// the find
zhinianboke/xianyu-auto-reply
闲鱼自动回复管理系统是一个基于 Python + FastAPI 开发的自动化客服系统,专为闲鱼平台设计。系统通过 WebSocket 连接闲鱼服务器,实时接收和处理消息,提供智能化的自动回复服务。同时集成闲鱼自动发货,自动评价,自动擦亮等功能,实现闲鱼虚拟商品自动化流程。
A multi-account automation system for Xianyu (Alibaba's secondhand marketplace), handling auto-reply, virtual goods delivery, product listing, order management, and a cashback rebate subsystem. Built on FastAPI + React + MySQL + Redis + Playwright. Aimed at sellers who want to run unattended storefronts for digital goods.
The service split is sensible: backend-web, websocket, and scheduler run as independent processes with separate health check endpoints, so a WebSocket crash doesn't take down the API. The CAPTCHA bypass implementation is more serious than most — human trail recordings, stealth slider handling, and an orchestrator with strategy stats rather than a single brittle approach. JWT secret is auto-generated and persisted in the database on first boot, which removes a common misconfiguration footgun. The deployment scripts explicitly strip Windows CRLF before piping to bash, which shows the author has actually run this across environments.
The update path is `curl … | bash` piping from a third-party CDN — that's a supply-chain risk you're just trusting blindly on every update. The entire codebase is built on reverse-engineered Xianyu private APIs via WebSocket and mtop; Alibaba updates these without notice and has already broken similar projects multiple times, making this a maintenance treadmill. All API errors return HTTP 200 with a `success: false` body — standard HTTP client retry logic, monitoring, and load balancers are all blind to failures. No foreign key constraints with 'relationships maintained by code' across three separate services sharing a database is asking for orphaned records the moment any service has a bug or restarts mid-transaction.