Didi Map JSAPI
v1.0.0滴滴地图 JSAPI 开发指南。在编写、审查或调试使用滴滴地图 API 的代码时应运用此技能。适用于涉及地图初始化、标记、覆盖物、图层管理、事件处理、控件交互或性能优化的任务。当用户提及 DiMap、滴滴地图、didi-jsapi 或相关地图开发需求时自动触发。
⭐ 1· 109·0 current·0 all-time
byMax@mcmdhr
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
The name/description match the provided documentation files (map, markers, layers, services, auth). All included references are relevant to a JSAPI developer guide; nothing requested is unrelated to map development.
Instruction Scope
SKILL.md and the referenced files are documentation and sample code for using DiMap JSAPI. The instructions stay within map integration topics (initialization, overlays, auth recommendations). They do not instruct reading local files, accessing unrelated env vars, or exfiltrating data. The auth guidance correctly recommends server-side proxying of keys.
Install Mechanism
No install spec and no code files to execute — lowest-risk, instruction-only asset. There are sample references to loading an external JS loader (https://lbs.xiaojukeji.com/api/v2/static/loader.js) but that's part of normal web integration, not an install step for the skill itself.
Credentials
The skill declares no required environment variables, binaries, or credentials. The JS API docs explain how to obtain and protect service/client keys; the skill does not itself request secrets.
Persistence & Privilege
always is false and the skill is user-invocable; it does not request elevated or persistent platform privileges. No configuration or system-wide modifications are indicated.
Assessment
This skill is a documentation-only developer guide for DiDi's JSAPI and appears coherent and low-risk. Before using in production, verify the origin/trustworthiness of these files since the package source/homepage is unknown. Follow the included advice: never embed server keys in frontend code — use a server-side proxy as shown. Note the sample integration loads a third-party script (https://lbs.xiaojukeji.com/.../loader.js) into the browser; review and trust that host before including it in your site. If you need stronger assurance, confirm the skill is official DiDi documentation or compare against the vendor's published docs.Like a lobster shell, security has layers — review code before you run it.
latestvk97e0wxnfgmqhwp503afmp6w1d83ep1e
License
MIT-0
Free to use, modify, and redistribute. No attribution required.