BytePlusCDN
PassAudited by VirusTotal on May 6, 2026.
Overview
Type: OpenClaw Skill Name: bytepluscdn Version: 1.0.3 The skill bundle is a legitimate command-line toolkit for managing BytePlus CDN services, including domain configuration, cache purging, and log delivery. The code in `scripts/cli.py` and `scripts/cdn_client.py` follows security best practices by explicitly limiting environment variable loading to required credentials (BYTEPLUS_AK/SK) and implementing interactive prompts for missing information. There is no evidence of data exfiltration, malicious execution, or harmful prompt injection; the instructions in `SKILL.md` are strictly focused on guiding the AI agent to correctly interface with the CLI tool.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A mistaken command could create or change CDN configuration for a real domain.
The CLI directly performs BytePlus CDN account mutations, such as adding CDN domains. This matches the skill purpose but can affect production traffic if used with broad credentials or incorrect parameters.
resp = client.add_cdn_domain(body)
Use least-privilege BytePlus credentials and confirm domains, origins, templates, and regions before allowing the agent to run mutation commands.
If the API keys are over-scoped, the agent may be able to change more CDN resources than intended.
The skill uses BytePlus API keys for authenticated CDN operations. This is expected for the integration, and the code reads only the project .env/env vars, but those keys can grant significant account authority.
ak = os.environ.get('BYTEPLUS_AK')
sk = os.environ.get('BYTEPLUS_SK')
...
cdn_service.set_ak(ak)
cdn_service.set_sk(sk)Create a dedicated BytePlus key limited to the CDN permissions and projects needed for the intended task.
Origin storage credentials could be visible to local users or logs if passed directly on the command line.
Private origin bucket credentials may be supplied as CLI options. This is purpose-aligned for private origin access, but secrets in command-line arguments can be exposed through shell history or process listings.
click.option('--bucket-ak', default='', help='Bucket Access Key (required if private)')
click.option('--bucket-sk', default='', help='Bucket Secret Key (required if private)')Prefer interactive hidden prompts or another secure secret-handling method, and use narrowly scoped bucket credentials.
A service-account key could be exposed in command output if the helper is run without an output file.
The helper can read a credential JSON file and print the escaped contents to stdout. This is user-directed and related to log-delivery setup, but stdout may be captured in terminal or agent logs.
parser.add_argument("input_file", help="Path to the original JSON file (e.g., GCP credentials)")
...
print(escaped_json)Avoid printing credential JSON to stdout; write to a protected file or use a provider-supported secret mechanism where possible.
Future package versions could behave differently from the reviewed version.
The skill asks users to install Python dependencies, but the dependency versions are minimum ranges rather than pinned hashes or exact versions. This is common for CLI integrations but leaves normal package supply-chain drift.
byteplus-sdk>=1.0.0 click>=8.0.0
Install in a virtual environment and consider pinning exact dependency versions for production use.
CDN access logs could be continuously delivered to a configured third-party storage or analytics destination.
The skill includes commands to configure CDN log delivery, which can create ongoing data flows to external destinations. This is a disclosed feature, but CDN logs may contain sensitive request metadata.
`log-offline`: Offline log delivery - `log-realtime`: Real-time log delivery
Confirm the log destination, retention policy, and destination credentials before creating offline or real-time log delivery tasks.