Aliyun Pai Workspace
ReviewAudited by ClawScan on May 10, 2026.
Overview
The skill is coherent for managing Alibaba Cloud PAI AIWorkspace, but it relies on cloud credentials and can perform account-changing API operations that users should review carefully.
Install only if you intend to let the agent work with Alibaba Cloud PAI AIWorkspace. Use least-privilege Alibaba Cloud credentials, confirm the account and region, and require review before any create, update, modify, or set operation. Check generated files under `output/aliyun-pai-workspace/` before sharing them.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If overly broad credentials are used, the agent could access or modify Alibaba Cloud PAI workspace resources beyond the intended task.
The skill directs use of Alibaba Cloud credentials, including a local shared credential file. This is expected for managing cloud resources, but it is sensitive account authority.
Environment variables: `ALICLOUD_ACCESS_KEY_ID` / `ALICLOUD_ACCESS_KEY_SECRET` / `ALICLOUD_REGION_ID` ... Shared config file: `~/.alibabacloud/credentials`
Use least-privilege Alibaba Cloud credentials, prefer task-specific access, and confirm the account, region, and target resources before use.
Incorrect parameters or unintended API choices could create, update, or reconfigure Alibaba Cloud PAI workspace resources.
The skill explicitly supports mutating cloud API operations. This is purpose-aligned for workspace management, but these actions can change real cloud resources.
Change/configure: prefer `Create*` / `Update*` / `Modify*` / `Set*` APIs for mutations.
Require explicit user approval for mutating API calls and review the exact API name, region, resource ID, and parameters before execution.
Local output files may retain cloud resource details that could be sensitive if shared or reused in later tasks.
The skill stores local evidence and API response summaries. This is disclosed and useful for reproducibility, but these files may contain resource identifiers or configuration details.
Save artifacts, command outputs, and API response summaries under `output/aliyun-pai-workspace/`.
Review generated output before sharing it, and delete or redact files that contain sensitive resource IDs, configuration values, or operational details.