← Back to Skills Marketplace
310
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install yida-app
Description
宜搭完整应用开发技能,描述从零到一搭建一个完整宜搭应用的全流程,包括创建应用、创建页面、需求分析、编写代码、创建表单、发布部署。
Usage Guidance
This skill's documentation describes a plausible Yida app workflow, but the package is instruction-only while the runtime steps assume many local helper scripts under .claude/skills/* and access to a cookie file (.cache/cookies.json). Before installing or running it: 1) verify the referenced sub-skill scripts actually exist and inspect their source (they will be executed with node); 2) be aware the agent will read your .cache/cookies.json (contains login cookies/corpId) and may write .cache/<project>-schema.json and PRD files—ensure you are comfortable with that access; 3) confirm you consent to the agent opening a browser tool and producing screenshots for QR login (these images may contain sensitive info); 4) if the package doesn’t include the scripts, do not run commands that download or execute arbitrary archives without reviewing their origin. If you’re unsure, request the full sub-skill code or a signed upstream release before proceeding.
Capability Analysis
Type: OpenClaw Skill
Name: yida-app
Version: 1.0.0
The skill bundle orchestrates the automated development and deployment of Alibaba Yida applications by executing local Node.js scripts and managing sensitive session data in `.cache/cookies.json`. While the instructions in `SKILL.md` align with the stated purpose, the workflow involves high-risk behaviors such as automated login via QR code screenshots and the execution of external scripts (e.g., `publish.js`, `create-app.js`) that are not included in the bundle. The reliance on session cookies and the enforcement of agent-led login procedures present a significant security surface for potential session hijacking or unauthorized platform access if the underlying scripts are compromised.
Capability Assessment
Purpose & Capability
The skill's stated purpose (end-to-end Yida app development) aligns with the actions described (create app/page/form, write PRD, compile/publish). However the SKILL.md expects many helper scripts under .claude/skills/* and access to .cache/cookies.json and .cache/<project>-schema.json, while the registry metadata shows no code files, no install steps, and no required config paths. That mismatch means the package as delivered cannot perform what it describes without external files; requiring local scripts/cookies is a notable incoherence.
Instruction Scope
Runtime instructions explicitly direct the agent to read and compare corpId from prd docs and .cache/cookies.json, write .cache/<project>-schema.json, run node scripts under .claude/skills/*, open a browser tool and capture screenshots for QR login, and update project PRD files. Reading/writing auth cookies and taking/sending screenshots are sensitive actions. The instructions also forbid telling the user to open the browser manually, which constrains interaction flow. These file and auth-access steps are relevant to the stated purpose but are broader than what the manifest declares and require user review/consent.
Install Mechanism
There is no install spec (instruction-only), which is low-risk in isolation. However, the SKILL.md assumes many local helper scripts and npm steps (e.g., npm install in yida-publish-page) located under .claude/skills/*; those scripts are not present in this package. If those referenced scripts are supplied later from external sources, that would increase risk.
Credentials
The manifest declares no required env vars or config paths, yet the instructions require access to .cache/cookies.json (login cookies and corpId) and to write .cache/<project>-schema.json and PRD files. Access to cookies/corpId is sensitive and should have been declared. There are no unrelated external credentials requested, but the omission of required config path declarations is an inconsistency and a potential privacy/security concern.
Persistence & Privilege
The skill does not request always:true, does not modify other skills, and is user-invocable. It does instruct writing project-local .cache and PRD files and invoking local scripts, which is normal for a development helper and does not indicate elevated system-wide privileges.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install yida-app - After installation, invoke the skill by name or use
/yida-app - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
- Initial release of the yida-app skill for building Yida applications from scratch.
- Guides the complete development flow: app creation, requirement analysis, page/form creation, code writing, and deployment.
- Enforces corpId consistency checks and detailed login/cookie management instructions.
- Standardizes documentation and cache file structures for app configuration and schema IDs.
- Provides comprehensive usage scenarios, step-by-step breakdowns, and quick references for all subskills.
- Includes workflow rules, file structure conventions, and answers to common questions.
Metadata
Frequently Asked Questions
What is Yida App?
宜搭完整应用开发技能,描述从零到一搭建一个完整宜搭应用的全流程,包括创建应用、创建页面、需求分析、编写代码、创建表单、发布部署。 It is an AI Agent Skill for Claude Code / OpenClaw, with 310 downloads so far.
How do I install Yida App?
Run "/install yida-app" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Yida App free?
Yes, Yida App is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Yida App support?
Yida App is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Yida App?
It is built and maintained by nicky1108 (@nicky1108); the current version is v1.0.0.
More Skills