How Opencli Oneshot fits into a Paperclip company.

Opencli Oneshot drops into any Paperclip agent that handles opencli and adapter work. Assign it to a specialist inside a pre-configured PaperclipOrg company and the skill becomes available on every heartbeat — no prompt engineering, no tool wiring.
SaaS FactoryPaired
Pre-configured AI company — 18 agents, 18 skills, one-time purchase.
$27$59
Explore pack
Source file
SKILL.md310 linesmarkdown
Expand
1---2name: opencli-oneshot3description: Use when quickly generating a single OpenCLI command from a specific URL and goal description. 4-step process — open page, capture API, write TS adapter, test. For full site exploration, use opencli-explorer instead.4tags: [opencli, adapter, quick-start, ts, cli, one-shot, automation]5---6 7# CLI-ONESHOT — 单点快速 CLI 生成8 9> 给一个 URL + 一句话描述，4 步生成一个 CLI 命令。10> 完整探索式开发请看 [opencli-explorer skill](../opencli-explorer/SKILL.md)。11 12**遇到以下情况立即切换到 explorer，不要在 oneshot 里继续硬撑：**13- Step 3 验证 fetch 始终拿不到数据（签名/风控，非 cookie/header 能解决的）14- 需要 Pinia Store Action 触发 API15- 同一站点要生成 2 个以上命令16- `opencli browser network` 完全空，JS bundle 里也找不到 baseURL17 18---19 20## 输入21 22| 项目 | 示例 |23|------|------|24| **URL** | `https://x.com/jakevin7/lists` |25| **Goal** | 获取我的 Twitter Lists |26 27---28 29## 流程30 31### Step 1: 打开页面 + 抓包32 33```bash34opencli browser open <目标 URL>          # 打开目标页面（自动开始抓包）35opencli browser wait time 3              # 等页面加载完、API 请求触发36opencli browser network                  # 查看捕获的 JSON API 请求37```38 39**关键**：`network` 默认已过滤静态资源，只显示 JSON/XML/text 的 API 请求。40如果没有自动触发 API，用 `opencli browser state` 找到按钮索引，`opencli browser click <N>` 点击后再 `network` 抓一次。41 42**`network` 为空？** ① 重新 `open` 刷新捕获窗口；② 如果是 SPA，API domain 可能是 `api.xxx.com` 而非 `app.xxx.com`，用 Step 2 里的 bundle 搜索找真实 baseURL。43 44### Step 2: 锁定一个接口45 46从 `opencli browser network` 结果中找到**那个**目标 API，用 `--detail` 查看完整响应：47 48```bash49opencli browser network --detail <N>     # 查看第 N 条请求的完整响应体50```51 52关注这几个字段：53 54| 字段 | 关注什么 |55|------|----------|56| URL | API 路径 pattern（如 `/i/api/graphql/xxx/ListsManagePinTimeline`） |57| Method | GET / POST |58| Headers | 有 Cookie? Bearer? CSRF? 自定义签名? |59| Response | 数据在哪个路径（如 `data.list.lists`） |60 61> **SPA 注意**：如果 `network` 里 API 的 host 和页面 host 不同（如 `api.xxx.com` vs `app.xxx.com`），后续 `fetch` 要用完整 URL。62> 如果 `network` 完全没有 API 请求，搜 JS bundle 找 baseURL：63> ```bash64> opencli browser eval "(async()=>{const s=[...document.querySelectorAll('script[src]')].map(e=>e.src).find(s=>s.match(/index|main|app/));const t=await fetch(s).then(r=>r.text());const m=t.indexOf('baseURL')>-1?t.indexOf('baseURL'):t.indexOf('baseUrl');return m>-1?t.slice(m-10,m+80):'not found'})()"65> ```66 67### Step 3: 验证接口能复现68 69用 `opencli browser eval` 在页面内 `fetch` 复现请求：70 71```bash72# Tier 2 (Cookie): 传统网站73opencli browser eval "fetch('/api/endpoint', { credentials: 'include' }).then(r => r.json())"74 75# Tier 2.5 (localStorage Bearer): 现代 SaaS 主流（slock、Linear、Notion 等）76opencli browser eval "(async () => {77  const token = localStorage.getItem('access_token');  // 换成实际 key78  const res = await fetch('https://api.example.com/endpoint', {79    headers: { 'Authorization': 'Bearer ' + token },80    credentials: 'include'81  });82  return res.json();83})()"84 85# Tier 3 (Header): 如 Twitter 需要额外 header86opencli browser eval "(async () => {87  const ct0 = document.cookie.match(/ct0=([^;]+)/)?.[1];88  const res = await fetch('/api/endpoint', {89    headers: { 'Authorization': 'Bearer ...', 'X-Csrf-Token': ct0 },90    credentials: 'include'91  });92  return res.json();93})()"94```95 96> 带了 Bearer 但返回 `{ error: "Missing X-Xxx-Id header" }`（HTTP 400）→ 多租户 SaaS 需要业务上下文 Header。先调 `/servers` 或 `/workspaces` 拿 ID，再加进 headers。97 98如果 fetch 能拿到数据 → 用 TS adapter（`cli()` pipeline 或 `func()`）。99如果 fetch 拿不到（签名/风控）→ 用 intercept 策略（TS `func()` + `installInterceptor`）。100 101### Step 4: 套模板，生成 adapter102 103根据 Step 3 判定的策略，选一个模板生成文件。104 105---106 107## 认证速查108 109```110fetch(url) 直接能拿到？                        → Tier 1: public   (browser: false)111fetch(url, {credentials:'include'})？          → Tier 2: cookie112localStorage 有 token + Bearer header 能拿到？  → Tier 2.5: localStorage Bearer  ← 现代 SaaS 主流113  带了 Bearer 但返回 400 "Missing X-Xxx header"？ → 先拿业务上下文 ID，加进 header114加 CSRF/Bearer header 后拿到？                 → Tier 3: header115都不行，但页面自己能请求成功？                    → Tier 4: intercept (installInterceptor)116```117 118---119 120## 模板121 122### JS — Cookie/Public（最简，`func()` 模式）123 124```javascript125// clis/<site>/<name>.js126import { cli, Strategy } from '@jackwener/opencli/registry';127 128cli({129  site: 'mysite',130  name: 'mycommand',131  description: '一句话描述',132  domain: 'www.example.com',133  strategy: Strategy.COOKIE,   // 或 Strategy.PUBLIC (加 browser: false)134  browser: true,135  args: [136    { name: 'limit', type: 'int', default: 20 },137  ],138  columns: ['rank', 'title', 'value'],139  func: async (page, kwargs) => {140    await page.goto('https://www.example.com/target-page');141    const data = await page.evaluate(`(async () => {142      const res = await fetch('/api/target', { credentials: 'include' });143      const d = await res.json();144      return (d.data?.items || []).map(item => ({145        title: item.title,146        value: item.value,147      }));148    })()`);149    return (data as any[]).slice(0, kwargs.limit).map((item, i) => ({150      rank: i + 1,151      title: item.title || '',152      value: item.value || '',153    }));154  },155});156```157 158### JS — localStorage Bearer（现代 SaaS）159 160```javascript161// clis/<site>/<name>.js162import { cli, Strategy } from '@jackwener/opencli/registry';163 164cli({165  site: 'mysite',166  name: 'mycommand',167  description: '一句话描述',168  domain: 'app.example.com',169  strategy: Strategy.COOKIE,170  browser: true,171  args: [172    { name: 'limit', type: 'int', default: 20 },173  ],174  columns: ['rank', 'title', 'value'],175  func: async (page, kwargs) => {176    await page.goto('https://app.example.com');177    const data = await page.evaluate(`(async () => {178      const token = localStorage.getItem('access_token');179      // 多租户 SaaS：先拿工作空间 ID180      const servers = await fetch('https://api.example.com/api/servers', {181        headers: { 'Authorization': 'Bearer ' + token }182      }).then(r => r.json());183      const server = servers[0];184      const res = await fetch('https://api.example.com/api/items', {185        headers: { 'Authorization': 'Bearer ' + token, 'X-Server-Id': server.id }186      });187      return res.json();188    })()`);189    return (data as any[]).slice(0, kwargs.limit).map((item, i) => ({190      rank: i + 1,191      title: item.title || '',192      value: item.value || '',193    }));194  },195});196```197 198### JS — Intercept（抓包模式）199 200```javascript201// clis/<site>/<name>.js202import { cli, Strategy } from '@jackwener/opencli/registry';203 204cli({205  site: 'mysite',206  name: 'mycommand',207  description: '一句话描述',208  domain: 'www.example.com',209  strategy: Strategy.INTERCEPT,210  browser: true,211  args: [212    { name: 'limit', type: 'int', default: 20 },213  ],214  columns: ['rank', 'title', 'value'],215  func: async (page, kwargs) => {216    // 1. 导航217    await page.goto('https://www.example.com/target-page');218    await page.wait(3);219 220    // 2. 注入拦截器（URL 子串匹配）221    await page.installInterceptor('target-api-keyword');222 223    // 3. 触发 API（滚动/点击）224    await page.autoScroll({ times: 2, delayMs: 2000 });225 226    // 4. 读取拦截的响应227    const requests = await page.getInterceptedRequests();228    if (!requests?.length) return [];229 230    let results: any[] = [];231    for (const req of requests) {232      const items = req.data?.data?.items || [];233      results.push(...items);234    }235 236    return results.slice(0, kwargs.limit).map((item, i) => ({237      rank: i + 1,238      title: item.title || '',239      value: item.value || '',240    }));241  },242});243```244 245### TS — Header（如 Twitter GraphQL）246 247```typescript248import { cli, Strategy } from '@jackwener/opencli/registry';249import { AuthRequiredError } from '@jackwener/opencli/errors';250 251cli({252  site: 'twitter',253  name: 'mycommand',254  description: '一句话描述',255  domain: 'x.com',256  strategy: Strategy.HEADER,257  browser: true,258  args: [259    { name: 'limit', type: 'int', default: 20 },260  ],261  columns: ['rank', 'name', 'value'],262  func: async (page, kwargs) => {263    await page.goto('https://x.com');264    const data = await page.evaluate(`(async () => {265      const ct0 = document.cookie.match(/ct0=([^;]+)/)?.[1];266      if (!ct0) return { error: 'Not logged in' };267      const bearer = 'AAAAAAAAAAAAAAAAAAAAANRILgAAAAAAnNwIzUejRCOuH5E6I8xnZz4puTs%3D...';268      const res = await fetch('/i/api/graphql/QUERY_ID/Endpoint', {269        headers: {270          'Authorization': 'Bearer ' + decodeURIComponent(bearer),271          'X-Csrf-Token': ct0,272          'X-Twitter-Auth-Type': 'OAuth2Session',273        },274        credentials: 'include',275      });276      return res.json();277    })()`);278    if ((data as any).error) throw new AuthRequiredError('x.com');279    // 解析 data...280    return [];281  },282});283```284 285---286 287## 测试（必做）288 289<!-- keep in sync with explorer SKILL.md §Step4 -->290> **两种开发场景**：291> - **Repo 贡献**：文件放 `clis/<site>/<name>.js`，`npm run build` 后自动注册292> - **私人 adapter**（本地使用，无需提 PR）：文件放 `~/.opencli/clis/<site>/<name>.js`，无需 build293 294```bash295# Repo 贡献：build 后直接运行296npm run build297opencli list | grep mysite                 # 确认注册298opencli mysite mycommand --limit 3 -v      # 实际运行299 300# 私人 adapter（~/.opencli/clis/）：一键验证301opencli browser verify <site>/<name>302```303 304**Done 标准**：命令运行后返回非空表格，且字段符合预期。305 306---307 308## 就这样，没了309 310写完文件 → build + run（Repo 贡献）或 browser verify（私人 adapter）→ 提交。有问题再看 [opencli-explorer skill](../opencli-explorer/SKILL.md)。
Related skills
Opencli Autofix

Install Opencli Autofix skill for Claude Code from jackwener/opencli.
Opencli Browser

Install Opencli Browser skill for Claude Code from jackwener/opencli.
Opencli Explorer

Install Opencli Explorer skill for Claude Code from jackwener/opencli.