Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
alibaba devops
v1.0.0阿里云云效 DevOps 平台 MCP Server,提供代码管理、项目管理、流水线、应用交付、测试管理等全面的 DevOps 能力
⭐ 0· 11·0 current·0 all-time
byBowen Huang@huangbowen521
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
medium confidencePurpose & Capability
Name, description, and the long list of repository/project/pipeline/app management tools are coherent for an Alibaba Cloud DevOps (云效) integration; the listed operations (create/delete branches, pipelines, runs, manage apps, etc.) match the stated purpose.
Instruction Scope
SKILL.md instructs the agent to run npx -y mcporter and npx -y alibabacloud-devops-mcp-server to list and call tools and to supply a YUNXIAO_ACCESS_TOKEN. Those instructions involve downloading and executing remote npm packages at runtime and expect a DevOps access token; the skill also exposes destructive actions (delete_branch, stop_vm_deploy_order, etc.). The instructions do not appear to limit or validate what is downloaded or executed and the required token is not declared in the registry metadata—scope and data access are broader than declared.
Install Mechanism
There is no install spec in the registry (instruction-only), but SKILL.md directs use of npx -y which will fetch and run packages from the npm registry at runtime. That is effectively remote code execution/download-on-demand (high-risk) and is not enumerated in the skill metadata. The absence of a declared, auditable install step or vetted package source increases risk.
Credentials
The SKILL.md requires a YUNXIAO_ACCESS_TOKEN (DevOps access token) for operation, which is proportionate to the described capabilities. However, the registry metadata lists no required environment variables—this mismatch is an incoherence. The single token requested is powerful (can permit wide DevOps changes); the skill does not advise using a scoped or read-only token.
Persistence & Privilege
The skill does not request persistent/always-on inclusion and does not declare modifications to other skills or global agent config. Autonomous invocation is allowed (platform default) but not combined with other privilege escalations in metadata.
What to consider before installing
Before installing or invoking this skill: (1) Treat the SKILL.md as executable instructions—it tells the agent to run npx which will download and execute remote npm packages. Only proceed if you trust the exact npm packages (mcporter and alibabacloud-devops-mcp-server); inspect their source repositories and maintainers. (2) The documentation requires a YUNXIAO_ACCESS_TOKEN but the registry metadata doesn't declare it—create a least-privilege, scoped token (read-only where possible) for testing. (3) Because the tools can perform destructive DevOps actions (delete branches, stop deployments, modify pipelines), test in an isolated environment or with a minimally privileged account first. (4) Prefer skills that declare required env vars and/or provide an auditable install step; if you need higher assurance, request the skill author provide package sources, versions, and a formal install spec instead of npx-on-demand execution.Like a lobster shell, security has layers — review code before you run it.
latestvk9735xc89xrsycat1d3m36asss84ctn5
License
MIT-0
Free to use, modify, and redistribute. No attribution required.