← Back to Skills Marketplace
81
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install aliyun-cloudauth-verify
Description
Use when managing Alibaba Cloud ID Verification (Cloudauth) via OpenAPI/SDK, including the user is working on identity-verification resource operations, conf...
README (SKILL.md)
Category: service
ID Verification (Cloudauth)
Use Alibaba Cloud OpenAPI (RPC) with official SDKs or OpenAPI Explorer to manage resources for ID Verification.
Workflow
- Confirm region, resource identifiers, and desired action.
- Discover API list and required parameters (see references).
- Call API with SDK or OpenAPI Explorer.
- Verify results with describe/list APIs.
AccessKey priority (must follow)
- Environment variables:
ALICLOUD_ACCESS_KEY_ID/ALICLOUD_ACCESS_KEY_SECRET/ALICLOUD_REGION_IDRegion policy:ALICLOUD_REGION_IDis an optional default. If unset, decide the most reasonable region for the task; if unclear, ask the user. - Shared config file:
~/.alibabacloud/credentials
API discovery
- Product code:
Cloudauth - Default API version:
2022-11-25 - Use OpenAPI metadata endpoints to list APIs and get schemas (see references).
High-frequency operation patterns
- Inventory/list: prefer
List*/Describe*APIs to get current resources. - Change/configure: prefer
Create*/Update*/Modify*/Set*APIs for mutations. - Status/troubleshoot: prefer
Get*/Query*/Describe*StatusAPIs for diagnosis.
Minimal executable quickstart
Use metadata-first discovery before calling business APIs:
python scripts/list_openapi_meta_apis.py
Optional overrides:
python scripts/list_openapi_meta_apis.py --product-code \x3CProductCode> --version \x3CVersion>
The script writes API inventory artifacts under the skill output directory.
Output policy
If you need to save responses or generated artifacts, write them under:
output/aliyun-cloudauth-verify/
Validation
mkdir -p output/aliyun-cloudauth-verify
for f in skills/security/identity/aliyun-cloudauth-verify/scripts/*.py; do
python3 -m py_compile "$f"
done
echo "py_compile_ok" > output/aliyun-cloudauth-verify/validate.txt
Pass criteria: command exits 0 and output/aliyun-cloudauth-verify/validate.txt is generated.
Output And Evidence
- Save artifacts, command outputs, and API response summaries under
output/aliyun-cloudauth-verify/. - Include key parameters (region/resource id/time range) in evidence files for reproducibility.
Prerequisites
- Configure least-privilege Alibaba Cloud credentials before execution.
- Prefer environment variables:
ALICLOUD_ACCESS_KEY_ID,ALICLOUD_ACCESS_KEY_SECRET, optionalALICLOUD_REGION_ID. - If region is unclear, ask the user before running mutating operations.
References
- Sources:
references/sources.md
Usage Guidance
This skill appears to do what it says (fetch Cloudauth OpenAPI metadata) and the Python script is small and straightforward, but the SKILL.md expects your Alibaba Cloud access keys or a ~/.alibabacloud/credentials file even though the registry metadata does not declare any required credentials. Before installing or running it: (1) Inspect the script and SKILL.md yourself (you already have them) — the script only fetches metadata from api.aliyun.com. (2) Only provide Alibaba Cloud credentials with least-privilege keys and prefer using temporary or scoped credentials. (3) If you don't want the agent to access credentials autonomously, avoid enabling autonomous invocation or run the script manually in a controlled environment. (4) Ask the publisher (or require an updated registry entry) to explicitly declare required env vars/primary credential so the platform can surface the sensitive requirement to users.
Capability Assessment
Purpose & Capability
Name, description, and included script all focus on Alibaba Cloud Cloudauth API discovery and management; the provided Python script fetches OpenAPI metadata from api.aliyun.com which is coherent with the stated purpose. Note: the skill's registry metadata lists no required env vars/credentials, but the SKILL.md explicitly expects Alibaba Cloud access keys and a shared config file — a documentation/metadata mismatch.
Instruction Scope
SKILL.md instructs the agent to prefer environment variables (ALICLOUD_ACCESS_KEY_ID / ALICLOUD_ACCESS_KEY_SECRET / optional ALICLOUD_REGION_ID) and to fall back to ~/.alibabacloud/credentials. This is reasonable for a cloud-management skill, but it means the agent will access local credentials/config files and may choose a region if the user doesn't provide one; that discretion is somewhat open-ended and should be limited for mutating operations (the doc does advise asking the user before mutating).
Install Mechanism
No install spec; skill is instruction-only with a small included Python script. No external downloads or package installs are performed by the skill itself, which keeps install risk low. The script makes network requests to official api.aliyun.com endpoints — expected for API discovery.
Credentials
The skill requires access to sensitive Alibaba Cloud credentials and a local credentials file according to SKILL.md, but the registry metadata lists no required environment variables or primary credential. Failing to declare these sensitive requirements is a meaningful omission: users and the platform should be aware this skill will access secrets and a home-directory config file.
Persistence & Privilege
always is false, the skill does not request persistent/autonomous elevated privileges, and it does not modify other skills or system-wide config. It writes artifacts only under an output/ subdirectory as described.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install aliyun-cloudauth-verify - After installation, invoke the skill by name or use
/aliyun-cloudauth-verify - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of aliyun-cloudauth-verify skill.
- Provides guided workflows for managing Alibaba Cloud ID Verification (Cloudauth) via OpenAPI/SDK.
- Outlines best practices for using environment variables and shared config files for AccessKey.
- Details common API operation patterns (listing, configuration changes, status/troubleshooting).
- Includes quickstart and validation scripts for API discovery and skill setup.
- Defines output and evidence storage policies for reproducibility.
- Lists prerequisites and documentation references.
Metadata
Frequently Asked Questions
What is Aliyun Cloudauth Verify?
Use when managing Alibaba Cloud ID Verification (Cloudauth) via OpenAPI/SDK, including the user is working on identity-verification resource operations, conf... It is an AI Agent Skill for Claude Code / OpenClaw, with 81 downloads so far.
How do I install Aliyun Cloudauth Verify?
Run "/install aliyun-cloudauth-verify" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Aliyun Cloudauth Verify free?
Yes, Aliyun Cloudauth Verify is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Aliyun Cloudauth Verify support?
Aliyun Cloudauth Verify is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Aliyun Cloudauth Verify?
It is built and maintained by cinience (@cinience); the current version is v1.0.0.
More Skills