Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Aliyun Sas Manage
v1.0.0Use when managing Alibaba Cloud Security Center (Sas) via OpenAPI/SDK, including the user needs Security Center resource operations, configuration updates, s...
⭐ 0· 27·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
The name/description align with the included script and instructions: this is a tool for discovering and calling Alibaba Cloud Security Center (Sas) OpenAPI. Requiring Alibaba Cloud credentials is expected for the purpose. However the registry metadata lists no required environment variables or primary credential while SKILL.md explicitly expects ALICLOUD_ACCESS_KEY_ID / ALICLOUD_ACCESS_KEY_SECRET and optionally ALICLOUD_REGION_ID (or ~/.alibabacloud/credentials), which is an inconsistency between claimed requirements and actual instructions.
Instruction Scope
SKILL.md instructs the agent to use SDK/OpenAPI with cloud credentials, run the included script that fetches metadata from api.aliyun.com, and save artifacts and 'key parameters' (region/resource id/time range) to output/. Saving these parameters may persist sensitive identifiers. The instructions also give the agent discretion to pick a region if environment variables are unset, which is vague and broad. The instructions do not ask for unrelated system files, and the script itself only fetches public OpenAPI metadata, but the overall guidance to include credential-sourced operations and evidence files increases risk if credentials or sensitive identifiers are mishandled.
Install Mechanism
Instruction-only skill with a small Python script; no install spec, no downloads, no archive extraction. The included script uses urllib to GET official api.aliyun.com metadata — this is low install risk.
Credentials
SKILL.md requires Alibaba Cloud access keys (env vars or shared credentials file) which are proportional to managing SAS. But the registry metadata did not declare these required env vars or a primary credential, creating a transparency gap. The instructions also request writing 'key parameters' to disk (which may include resource IDs or time ranges) — users should be careful about where evidence is stored and who can access those files. Overall the credentials requested are appropriate for the task, but their omission from declared requirements is a red flag.
Persistence & Privilege
always:false and no install script that modifies other skills or global agent settings. The skill does write output under its own output/aliyun-sas-manage/ directory (normal). It does not request permanent platform-wide privileges.
What to consider before installing
This skill appears to be a legitimate Alibaba Cloud Security Center helper, but the package metadata fails to declare that it needs your ALICLOUD_ACCESS_KEY_ID and ALICLOUD_ACCESS_KEY_SECRET (or ~/.alibabacloud/credentials). Before installing: 1) confirm the publisher/source and ask them to update the registry to list required env vars; 2) use least-privilege or temporary Alibaba Cloud credentials (do not use root keys); 3) run the skill in an isolated environment or container if possible; 4) review output/aliyun-sas-manage/ after runs and avoid writing long-lived secrets or full credential files into that directory; 5) if you need to allow autonomous agent invocation, be aware the agent could perform API calls using provided credentials — only grant permissions required for the specific operations.Like a lobster shell, security has layers — review code before you run it.
latestvk97cvk3zq2jxymh6zb36ysvyw1842e9v
License
MIT-0
Free to use, modify, and redistribute. No attribution required.