Coding Plan Usage
ReviewAudited by ClawScan on May 10, 2026.
Overview
The usage-query purpose is coherent, but the skill should be reviewed because it creates or reuses an Alibaba Cloud browser login session that is not fully declared or bounded.
Before installing, make sure you are comfortable letting this skill open an Alibaba Cloud login flow and keep a reusable agent-browser session. Install agent-browser only from a trusted source, protect and delete the login QR screenshot after use, and review the full script if possible because the provided source view for scripts/aliyun.py is truncated.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
An Alibaba Cloud login session may remain reusable by this skill or future agent-browser runs after the immediate query is finished.
This documents persistent reuse of Alibaba login state via cookies/localStorage. The skill metadata declares no primary credential or required config, and the artifacts do not show clear deletion, expiry, or scoping guidance for that session.
# 会话名称;保持固定可复用登录态(cookies/localStorage)
Use only in a trusted environment, prefer a dedicated session/account if possible, document how to delete the agent-browser session, and declare the browser-session credential requirement in metadata.
Anyone who can access the live QR screenshot could potentially interfere with or attempt the login flow, and the screenshot may remain on disk.
The login QR screenshot is saved locally and may be sent to the user through the chat channel. This is disclosed and purpose-aligned, but the QR code is an account-login artifact.
保存截图到当前目录`aliyu-login.png`,终端提示你扫码;扫码后再次运行即可。如果频道允许发送图片 你可以直接发给用户
Treat the login screenshot as sensitive, share it only with the intended user, and delete it after the login is complete.
The skill relies on whatever package version is fetched at install time and a globally available browser automation binary.
The documented dependency installation is a global, unpinned npm package install, and the registry metadata does not list required binaries.
npm install -g agent-browser
Verify the agent-browser package source before installing, consider pinning a known-good version, and declare the runtime binary requirement.
If the skill is run with an untrusted AGENT_BROWSER_PATH or .env file, it could execute an unintended local program.
The script executes an external agent-browser binary, and that executable path can be configured through environment or .env values. This is central to the browser automation purpose, but it expands local execution risk.
ENV_KEY_PATH = "AGENT_BROWSER_PATH" ... cmd = [self.config["path"]] + args ... subprocess.run(cmd, capture_output=True, text=True, encoding='utf-8', errors='replace', check=True)
Run it from a trusted directory, avoid untrusted .env files, and set AGENT_BROWSER_PATH only to a verified agent-browser executable.