Alicloud Ai Recommend Airec

ReviewAudited by ClawScan on May 10, 2026.

Overview

This looks like a normal Alibaba Cloud AIRec management helper, but it can use cloud credentials and change AIRec resources, so users should use limited credentials and review mutations.

Install only if you intend to let the agent manage Alibaba Cloud AIRec. Provide a dedicated least-privilege credential, verify the region and resource IDs, require confirmation before any create/update/modify/set operation, and keep the generated output files private.

Findings (3)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Medium

#ASI03: Identity and Privilege Abuse

What this means

If broad Alibaba Cloud credentials are available, the agent may be able to list or change AIRec resources within those permissions.

Why it was flagged

The skill directs the agent to use Alibaba Cloud account credentials, including a local shared credentials file. This is expected for the stated cloud-management purpose, but it grants delegated account authority.

Skill content

Environment variables: `ALICLOUD_ACCESS_KEY_ID` / `ALICLOUD_ACCESS_KEY_SECRET` / `ALICLOUD_REGION_ID` ... Shared config file: `~/.alibabacloud/credentials`

Recommendation

Use a dedicated least-privilege Alibaba Cloud RAM user or role limited to the needed AIRec actions and region; avoid admin keys and rotate or revoke credentials when finished.

Medium

#ASI02: Tool Misuse and Exploitation

What this means

Wrong region, resource ID, or parameters could alter AIRec resources unintentionally.

Why it was flagged

The skill explicitly supports mutating AIRec resources through Alibaba Cloud OpenAPI/SDK. This matches the stated purpose, but such operations can change cloud configuration.

Skill content

Change/configure: prefer `Create*` / `Update*` / `Modify*` / `Set*` APIs for mutations.

Recommendation

Require an execution plan and explicit user confirmation before create/update/modify/set calls, then verify results with describe/list APIs.

Low

#ASI06: Memory and Context Poisoning

What this means

Local output files could reveal cloud resource names, IDs, regions, or configuration context if shared or committed.

Why it was flagged

The skill stores local evidence files that may include cloud resource identifiers or operational details. This is scoped and purpose-aligned, but users should treat the outputs as potentially sensitive.

Skill content

Save artifacts, command outputs, and API response summaries under `output/alicloud-ai-recommend-airec/`. Include key parameters (region/resource id/time range) in evidence files

Recommendation

Review and redact output files before sharing, avoid saving secrets in evidence files, and clean the output directory when no longer needed.