← Back to Skills Marketplace
Youxinpai Reconciliation
by
just4learn1
· GitHub ↗
· v1.0.2
· MIT-0
309
Downloads
0
Stars
1
Active Installs
3
Versions
Install in OpenClaw
/install youxinpai-reconciliation
Description
高性能执行优信拍月初保证金对账前置流程,在星河任务页批量查找并触发相关数仓任务并汇报执行结果。用户提到优信拍、保证金对账、月初对账、推送 x 月保证金数据、跑对账任务时使用。
Usage Guidance
This skill will (a) open internal web pages (https://dp.58corp.com/...), (b) edit a local repository file at an absolute path (/Users/a58/Desktop/code/yxp_oms_web/src/.../scf.config), (c) change the service host to a specific IP, (d) run a unit test, and (e) later restore the original config. The package metadata did not declare these config-path or file-write requirements — that's an inconsistency. Before installing or running: 1) only use this in a trusted, non-production environment; back up the referenced repo/config and confirm the absolute path is correct for your machine; 2) inspect scripts/run_tasks.js fully to confirm it does only the DOM automation you expect and does not exfiltrate data or call external endpoints; 3) prefer to adapt SKILL.md to use relative or configurable paths (do not blindly follow the hard-coded /Users/a58 path); 4) ensure you have permission to run local tests and edit the config (and review the intended host change to 10.192.12.236); 5) if you cannot verify the author or code, do not grant this skill access to your local filesystem or internal sites. These inconsistencies and the file-modification steps are why I classify it as suspicious rather than benign.
Capability Analysis
Type: OpenClaw Skill
Name: youxinpai-reconciliation
Version: 1.0.2
The skill performs high-risk operations including modifying local Java source code and configuration files within a specific directory (/Users/a58/Desktop/code/yxp_oms_web) and executing local unit tests. While these actions are aligned with the stated purpose of automating a 'Youxinpai' reconciliation workflow on internal platforms (dp.58corp.com), the requirement to programmatically alter source code and run local tests constitutes a significant risk. There is no evidence of intentional malice or data exfiltration, but the broad local write/execute permissions and hardcoded private IP (10.192.12.236) warrant a cautious classification.
Capability Assessment
Purpose & Capability
Name/description, SKILL.md, and scripts indicate the skill is meant to trigger internal data-warehouse tasks and then run an SQL check—these capabilities are coherent. However the metadata claims no required config paths or credentials while the SKILL.md explicitly requires read/write access to an absolute local path (/Users/a58/Desktop/code/yxp_oms_web) and to modify a config file and run a local unit test. The metadata omission is an incoherence and the absolute hard-coded path is brittle and potentially dangerous if followed verbatim.
Instruction Scope
SKILL.md gives precise runtime instructions that go beyond browser automation: it requires editing a local config file, changing a service host, running a specific unit test, and later restoring local config. Those are high-impact operations (file writes, test execution). The instructions are prescriptive and not vague, but they assume the agent has local filesystem and test-run privileges — this scope is significant and should be explicit in metadata and access controls.
Install Mechanism
There is no install spec (instruction-only plus a JS helper file). No packages or remote downloads are required, which keeps installation risk low.
Credentials
The skill requests no environment variables or declared config paths in metadata, yet the instructions require access to a specific local project path and modifying its config (yxpbuyerservice.host). Requesting filesystem write and test-execution capability is a significant privilege; the lack of declared required config paths/credentials is an inconsistency and provides insufficient transparency about needed access.
Persistence & Privilege
always:false and no evidence the skill requests permanent platform-level privileges. The skill does instruct making and later restoring a local config change, but it doesn't request to persist or alter agent-wide settings. Autonomous invocation is allowed by default (not flagged on its own).
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install youxinpai-reconciliation - After installation, invoke the skill by name or use
/youxinpai-reconciliation - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.2
Version 1.0.2 introduces mandatory本地单测前置步骤 andSQL操作,扩展整体对账前置流程:
- 增加本地单测前置步骤(配置检查、参数化并执行指定单测,先于页面操作)
- 所有页面任务完成后,需等待10分钟执行SQL:自动修改SQL时间区间并运行
- 全流程需进度状态提示,新增“等待5分钟/10分钟冷却期”步骤
- 明确并行处理5个任务并支持自动降级为串行
- 获得本地配置改动后流程结尾需恢复原值
- 结果表与完成条件同步强化,覆盖本地、页面、SQL等所有关键环节
v1.0.1
重新安装技能
v1.0.0
youxinpai-reconciliation v1.0.0
- 首发支持优信拍月初保证金对账流程的高性能前置任务批量触发及结果记录。
- 通过注入脚本自动化执行星河任务页 5 个指定数仓任务,并结构化汇报每步状态。
- 严格按固定选择器和最短路径批量处理任务,提升任务触发效率,降低人工干预。
- 内置异常处理机制,自动判别页面、权限等典型异常并及时中止与告警。
- 明确区分已触发和待人工关注任务,输出简明结果表供后续财务核对使用。
Metadata
Frequently Asked Questions
What is Youxinpai Reconciliation?
高性能执行优信拍月初保证金对账前置流程,在星河任务页批量查找并触发相关数仓任务并汇报执行结果。用户提到优信拍、保证金对账、月初对账、推送 x 月保证金数据、跑对账任务时使用。 It is an AI Agent Skill for Claude Code / OpenClaw, with 309 downloads so far.
How do I install Youxinpai Reconciliation?
Run "/install youxinpai-reconciliation" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Youxinpai Reconciliation free?
Yes, Youxinpai Reconciliation is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Youxinpai Reconciliation support?
Youxinpai Reconciliation is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Youxinpai Reconciliation?
It is built and maintained by just4learn1 (@just4learn1); the current version is v1.0.2.
More Skills