ClawHub
Skill flagged — suspicious patterns detected

ClawHub Security flagged this skill as suspicious. Review the scan results before using.

Alibabacloud Milvus Manage

v0.0.2

Alibaba Cloud Milvus full-stack Skill for two planes: control-plane instance management via aliyun CLI, and data-plane Milvus operations via pymilvus. Use wh...

0· 58·0 current·0 all-time
byalibabacloud-skills-team@sdk-team
Security Scan
Capability signals
CryptoCan make purchases
These labels describe what authority the skill may exercise. They are separate from suspicious or malicious moderation verdicts.
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
high confidence
!
Purpose & Capability
The skill is described as a control-plane (aliyun CLI) + data-plane (pymilvus) tool. The SKILL.md repeatedly instructs use of the `aliyun` CLI with a configured profile and Python/pymilvus, but the registry metadata lists no required binaries, no required env vars, and no primary credential. This mismatch is not proportionate: a control-plane skill legitimately needs cloud credentials and the aliyun binary declared.
Instruction Scope
Instructions direct the agent to run `aliyun milvus` commands (create/scale/configure/network/whitelist) and to run Python pymilvus code (connect, insert/search, RBAC). They warn to validate user input and to confirm destructive actions. The requirement to always include `--force` (bypass local path validation) and to reuse an existing aliyun profile (local credentials) are notable — they expand the agent's runtime scope to use account credentials and perform billing-affecting actions.
Install Mechanism
Instruction-only skill with no install spec and no code files — nothing will be downloaded or written by an installer. This keeps install risk low. However, runtime uses external tooling (aliyun CLI, Python/pymilvus) which must already exist on the host.
!
Credentials
The SKILL.md requires use of configured Alibaba Cloud credentials (aliyun profile), setting ALIBABA_CLOUD_USER_AGENT, and connecting to Milvus instances with host/user/password or tokens — all of which imply handling secrets. The skill registry declares no env or credential requirements; that's an under-declaration that may mislead users about what secrets the skill will require or use.
Persistence & Privilege
The skill is not always-enabled and does not request persistent system-wide configuration. It can be invoked autonomously (platform default), which is normal; there is no explicit request for permanent presence or modification of other skills' configs.
What to consider before installing
This skill's documentation instructs the agent to run Alibaba Cloud CLI commands that use your configured aliyun profile (i.e., your AccessKey/secret) and to run Python code that may use Milvus credentials — yet the published metadata does not declare those requirements. Before installing or running the skill: - Treat it as requiring the `aliyun` CLI and valid Alibaba Cloud credentials plus Python 3.8+ and pymilvus. Expect operations that create/scale/configure instances and therefore can incur charges. - Do not provide highly-privileged or long-lived keys; use least-privilege AccessKey credentials scoped to only the Milvus actions required, or a temporary/limited profile. - Confirm you trust the skill source (owner and homepage are unknown). Ask the publisher to explain why metadata omits the required binaries/env vars and request a clear list of exactly what credentials/permissions are needed. - Note the instructions require `--force` for aliyun calls (bypasses local path validation). Understand and accept that behavior before allowing CLI commands. - If you proceed, monitor created cloud resources and billing, and avoid allowing the agent to run destructive operations without explicit, per-action confirmation.

Like a lobster shell, security has layers — review code before you run it.

latestvk97edp6y2pvzaqevzj5a9v87x9856a4v
58downloads
0stars
2versions
Updated 5h ago
v0.0.2
MIT-0
alibabacloud-skills-team@sdk-team
latest
Download

Alibaba Cloud Milvus Full-Stack Skill

Handle two distinct planes:

  • Control-plane: manage Alibaba Cloud managed Milvus instances with aliyun CLI.
  • Data-plane: operate Milvus with pymilvus Python code.

Treat SKILL.md as the router. Load references/*.md for detailed commands, parameters, and examples.

Scope

Use this skill for:

  • Alibaba Cloud managed Milvus instance lifecycle: create, inspect, scale, rename, configure, network, whitelist.
  • Milvus Python SDK workflows with pymilvus: connect, collections, vectors, search, indexes, partitions, databases, RBAC.
  • Retrieval use cases built on Milvus: semantic search, hybrid search, full-text search, RAG patterns.

Do not use this skill for:

  • self-hosted Milvus deployment on Docker, Helm, Kubernetes, or Milvus Operator,
  • Milvus Java / Go / Node SDKs,
  • other Alibaba Cloud products such as ECS, RDS, OSS, EMR, Kafka, StarRocks,
  • other vector databases such as Zilliz Cloud, Pinecone, Qdrant, or Weaviate.

Route The Request

Control-plane

Route here when the user asks about:

  • creating, scaling, renaming, or inspecting a Milvus instance,
  • connection address, component spec, configuration, public network, whitelist,
  • VPC/VSwitch prerequisites for Alibaba Cloud Milvus,
  • aliyun milvus APIs, creation parameters, or control-plane troubleshooting.

Read:

Data-plane

Route here when the user asks about:

  • connecting to Milvus with Python,
  • creating collections or schemas,
  • inserting, upserting, querying, deleting, or searching vectors,
  • hybrid search, BM25 full-text search, iterators, indexes,
  • partitions, databases, users, roles, or privileges,
  • Milvus-based RAG or semantic retrieval patterns.

Read:

Shared Guardrails

  • Decide the plane first. Do not mix control-plane instance operations with data-plane SDK code.
  • Confirm destructive actions before execution.
  • Validate untrusted user input before passing it into shell commands or code.
  • Prefer loading a targeted reference doc instead of keeping large inline examples in this file.

Control-Plane Rules

Required Environment

  • Reuse the configured aliyun profile. Check with aliyun configure list.
  • Set the required User-Agent before Milvus API calls:
export ALIBABA_CLOUD_USER_AGENT="AlibabaCloud-Agent-Skills"
  • Milvus OpenAPI calls through aliyun must include --force.

Preconditions

Before create or major modify operations:

  1. Confirm RegionId with the user.
  2. Verify VPC and VSwitch resources in that region.
  3. For create, record ZoneId, VpcId, and VSwitchId.
  4. If the request is ambiguous, ask whether the user wants dev/test standalone or production HA cluster.

Baseline decision rule:

  • standalone_pro is the default for dev/test.
  • HA cluster is for production.
  • In HA mode, streaming, data, mix_coordinator, and query must use at least 4 CU; proxy must use at least 2 CU.

Detailed templates and field definitions live in references/instance-lifecycle.md and references/create-params.md.

CLI Calling Modes

Use the API's expected parameter mode. Do not improvise.

# get / delete: business params in URL query
aliyun milvus get "/path?RegionId=<region>&instanceId=<id>" --RegionId <region> --force

# post / put with request body: business params in --body JSON
aliyun milvus post "/path?RegionId=<region>" --RegionId <region> --body '{...}' --force

# post with query-style flags: business params as --Flag value
aliyun milvus post "/path" --RegionId <region> --InstanceId <id> --force

Rules:

  • Always pass --RegionId <region>.
  • For CreateInstance and UpdateInstance, use --body.
  • For query-style POST APIs such as detail, config, network, ACL, and rename operations, use --Flag value.
  • Do not put user-provided raw text directly into a shell command unless it has been validated.

Runtime Safety

  • Do not download and execute remote scripts or unaudited dependencies during control-plane work.
  • Do not use eval or source with untrusted input.
  • Set reasonable timeouts on CLI calls. Prefer short timeouts for reads and bounded polling for long-running async operations.
  • For list APIs, do not trust total blindly; inspect the returned array.
  • Read the full error message before retrying. Automatic retry is appropriate for throttling, not for arbitrary failures.

Forbidden Operations

  • Instance deletion (DeleteInstance) is strictly forbidden through this Skill. If the user requests to delete/release a Milvus instance, do not execute the aliyun milvus delete command. Instead, instruct the user to delete the instance via the Alibaba Cloud Milvus Console.

Destructive Operations

Require explicit confirmation before:

  • modifying instance config,
  • disabling public network access.

Use this template:

About to execute: <API>, Target: <InstanceId>, Impact: <Description>. Continue?

For config change and network troubleshooting flows, read references/operations.md or references/instance-lifecycle.md first.

Output Style

  • Summarize instance lists as a compact table.
  • Highlight instanceId, instanceName, status, dbVersion, ha, paymentType, and connection endpoints when relevant.
  • Convert timestamps to readable time.
  • Use --cli-query or jq to trim noisy payloads when useful.

Data-Plane Rules

Connection First

Before writing any pymilvus code, ask for:

  1. deployment type: Milvus Lite, self-hosted standalone/cluster, or Alibaba Cloud managed instance,
  2. URI or endpoint,
  3. authentication method and credentials if needed,
  4. database name if not using default.

Do not assume connection parameters. Use Milvus Lite only when the user explicitly wants local embedded mode.

Minimal connection shape:

from pymilvus import MilvusClient

client = MilvusClient(uri="<USER_URI>", token="<USER_TOKEN>")

For async usage, schema details, and deployment-specific patterns, load the relevant reference doc.

Data Safety And Correctness

  • Never generate fake or placeholder vectors. Always use a real embedding model.
  • The query embedding model must match the model used to create stored vectors.
  • Vector dimensions must exactly match the collection schema.
  • A collection must be loaded before search or query.
  • Confirm destructive operations such as drop_collection, drop_database, or large deletes before executing.
  • Prefer AUTOINDEX unless the user has explicit performance requirements.

Minimal Workflow

For most SDK tasks:

  1. load references/collection.md for schema and collection operations,
  2. load references/vector.md for insert/search/query/delete patterns,
  3. load references/index.md if the user cares about index type, metric, or tuning,
  4. add partition/database/RBAC references only if the task actually needs them.

Common Patterns

Suggested Response Flow

If control-plane

  1. Confirm region and target instance scope.
  2. Read the matching control-plane reference.
  3. Run the command with the correct parameter mode.
  4. Report the key fields, next state, and any follow-up wait conditions.

If data-plane

  1. Ask for connection details first.
  2. Read only the references needed for the requested SDK task.
  3. Write or explain pymilvus code with real embeddings and real connection placeholders.
  4. Call out schema, load-state, index, and dimension pitfalls if they matter.

Reference Map

Comments

Loading comments...