",
+      "placeholder": "~/.openclaw/skills"
+    },
+    "browserPort": {
+      "label": "Browser Control Port",
+      "help": "Port for browser CDP control API (default: 18791)"
+    },
+    "browserUseApiKey": {
+      "label": "Browser Use API Key",
+      "help": "API key for stealth cloud browsers (browser-use.com). Enables unbrowse_stealth tool.",
+      "sensitive": true,
+      "placeholder": "bu_..."
+    },
+    "autoDiscover": {
+      "label": "Auto-Discover Skills",
+      "help": "Automatically generate skills when the agent browses APIs (default: true)"
+    },
+    "skillIndexUrl": {
+      "label": "Skill Index URL",
+      "help": "Cloud skill marketplace API URL",
+      "placeholder": "https://skills.unbrowse.ai"
+    },
+    "creatorWallet": {
+      "label": "Creator Wallet (Solana)",
+      "help": "Your Solana wallet address for receiving USDC when others download your skills",
+      "placeholder": "ABC123..."
+    },
+    "skillIndexSolanaPrivateKey": {
+      "label": "Payment Private Key (Solana)",
+      "help": "Base58-encoded Solana private key for paying x402 USDC when downloading skills from the index",
+      "sensitive": true,
+      "placeholder": "base58..."
+    },
+    "credentialSource": {
+      "label": "Credential Source (Login Passwords)",
+      "help": "Opt-in: where to look up login passwords for auto-login. 'keychain' = macOS Keychain, '1password' = 1Password CLI, 'vault' = local encrypted vault, 'none' = disabled (default)"
+    }
+  },
+  "configSchema": {
+    "type": "object",
+    "additionalProperties": false,
+    "properties": {
+      "skillsOutputDir": { "type": "string" },
+      "browserPort": { "type": "number", "default": 18791 },
+      "browserUseApiKey": { "type": "string" },
+      "autoDiscover": { "type": "boolean", "default": true },
+      "skillIndexUrl": { "type": "string", "default": "https://skills.unbrowse.ai" },
+      "creatorWallet": { "type": "string" },
+      "skillIndexSolanaPrivateKey": { "type": "string" },
+      "credentialSource": { "type": "string", "enum": ["none", "auto", "keychain", "1password", "vault"], "default": "none" }
+    }
+  }
+}

package/dist/index.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Unbrowse — Reverse-engineer internal APIs from any website.
+ *
+ * Pure native Rust implementation. All functionality provided by unbrowse-native.
+ */
+export * from "./native/index.js";
+export default function unbrowsePlugin(api: any): {
+    name: string;
+    version: any;
+    native: any;
+};

package/dist/index.js

@@ -0,0 +1,523 @@
+/**
+ * Unbrowse — Reverse-engineer internal APIs from any website.
+ *
+ * Pure native Rust implementation. All functionality provided by unbrowse-native.
+ */
+// @ts-nocheck - Native module types handled separately
+import * as native from "./native/index.js";
+// Re-export native module
+export * from "./native/index.js";
+export default function unbrowsePlugin(api) {
+    // =========================================================================
+    // Tool: unbrowse_capture
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_capture",
+        description: `Capture internal API traffic from browser and generate a skill.
+
+Visit URLs in the browser, capture all API calls, extract auth tokens, and generate a reusable skill package.
+
+Returns: Skill with endpoints, auth method, and generated TypeScript client.`,
+        parameters: {
+            type: "object",
+            properties: {
+                urls: {
+                    type: "array",
+                    items: { type: "string" },
+                    description: "URLs to visit and capture API traffic from",
+                },
+                output_dir: {
+                    type: "string",
+                    description: "Optional output directory for skill files",
+                },
+            },
+            required: ["urls"],
+        },
+        async execute(args) {
+            const apiData = await native.captureFromUrls(args.urls, undefined);
+            const result = native.generateSkill(apiData, args.output_dir, undefined);
+            return {
+                success: true,
+                service: result.service,
+                skill_dir: result.skillDir,
+                endpoints_count: result.endpointsCount,
+                auth_method: result.authMethod,
+                message: `Captured ${result.endpointsCount} endpoints from ${result.service}. Skill saved to ${result.skillDir}`,
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_replay
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_replay",
+        description: `Call an internal API endpoint using captured auth.
+
+Execute HTTP requests against internal APIs with proper authentication headers and cookies.
+
+Returns: Response status, body, and timing.`,
+        parameters: {
+            type: "object",
+            properties: {
+                service: {
+                    type: "string",
+                    description: "Service name (skill name) to use for auth",
+                },
+                method: {
+                    type: "string",
+                    enum: ["GET", "POST", "PUT", "PATCH", "DELETE"],
+                    description: "HTTP method",
+                },
+                path: {
+                    type: "string",
+                    description: "API path (e.g., /api/users)",
+                },
+                body: {
+                    type: "string",
+                    description: "Request body (JSON string)",
+                },
+            },
+            required: ["service", "method", "path"],
+        },
+        async execute(args) {
+            const skillInfo = native.getSkillInfo(args.service);
+            if (!skillInfo) {
+                return { success: false, error: `Skill not found: ${args.service}` };
+            }
+            const vaultEntry = await native.vaultGet(args.service);
+            const authHeaders = vaultEntry?.headers || {};
+            const cookies = vaultEntry?.cookies || {};
+            const baseUrl = vaultEntry?.baseUrl || `https://${args.service}`;
+            const result = await native.testEndpoint(baseUrl, args.method, args.path, authHeaders, cookies, 30000);
+            return {
+                success: result.status >= 200 && result.status < 400,
+                status: result.status,
+                latency_ms: result.latencyMs,
+                response_shape: result.responseShape,
+                response_size: result.responseSize,
+                error: result.error,
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_login
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_login",
+        description: `Login to a website and capture session auth.
+
+Navigates to login page, fills credentials, and captures resulting session cookies/tokens.
+
+Returns: Captured auth headers and cookies.`,
+        parameters: {
+            type: "object",
+            properties: {
+                url: {
+                    type: "string",
+                    description: "Login page URL",
+                },
+                username: {
+                    type: "string",
+                    description: "Username or email (optional - will lookup from keychain)",
+                },
+                password: {
+                    type: "string",
+                    description: "Password (optional - will lookup from keychain)",
+                },
+            },
+            required: ["url"],
+        },
+        async execute(args) {
+            const domain = new URL(args.url).hostname;
+            let username = args.username;
+            let password = args.password;
+            if (!username || !password) {
+                const creds = native.lookupCredentials(domain);
+                if (creds) {
+                    username = username || creds.username;
+                    password = password || creds.password;
+                }
+            }
+            if (!username || !password) {
+                return { success: false, error: "Credentials not provided and not found in keychain" };
+            }
+            await native.browserStart(undefined);
+            await native.browserNavigate(args.url, undefined);
+            await new Promise(r => setTimeout(r, 2000));
+            const snapshot = await native.browserSnapshot(undefined);
+            for (const el of snapshot.elements) {
+                const elType = el.elementType?.toLowerCase() || "";
+                const elName = el.name?.toLowerCase() || "";
+                if (elType === "email" || elType === "text" || elName.includes("user") || elName.includes("email")) {
+                    await native.browserAct("type", el.index, username, undefined);
+                }
+                if (elType === "password" || elName.includes("pass")) {
+                    await native.browserAct("type", el.index, password, undefined);
+                }
+            }
+            for (const el of snapshot.elements) {
+                const elType = el.elementType?.toLowerCase() || "";
+                const elText = el.text?.toLowerCase() || "";
+                if (elType === "submit" || elText.includes("sign in") || elText.includes("log in")) {
+                    await native.browserAct("click", el.index, undefined, undefined);
+                    break;
+                }
+            }
+            await new Promise(r => setTimeout(r, 3000));
+            const authJson = await native.extractBrowserAuth(domain, undefined);
+            await native.vaultStore(authJson.service, authJson.baseUrl, authJson.authMethod, authJson.headers || {}, authJson.cookies || {});
+            return {
+                success: true,
+                service: authJson.service,
+                auth_method: authJson.authMethod,
+                headers_count: Object.keys(authJson.headers || {}).length,
+                cookies_count: Object.keys(authJson.cookies || {}).length,
+                message: `Logged in and captured auth for ${authJson.service}`,
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_learn
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_learn",
+        description: `Parse a HAR file and generate an API skill.
+
+Takes a HAR file (from browser DevTools export) and generates a complete skill package.
+
+Returns: Generated skill with endpoints and auth.`,
+        parameters: {
+            type: "object",
+            properties: {
+                har_path: {
+                    type: "string",
+                    description: "Path to HAR file",
+                },
+                seed_url: {
+                    type: "string",
+                    description: "Seed URL to determine service name",
+                },
+                output_dir: {
+                    type: "string",
+                    description: "Optional output directory",
+                },
+            },
+            required: ["har_path"],
+        },
+        async execute(args) {
+            const fs = await import("node:fs");
+            if (!fs.existsSync(args.har_path)) {
+                return { success: false, error: `HAR file not found: ${args.har_path}` };
+            }
+            const harJson = fs.readFileSync(args.har_path, "utf-8");
+            const apiData = native.parseHar(harJson, args.seed_url);
+            const result = native.generateSkill(apiData, args.output_dir, undefined);
+            await native.vaultStore(apiData.service, apiData.baseUrl, apiData.authMethod, apiData.authHeaders, apiData.cookies);
+            return {
+                success: true,
+                service: result.service,
+                skill_dir: result.skillDir,
+                endpoints_count: result.endpointsCount,
+                auth_method: result.authMethod,
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_skills
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_skills",
+        description: `List all captured API skills.
+
+Shows locally learned skills with their endpoints and auth methods.`,
+        parameters: {
+            type: "object",
+            properties: {},
+        },
+        async execute() {
+            const skills = native.listSkills();
+            const details = skills.map((service) => {
+                const info = native.getSkillInfo(service);
+                return {
+                    service,
+                    name: info?.name,
+                    endpoints: info?.endpointsCount || 0,
+                    version: info?.version,
+                };
+            });
+            return { success: true, count: skills.length, skills: details };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_auth
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_auth",
+        description: `Extract auth from current browser session.
+
+Captures cookies, localStorage, and request headers from the browser.`,
+        parameters: {
+            type: "object",
+            properties: {
+                domain: {
+                    type: "string",
+                    description: "Domain to extract auth for",
+                },
+            },
+            required: ["domain"],
+        },
+        async execute(args) {
+            const authJson = await native.extractBrowserAuth(args.domain, undefined);
+            await native.vaultStore(authJson.service, authJson.baseUrl, authJson.authMethod, authJson.headers || {}, authJson.cookies || {});
+            return {
+                success: true,
+                service: authJson.service,
+                auth_method: authJson.authMethod,
+                base_url: authJson.baseUrl,
+                headers: Object.keys(authJson.headers || {}),
+                cookies: Object.keys(authJson.cookies || {}),
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_publish
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_publish",
+        description: `Publish a skill to the marketplace.
+
+Shares your API skill for others to use. Credentials are stripped before publishing.`,
+        parameters: {
+            type: "object",
+            properties: {
+                service: {
+                    type: "string",
+                    description: "Service name to publish",
+                },
+                description: {
+                    type: "string",
+                    description: "Description of the skill",
+                },
+                tags: {
+                    type: "array",
+                    items: { type: "string" },
+                    description: "Tags for discoverability",
+                },
+                price_usdc: {
+                    type: "number",
+                    description: "Price in USDC (0 for free)",
+                },
+            },
+            required: ["service"],
+        },
+        async execute(args) {
+            const fs = await import("node:fs");
+            const path = await import("node:path");
+            const os = await import("node:os");
+            const skillDir = path.join(os.homedir(), ".openclaw", "skills", args.service);
+            const skillMdPath = path.join(skillDir, "SKILL.md");
+            const apiTsPath = path.join(skillDir, "scripts", "api.ts");
+            const authJsonPath = path.join(skillDir, "auth.json");
+            if (!fs.existsSync(skillMdPath)) {
+                return { success: false, error: `Skill not found: ${args.service}` };
+            }
+            const skillMd = fs.readFileSync(skillMdPath, "utf-8");
+            const apiTs = fs.existsSync(apiTsPath) ? fs.readFileSync(apiTsPath, "utf-8") : undefined;
+            const authJson = fs.existsSync(authJsonPath) ? fs.readFileSync(authJsonPath, "utf-8") : "{}";
+            const payload = native.prepareForPublish(skillMd, apiTs, authJson);
+            payload.description = args.description;
+            payload.tags = args.tags;
+            payload.priceUsdc = args.price_usdc;
+            const wallet = native.walletGetOrCreate();
+            const message = JSON.stringify({ service: args.service, timestamp: Date.now() });
+            const signature = native.walletSign(message);
+            const result = await native.marketplacePublish(payload, wallet.pubkey, signature, undefined);
+            return {
+                success: true,
+                id: result.id,
+                name: result.name,
+                service: result.service,
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_search
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_search",
+        description: `Search the skill marketplace.
+
+Find API skills others have created and shared.`,
+        parameters: {
+            type: "object",
+            properties: {
+                query: {
+                    type: "string",
+                    description: "Search query",
+                },
+            },
+            required: ["query"],
+        },
+        async execute(args) {
+            const results = await native.marketplaceSearch(args.query, undefined);
+            return {
+                success: true,
+                count: results.length,
+                skills: results.map((s) => ({
+                    id: s.id,
+                    name: s.name,
+                    service: s.service,
+                    description: s.description,
+                    author: s.author,
+                    endpoints: s.endpointsCount,
+                    installs: s.installs,
+                    price_usdc: s.priceUsdc,
+                    badge: s.badge,
+                })),
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_download
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_download",
+        description: `Download a skill from the marketplace.
+
+Install a skill locally. May require x402 payment for paid skills.`,
+        parameters: {
+            type: "object",
+            properties: {
+                skill_id: {
+                    type: "string",
+                    description: "Skill ID to download",
+                },
+            },
+            required: ["skill_id"],
+        },
+        async execute(args) {
+            const fs = await import("node:fs");
+            const path = await import("node:path");
+            const os = await import("node:os");
+            const skillInfo = await native.marketplaceGetSkill(args.skill_id, undefined);
+            if (!skillInfo) {
+                return { success: false, error: `Skill not found: ${args.skill_id}` };
+            }
+            let paymentSig;
+            if (skillInfo.priceUsdc && skillInfo.priceUsdc > 0 && skillInfo.authorWallet) {
+                paymentSig = native.walletSignPayment(args.skill_id, skillInfo.priceUsdc, skillInfo.authorWallet);
+            }
+            const pkg = await native.marketplaceDownload(args.skill_id, paymentSig, undefined);
+            const skillDir = path.join(os.homedir(), ".openclaw", "skills", pkg.id);
+            fs.mkdirSync(path.join(skillDir, "scripts"), { recursive: true });
+            fs.mkdirSync(path.join(skillDir, "references"), { recursive: true });
+            fs.writeFileSync(path.join(skillDir, "SKILL.md"), pkg.skillMd);
+            if (pkg.apiTs) {
+                fs.writeFileSync(path.join(skillDir, "scripts", "api.ts"), pkg.apiTs);
+            }
+            if (pkg.referenceMd) {
+                fs.writeFileSync(path.join(skillDir, "references", "REFERENCE.md"), pkg.referenceMd);
+            }
+            await native.marketplaceTrackInstall(args.skill_id, undefined);
+            return {
+                success: true,
+                id: pkg.id,
+                skill_dir: skillDir,
+                endpoints: pkg.endpoints.length,
+                auth_method: pkg.authMethod,
+            };
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_wallet
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_wallet",
+        description: `Manage your marketplace wallet.
+
+Create or view your Ed25519 wallet for x402 payments.`,
+        parameters: {
+            type: "object",
+            properties: {
+                action: {
+                    type: "string",
+                    enum: ["get", "create"],
+                    description: "Action to perform",
+                },
+            },
+            required: ["action"],
+        },
+        async execute(args) {
+            if (args.action === "create") {
+                const existing = native.walletGet();
+                if (existing) {
+                    return { success: true, pubkey: existing.pubkey, created_at: existing.createdAt, message: "Wallet already exists" };
+                }
+                const wallet = native.walletCreate();
+                return { success: true, pubkey: wallet.pubkey, created_at: wallet.createdAt, message: "Created new wallet" };
+            }
+            else {
+                const wallet = native.walletGet();
+                if (!wallet) {
+                    return { success: false, error: "No wallet found. Use action: create" };
+                }
+                return { success: true, pubkey: wallet.pubkey, created_at: wallet.createdAt };
+            }
+        },
+    });
+    // =========================================================================
+    // Tool: unbrowse_record
+    // =========================================================================
+    api.registerTool({
+        name: "unbrowse_record",
+        description: `Record a workflow session.
+
+Start/stop recording browser interactions to learn multi-step workflows.`,
+        parameters: {
+            type: "object",
+            properties: {
+                action: {
+                    type: "string",
+                    enum: ["start", "stop", "status"],
+                    description: "Recording action",
+                },
+            },
+            required: ["action"],
+        },
+        async execute(args) {
+            if (args.action === "start") {
+                const id = native.recordingStart();
+                return { success: true, session_id: id, message: "Recording started" };
+            }
+            else if (args.action === "stop") {
+                const session = native.recordingStop();
+                if (!session) {
+                    return { success: false, error: "No active recording" };
+                }
+                const workflow = native.workflowLearn(session);
+                return {
+                    success: true,
+                    session_id: session.id,
+                    steps: session.steps.length,
+                    domains: session.domains,
+                    workflow_id: workflow.id,
+                    workflow_name: workflow.name,
+                };
+            }
+            else {
+                const isActive = native.recordingIsActive();
+                const current = native.recordingCurrent();
+                return {
+                    success: true,
+                    is_active: isActive,
+                    session: current ? { id: current.id, steps: current.steps.length, domains: current.domains } : null,
+                };
+            }
+        },
+    });
+    return {
+        name: "unbrowse",
+        version: native.getVersion(),
+        native: native.isNative(),
+    };
+}

package/hooks/auto-discover/HOOK.md

@@ -0,0 +1,45 @@
+---
+name: unbrowse-auto-discover
+description: Auto-generates skills when the agent browses APIs
+metadata:
+  openclaw:
+    emoji: "🔍"
+    events: ["tool_result_persist"]
+    export: "default"
+---
+
+# Auto-Discover Hook
+
+Watches browser tool usage and automatically generates skills when API traffic is detected.
+
+## How It Works
+
+1. Listens for `tool_result_persist` events from the `browser` and `browse` tools
+2. Polls captured network requests from the browser control API
+3. When 5+ API calls to a new domain are detected, auto-generates a skill
+4. Skills are saved to `~/.openclaw/skills/<service>/`
+
+## Configuration
+
+Enable/disable in `~/.openclaw/openclaw.json`:
+
+```json5
+{
+  plugins: {
+    entries: {
+      unbrowse: {
+        config: {
+          autoDiscover: true  // default: true
+        }
+      }
+    }
+  }
+}
+```
+
+## Generated Output
+
+For each discovered API:
+- `SKILL.md` — OpenClaw-compatible skill definition
+- `auth.json` — Extracted authentication (headers, cookies)
+- `scripts/api.ts` — TypeScript API client

package/openclaw.plugin.json

@@ -0,0 +1,119 @@
+{
+  "id": "unbrowse-openclaw",
+  "name": "Unbrowse",
+  "description": "API reverse engineering for OpenClaw. Capture any API and turn it into monetizable skills for AI agents.",
+  "version": "0.2.1",
+  "repository": "github:lekt9/unbrowse-openclaw",
+  "configSchema": {
+    "type": "object",
+    "additionalProperties": false,
+    "properties": {
+      "skillsOutputDir": {
+        "type": "string",
+        "description": "Directory where generated skills are saved"
+      },
+      "browserPort": {
+        "type": "number",
+        "default": 18791,
+        "description": "Port for browser CDP control API"
+      },
+      "autoDiscover": {
+        "type": "boolean",
+        "default": true,
+        "description": "Automatically generate skills when the agent browses APIs"
+      },
+      "skillIndexUrl": {
+        "type": "string",
+        "default": "https://index.unbrowse.ai",
+        "description": "Cloud skill marketplace API URL"
+      },
+      "marketplace": {
+        "type": "object",
+        "properties": {
+          "creatorWallet": {
+            "type": "string",
+            "description": "Solana wallet address for receiving USDC payments"
+          },
+          "solanaPrivateKey": {
+            "type": "string",
+            "description": "Base58-encoded Solana private key for x402 payments"
+          },
+          "defaultPrice": {
+            "type": "string",
+            "default": "0",
+            "description": "Default price for published skills (0 = free, or $0.10-$100 USDC)"
+          }
+        }
+      },
+      "browser": {
+        "type": "object",
+        "properties": {
+          "useApiKey": {
+            "type": "string",
+            "description": "Browser Use API key for stealth cloud browsers"
+          },
+          "proxyCountry": {
+            "type": "string",
+            "default": "us",
+            "description": "Default proxy country for stealth browser (us, gb, de, etc.)"
+          }
+        }
+      },
+      "credentialSource": {
+        "type": "string",
+        "enum": ["none", "auto", "keychain", "1password", "vault"],
+        "default": "none",
+        "description": "Where to look up login passwords for auto-login"
+      }
+    }
+  },
+  "uiHints": {
+    "skillsOutputDir": {
+      "label": "Skills Output Directory",
+      "help": "Where generated skills are saved locally",
+      "placeholder": "~/.openclaw/skills"
+    },
+    "browserPort": {
+      "label": "Browser Control Port",
+      "help": "Port for browser CDP control API (default: 18791)"
+    },
+    "autoDiscover": {
+      "label": "Auto-Discover Skills",
+      "help": "Automatically generate skills when browsing APIs"
+    },
+    "skillIndexUrl": {
+      "label": "Skill Marketplace URL",
+      "help": "Cloud skill marketplace API endpoint"
+    },
+    "marketplace.creatorWallet": {
+      "label": "Creator Wallet (Solana)",
+      "help": "Your Solana wallet address for receiving USDC when others download your skills",
+      "placeholder": "ABC123..."
+    },
+    "marketplace.solanaPrivateKey": {
+      "label": "Payment Private Key",
+      "help": "Base58-encoded Solana private key for paying x402 USDC when downloading paid skills",
+      "sensitive": true
+    },
+    "marketplace.defaultPrice": {
+      "label": "Default Skill Price",
+      "help": "Default price when publishing skills (0 = free)",
+      "placeholder": "0"
+    },
+    "browser.useApiKey": {
+      "label": "Browser Use API Key",
+      "help": "API key for stealth cloud browsers (browser-use.com)",
+      "sensitive": true,
+      "placeholder": "bu_..."
+    },
+    "browser.proxyCountry": {
+      "label": "Proxy Country",
+      "help": "Default proxy location for stealth browser",
+      "placeholder": "us"
+    },
+    "credentialSource": {
+      "label": "Credential Source",
+      "help": "Where to look up login passwords. 'keychain' = macOS Keychain, '1password' = 1Password CLI"
+    }
+  }
+}

package/package.json

@@ -0,0 +1,67 @@
+{
+  "name": "@getfoundry/unbrowse-openclaw",
+  "version": "0.3.0",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "description": "API reverse engineering for OpenClaw. Capture any API and turn it into monetizable skills for AI agents.",
+  "license": "UNLICENSED",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/lekt9/unbrowse-openclaw"
+  },
+  "keywords": [
+    "openclaw",
+    "clawdbot",
+    "ai-agent",
+    "api-reverse-engineering",
+    "browser-automation",
+    "skill-marketplace",
+    "x402",
+    "solana"
+  ],
+  "files": [
+    "dist/index.js",
+    "dist/index.d.ts",
+    "native/index.js",
+    "native/index.d.ts",
+    "native/unbrowse-native.darwin-arm64.node",
+    "native/unbrowse-native.darwin-x64.node",
+    "native/unbrowse-native.linux-x64-gnu.node",
+    "native/unbrowse-native.win32-x64-msvc.node",
+    "hooks/",
+    "openclaw.plugin.json",
+    "clawdbot.plugin.json"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "prepublishOnly": "npm run build"
+  },
+  "openclaw": {
+    "extensions": ["./dist/index.js"],
+    "hooks": ["./hooks/auto-discover"]
+  },
+  "clawdbot": {
+    "extensions": ["./dist/index.js"],
+    "hooks": ["./hooks/auto-discover"]
+  },
+  "moltbot": {
+    "extensions": ["./dist/index.js"],
+    "hooks": ["./hooks/auto-discover"]
+  },
+  "dependencies": {},
+  "peerDependencies": {
+    "openclaw": "*",
+    "clawdbot": "*",
+    "moltbot": "*"
+  },
+  "peerDependenciesMeta": {
+    "openclaw": { "optional": true },
+    "clawdbot": { "optional": true },
+    "moltbot": { "optional": true }
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.7.0"
+  }
+}