2.6k
GitHub Stars
25
Bundled Files
2 months ago
Catalog Refreshed
3 months ago
First Indexed
Readme & install
Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.
Installation
Preview and clipboard use veilstrat where the catalogue uses aiagentskills.
npx veilstrat add skill openclaw/skills --skill bazhuayu-rpa-webhook- _meta.json296 B
- bazhuayu-webhook.py17.9 KB
- CHANGES-v2.0.md3.7 KB
- config.example.json784 B
- config.json1.1 KB
- MANUAL_SETUP.md2.6 KB
- MANUAL.md10.9 KB
- migrate-to-env.sh4.4 KB
- package.json2.4 KB
- QUICKSTART.md3.9 KB
- README.md7.6 KB
- RELEASE-2.0.1.md2.5 KB
- RELEASE-2.0.2.md2.9 KB
- RELEASE-2.0.3.md1.6 KB
- RELEASE-2.0.4.md2.7 KB
- RELEASE-2.0.6.md2.5 KB
- RELEASE-v1.0.1.md2.5 KB
- RELEASE-v2.0.md2.7 KB
- run_daily.sh703 B
- SECURITY.md3.5 KB
- setup-secure.sh5.7 KB
- SKILL.md7.6 KB
- USAGE_EXAMPLE.md2.7 KB
- WEBHOOK_SETUP_PREVIEW.html10.7 KB
- WEBHOOK_SETUP.md3.6 KB
Overview
This skill provides a secure webhook caller for Bazhuayu (Octoparse-like) RPA to trigger flows and pass custom parameters. It prioritizes environment-variable secrets, automatic signature calculation, and safe defaults so tasks can be invoked from scripts or CI reliably. The tool includes setup scripts, a secure-check command, and an option to run in test mode without sending requests.
How this skill works
The tool reads webhook URL, signing key, and optional parameter defaults from environment variables or a config file, then constructs the signed payload required by Bazhuayu RPA. It computes the HmacSHA256-based signature (timestamp + "\n" + key -> Base64) automatically, sends the HTTP request, and returns parsed success or error responses. Built-in commands let you run tasks, run with explicit parameters, view configuration, and perform a security audit without making network calls.
When to use it
- Trigger Bazhuayu RPA flows from scripts, cron jobs, or CI pipelines
- Pass dynamic parameters to an RPA job at runtime
- Test webhook invocation without executing the remote flow (test mode)
- Automate batch runs where signature and timestamp must be computed securely
- Verify webhook configuration and secrets using the secure-check command
Best practices
- Store BAZHUAYU_WEBHOOK_URL and BAZHUAYU_WEBHOOK_KEY in shell profile (~/.bashrc or ~/.zshrc) and avoid committing secrets to repo
- Prefer environment variables over config file values; use provided migrate-to-env.sh to convert old setups
- Run setup-secure.sh once to generate safe defaults and set file permissions to 600 for any local config file
- Use test mode before sending real requests to validate parameter names and values
- Keep system clock synchronized (NTP) to avoid timestamp/signature failures
Example use cases
- Call an RPA flow from a CI job passing build metadata as parameters to collect environment-specific data
- Schedule a nightly extraction by cron that triggers the webhook with date-range parameters
- Integrate with a monitoring alert to run a recovery or data collection RPA task with contextual parameters
- Use secure-check during onboarding to validate webhook URL, key, and environment variable setup before going live
- Run in test mode to confirm parameter names match the RPA application without starting a workflow
FAQ
BAZHUAYU_WEBHOOK_URL and BAZHUAYU_WEBHOOK_KEY are required. Optional BAZHUAYU_PARAM_* variables can override default parameters.
How do I fix signature verification failures?
Ensure the signing key is correct, the system clock is accurate, and use secure-check to validate configuration; signatures are HmacSHA256 with timestamp formatting provided by the tool.
Can I run without modifying my shell profile?
Yes — you can export the required variables in the current terminal session for temporary use, or use the provided setup-secure.sh to prepare persistent exports.