← Back to Skills Marketplace
Tesla China
by
mywind2020
· GitHub ↗
· v1.0.1
· MIT-0
259
Downloads
0
Stars
0
Active Installs
2
Versions
Install in OpenClaw
/install tesla-cn
Description
面向中国特斯拉车主的远程控制技能,基于特斯拉官方车队 API(Fleet API)实现,使用简单、体验自然。
Usage Guidance
This skill is coherent and the code is small and readable, but it relies on a third‑party proxy (https://tesla.dhuar.com) and asks you to obtain and store an apiKey from that site. Before installing or using it: 1) Verify who runs tesla.dhuar.com and whether you trust them to receive your apiKey, VINs, and vehicle telemetry/location; 2) Prefer using official Tesla authentication if possible, or only use a revocable/dedicated key; 3) Understand that the skill will store the apiKey in ~/.tesla_cn.json (anyone with file access can read it) — consider file permissions and storing secrets in a safer vault; 4) If unsure, contact the author or run the scripts in an isolated environment and monitor outbound requests to confirm behavior; 5) If you proceed, treat the apiKey as sensitive and be prepared to revoke it if you lose trust in the proxy service.
Capability Analysis
Type: OpenClaw Skill
Name: tesla-cn
Version: 1.0.1
The skill manages Tesla vehicle controls by routing sensitive API keys and commands through a third-party proxy (https://tesla.dhuar.com) instead of the official Tesla API. It stores credentials in the user's home directory (~/.tesla_cn.json) and transmits the apiKey as a plaintext query parameter in the URL, which is a significant security vulnerability that exposes vehicle access to the proxy operator and network logs. While the scripts (scripts/tesla-command.js and scripts/init-tesla-config.js) perform their stated functions, the architectural choice of using an unofficial intermediary for car telemetry and control poses a high risk of credential theft or unauthorized vehicle access.
Capability Assessment
Purpose & Capability
The skill claims to be a client for Tesla's Fleet API, but rather than calling Tesla's official endpoints it directs all requests to https://tesla.dhuar.com and requires an apiKey obtained from that site. A user might reasonably expect direct communication with Tesla; routing credentials and vehicle data through a third party is not implied by the description and is disproportionate to the stated purpose without further justification.
Instruction Scope
The SKILL.md and scripts instruct the agent/user to store an apiKey in ~/.tesla_cn.json or pass it on the command line. The runtime behavior appends that apiKey (and VINs / request data) as query parameters to the proxy URL. The instructions do not attempt to read other system files, but they do direct potentially sensitive vehicle data and credentials to an external service (tesla.dhuar.com).
Install Mechanism
There is no install spec or remote downloader — the skill is instruction plus two small JS scripts. Nothing is fetched from arbitrary URLs at install time. This is low risk from an installation perspective.
Credentials
No platform environment variables are requested, but the skill requires an apiKey which the user must obtain from a third party and store locally. That apiKey is effectively a credential granting remote control; requesting it (and guiding the user to a non‑official issuer) is a disproportionate trust requirement given the skill's description. The scripts also require writing a file in the user's home directory (~/.tesla_cn.json) to persist that secret.
Persistence & Privilege
The skill does not request always:true and can be invoked by the user. It does write/modify a single config file (~/.tesla_cn.json) in the user's home directory to store the apiKey — this is expected for storing a credential but is persistent and should be considered sensitive.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install tesla-cn - After installation, invoke the skill by name or use
/tesla-cn - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.1
特斯拉中国技能
通过特斯拉官方车队 API,为中国地区的特斯拉车辆提供远程控制能力
支持核心指令:车辆列表查询、唤醒、车门上锁/解锁、前后备箱控制、闪灯、空调控制、鸣笛、充电口控制以及远程音效等。
提供灵活的 apiKey 配置方式:可通过用户主目录配置文件(~/.tesla_cn.json),或通过命令行参数覆盖。
内置完整的使用说明及脚本,支持一键初始化配置文件。
包含安全与隐私使用指引,保障使用过程中的安全性。
v1.0.0
特斯拉中国技能
通过特斯拉官方车队 API,为中国地区的特斯拉车辆提供远程控制能力
支持核心指令:车辆列表查询、唤醒、车门上锁/解锁、前后备箱控制、闪灯、空调控制、鸣笛、充电口控制以及远程音效等。
提供灵活的 apiKey 配置方式:可通过用户主目录配置文件(~/.tesla_cn.json),或通过命令行参数覆盖。
内置完整的使用说明及脚本,支持一键初始化配置文件。
包含安全与隐私使用指引,保障使用过程中的安全性。
Metadata
Frequently Asked Questions
What is Tesla China?
面向中国特斯拉车主的远程控制技能,基于特斯拉官方车队 API(Fleet API)实现,使用简单、体验自然。 It is an AI Agent Skill for Claude Code / OpenClaw, with 259 downloads so far.
How do I install Tesla China?
Run "/install tesla-cn" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Tesla China free?
Yes, Tesla China is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Tesla China support?
Tesla China is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created Tesla China?
It is built and maintained by mywind2020 (@mywind2020); the current version is v1.0.1.
More Skills