by 安全扫描
OpenClaw
安全
medium confidenceThe skill's code and runtime instructions match its stated purpose (managing Alibaba Cloud SWAS resources), but the package metadata omits required credential environment variables and some scripts perform sensitive on-instance actions (e.g., enabling root login), so review credentials and scripts before use.
评估建议
This skill appears to do what it says (manage Alibaba SWAS) and the included scripts match the documentation, but take these precautions before installing or running it:
- Credentials: The registry metadata does not declare required env vars, but the code and SKILL.md expect ALICLOUD_ACCESS_KEY_ID and ALICLOUD_ACCESS_KEY_SECRET (and optionally a security token and ALICLOUD_REGION_ID). Only provide least-privilege RAM credentials needed for intended operations; prefer temporary STS tokens where ...详细分析 ▾
ℹ 用途与能力
Name/description (manage SWAS resources) align with the included scripts and SKILL.md: the package provides SDK examples and scripts to list instances, summarize inventory, query SSH port, and run a 'fix ssh access' operation via the SWAS RunCommand API. However, the registry metadata declares no required environment variables or primary credential, while both SKILL.md and all scripts expect Alibaba Cloud credentials (ALICLOUD_ACCESS_KEY_ID / ALICLOUD_ACCESS_KEY_SECRET and optional security token and region). This omission is an inconsistency that should be corrected but does not by itself indicate malicious intent.
✓ 指令范围
SKILL.md and the reference docs focus on SWAS operations (list, start/stop, command execution, firewall, snapshots, etc.). The runtime instructions and scripts only interact with the Alibaba Cloud SWAS API and instance RunCommand invocation; they do not exfiltrate data to unknown external endpoints. Note: some scripts will execute commands on target instances (fix_ssh_access modifies /etc/ssh/sshd_config and authorized_keys), which is within the stated scope but is a privileged, mutating operation and should be used with user confirmation.
✓ 安装机制
There is no install spec (instruction-only for dependencies). The skill includes Python scripts that rely on the official alibabacloud Python SDK packages (alibabacloud_swas_open20200601, alibabacloud_tea_openapi, alibabacloud_credentials) referenced in SKILL.md. No downloads from arbitrary URLs or other high-risk install behavior are present.
⚠ 凭证需求
The metadata lists no required env vars or primary credential, but SKILL.md and every script call os.getenv for ALICLOUD_ACCESS_KEY_ID / ALIBABA_CLOUD_ACCESS_KEY_ID, ALICLOUD_ACCESS_KEY_SECRET / ALIBABA_CLOUD_ACCESS_KEY_SECRET, and optionally ALICLOUD_SECURITY_TOKEN. The skill legitimately needs Alibaba Cloud credentials to function; the omission in the registry metadata is an inconsistency that affects user understanding of what secrets will be required. Also, fix_ssh_access reads a local path defaulting to '~/.ssh/id_ed25519.pub' — it reads a public key file (not private key), which is reasonable but users should verify the path.
✓ 持久化与权限
always is false and model invocation is allowed (platform default). The skill does not request permanent presence or attempt to modify other skills or system-wide agent settings. It will invoke API calls and RunCommand on instances, which are normal for this purpose.
安全有层次,运行前请审查代码。
运行时依赖
无特殊依赖
版本
latestv1.0.22026/2/11
batch publish from alicloud-skills on 2026-03-11
● 可疑
安装命令
点击复制官方npx clawhub@latest install alicloud-compute-swas-open
镜像加速npx clawhub@latest install alicloud-compute-swas-open --registry https://cn.longxiaskill.com