Aliyun Adb Mysql
ReviewAudited by ClawScan on May 10, 2026.
Overview
This appears to be a coherent Alibaba Cloud AnalyticDB management skill, but it can use Alibaba Cloud credentials to make database changes, so users should confirm actions and use least-privilege access.
Install only if you intend to let the agent help manage Alibaba Cloud AnalyticDB for MySQL. Configure a least-privilege Alibaba Cloud credential, confirm the region and resource IDs before any create/update/modify action, and review saved output files for sensitive resource details before sharing them.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked for a change request, the agent may create or modify Alibaba Cloud AnalyticDB resources, which can affect availability, configuration, or cost.
The skill intentionally enables cloud API calls, including resource creation and configuration changes. This is aligned with the stated AnalyticDB management purpose, but these actions can affect live cloud databases.
Call API with SDK or OpenAPI Explorer... Change/configure: prefer `Create*` / `Update*` / `Modify*` / `Set*` APIs for mutations.
Before mutating operations, confirm the target region, resource ID, exact action, and expected impact; use read-only describe/list APIs first when possible.
The agent can act with whatever Alibaba Cloud permissions are attached to the configured AccessKey or shared profile.
The skill directs use of Alibaba Cloud credentials from environment variables or the standard shared credential file. That access is expected for Alibaba Cloud API management, but it grants account authority.
Environment variables: `ALICLOUD_ACCESS_KEY_ID` / `ALICLOUD_ACCESS_KEY_SECRET` / `ALICLOUD_REGION_ID` ... Shared config file: `~/.alibabacloud/credentials`
Use a least-privilege RAM user or role limited to the required AnalyticDB resources and avoid using broad account-level AccessKeys.
Running the quickstart contacts api.aliyun.com and saves API metadata files locally.
The helper script performs a network request to Alibaba OpenAPI metadata and writes the response to the documented output directory. The source is included and this behavior matches the metadata-discovery purpose.
with urllib.request.urlopen(req, timeout=timeout) as resp: ... json_file.write_text(json.dumps(payload, ensure_ascii=False, indent=2), encoding="utf-8")
Run the helper only when metadata discovery is needed and review files written under output/aliyun-adb-mysql/.