Back to skill
Skillv1.0.5
ClawScan security
Tuya Cloud · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 11, 2026, 10:38 PM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's code, environment requirements, and runtime instructions match its stated purpose (controlling and reading Tuya devices); nothing requested appears unrelated or hidden.
- Guidance
- This skill appears coherent and implements the documented Tuya Cloud + LAN functionality. Before installing: (1) Only supply TUYA_ACCESS_ID/TUYA_ACCESS_SECRET from a dedicated Tuya Cloud project you control (preferably scoped to only the devices you want the agent to manage). These keys allow remote control of devices—treat them like secrets. (2) Be aware local LAN scanning uses UDP broadcasts and control_local/read_local requires device IPs and local_keys; this is expected for LAN control. (3) The code depends on PyPI packages (tinytuya, python-dotenv); verify/upstream trust if supply-chain risk is a concern. (4) Review scripts/config.py for any hard-coded device IDs you don’t want exposed, and provide test_data.env or .env only with non-sensitive test values. (5) If you will allow the agent to invoke skills autonomously, understand it could send commands to your devices; disable autonomous invocation if you don’t want that capability.
Review Dimensions
- Purpose & Capability
- okName/description, required binaries (python3), required env vars (TUYA_ACCESS_ID, TUYA_ACCESS_SECRET) and the included Python code (scripts/tuya_controller.py) are consistent with a Tuya Cloud + local-LAN controller. The skill depends on tinytuya and uses Tuya OpenAPI endpoints and local UDP scanning as expected.
- Instruction Scope
- okSKILL.md only instructs reading credentials from .env, calling listed cloud endpoints, and performing local LAN UDP scans and LAN device commands. It does not instruct the agent to read unrelated files or exfiltrate data to non-Tuya endpoints. It does advise consulting scripts/config.py for known device IDs (which is reasonable).
- Install Mechanism
- noteThis is an instruction-only skill (no binary installer). It relies on pip-installable packages (tinytuya, python-dotenv) listed in requirements.txt — a normal choice but carries normal PyPI supply-chain risk. No downloads from arbitrary URLs or archive extraction are present.
- Credentials
- okOnly TUYA_ACCESS_ID and TUYA_ACCESS_SECRET (plus optional TUYA_API_ENDPOINT) are required; these are the correct credentials for the Tuya OpenAPI and are proportional to a controller that can list and command devices. Note: those credentials grant programmatic control of everything in the Tuya cloud project, so scope and trust of the project matter.
- Persistence & Privilege
- okThe skill does not request always:true, does not modify other skills or system settings, and has no install script that writes system-wide files. Autonomous invocation is enabled by default on the platform (disable-model-invocation=false) but that is the platform default and not a unique escalation from this skill.