Alicloud Database Analyticdb Mysql
PassAudited by ClawScan on May 10, 2026.
Overview
This skill is a coherent Alibaba Cloud AnalyticDB management helper, but it uses cloud credentials and can perform resource-changing API operations, so it should be used with least-privilege access.
Before installing, make sure any Alibaba Cloud credentials available to the agent are least-privilege and intended for AnalyticDB work. Confirm region, cluster/resource IDs, and every create/update/modify action before letting the agent run it.
Findings (2)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent may create or modify AnalyticDB resources if the user asks it to do so.
The skill explicitly supports mutating Alibaba Cloud AnalyticDB resources through OpenAPI/SDK calls. This is purpose-aligned and disclosed, but these operations can change cloud resources.
Change/configure: prefer `Create*` / `Update*` / `Modify*` / `Set*` APIs for mutations.
Review the target region, resource ID, and exact operation before approving any mutating API call.
If broad Alibaba Cloud credentials are available, the agent could act with those privileges for AnalyticDB operations.
The skill may use Alibaba Cloud account credentials, including a local shared credential file. This is expected for the stated cloud-management purpose, but it is sensitive account authority.
Environment variables: `ALICLOUD_ACCESS_KEY_ID` / `ALICLOUD_ACCESS_KEY_SECRET` / `ALICLOUD_REGION_ID` ... Shared config file: `~/.alibabacloud/credentials`
Use a least-privilege Alibaba Cloud RAM user or profile scoped to the intended AnalyticDB actions, and avoid using broad administrator keys.