xiaodu-leave-home-mode-official
AdvisoryAudited by VirusTotal on Apr 3, 2026.
Overview
Type: OpenClaw Skill Name: xiaodu-leave-home-mode-official Version: 1.0.1 The skill orchestrates a 'leave home' routine by executing shell scripts from a neighboring directory (`../xiaodu-control-official/scripts/`) and managing state in local files (`MEMORY.md`, `XIAODU_CONTEXT.md`). It utilizes high-risk capabilities, specifically cross-directory shell execution and file system access, to control IoT devices and retrieve personal information like calendar events and alarms. While the behavior appears aligned with the stated purpose and includes safety checks such as mandatory confirmation for door locks, the reliance on shell commands and the potential for injection via device parameters in `SKILL.md` and `usage-notes.md` represents a significant security surface.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
When invoked, the agent may turn off lights, close curtains, turn off air conditioning or fans, and potentially handle a smart lock after confirmation.
The skill is designed to send commands that change the state of physical smart-home devices. This is central to the leave-home purpose and includes a door-lock confirmation rule, but it is still sensitive behavior.
Track A(设备关闭):灯 → 窗帘 → 空调/风扇 → 门锁(二次确认)
Use only if you trust the underlying Xiaodu control setup and have reviewed which devices and scenes may be affected.
Actual device actions depend on the installed xiaodu-control-official scripts and configuration.
The skill depends on another local skill's scripts, but those scripts are not part of the provided artifact set. This is disclosed and expected for an orchestrator, but it limits what this review can verify.
它运行时会调用同一 workspace 下、相邻目录里的依赖 skill:`skills/xiaodu-control-official/scripts/*`。
Review and trust the xiaodu-control-official installation before using this orchestrator.
The skill can act through whatever Xiaodu account or device permissions are already configured locally.
The skill does not request new credentials, but it uses existing delegated access from another Xiaodu control setup to operate devices.
它不会自己索取新的外部凭证;运行时依赖的设备访问能力来自 `xiaodu-control-official` 已有配置。
Confirm that the existing Xiaodu credentials and device permissions are appropriate for the devices this skill may control.
Private schedule/reminder details may be summarized or spoken, and stored preferences may affect future smart-home actions.
The skill retrieves personal context such as calendar/reminder information and may persist home-automation preferences for reuse in later runs.
天气 → 日历日程 → 提醒事项 ... 长期稳定偏好,写入 `MEMORY.md`。
Keep preference files scoped and reviewable, and be careful with persistent preferences such as automatic locking or device exclusions.