← 返回 Skills 市场

Ezviz Open Restaurant Inspection

Name: Ezviz Open Restaurant Inspection
Author: ezviz-open

作者 EzvizOpenTeam · GitHub ↗ · v1.0.3 · MIT-0

cross-platform ✓ 安全检测通过

276

总下载

当前安装

版本数

在 OpenClaw 中安装

/install ezviz-open-restaurant-inspection

功能描述

Ezviz restaurant inspection skill. Captures device images and sends to Ezviz AI for food safety analysis.

使用说明 (SKILL.md)

Ezviz Restaurant Inspection Skill

Captures images from Ezviz cameras and sends to Ezviz AI for restaurant safety inspection.

User Confirmation Required

Running this skill means you accept these remote actions:

Query Ezviz agent list (open.ys7.com)
Create agent from template if needed (open.ys7.com)
Capture device images (open.ys7.com)
Send images for AI analysis (aidialoggw.ys7.com)

Data flow: Device -> open.ys7.com -> aidialoggw.ys7.com -> Local output

Privacy:

Images stored on Ezviz (2 hours)
Token cached in /tmp/ezviz_global_token_cache/ (perms 600)

Security Requirements

Use dedicated Ezviz app credentials (not main account)
Minimal permissions: capture + agent APIs only
Prefer environment variables over config files
Test with non-production devices first

Quick Start

Environment Variables (Recommended)

export EZVIZ_APP_KEY="your_key"
export EZVIZ_APP_SECRET="your_secret"
export EZVIZ_DEVICE_SERIAL="dev1,dev2"
python3 scripts/restaurant_inspection.py

Config File (Alternative)

Add to ~/.openclaw/channels.json:

{
  "channels": {
    "ezviz": {
      "appId": "your_app_id",
      "appSecret": "your_app_secret",
      "devices": ["BF6985110"]
    }
  }
}

Then run:

python3 scripts/restaurant_inspection.py

Disable Token Cache (High Security)

export EZVIZ_TOKEN_CACHE=0
python3 scripts/restaurant_inspection.py

Pre-Run Verification

Run these before first use:

# 1. Check for hidden characters
python3 -c "
import sys
for f in ['SKILL.md', 'scripts/restaurant_inspection.py', 'lib/token_manager.py']:
    with open(f, 'rb') as file:
        text = file.read().decode('utf-8')
        for i, c in enumerate(text):
            code = ord(c)
            if code \x3C 32 and code not in [9, 10, 13]:
                print(f'{f}: Control char at {i}')
                sys.exit(1)
print('All files clean')
"

# 2. Verify API domains (should use open.ys7.com only)
grep -r "open.ys7.com" scripts/ lib/  # Should show endpoints

# 3. Verify domain connectivity
curl -I https://open.ys7.com/api/lapp/token/get  # Should return 200 OK

# 4. Check token cache permissions
ls -la /tmp/ezviz_global_token_cache/global_token_cache.json
# Should show: -rw------- (600)

API Endpoints

Domain	Purpose
open.ys7.com	Token, Capture, Agent Management
aidialoggw.ys7.com	AI Analysis

Note: open.ys7.com is the official Ezviz Open API domain (openai = Open API, not AI).

Security Checklist

Before running:

Reviewed scripts/restaurant_inspection.py
Reviewed lib/token_manager.py
Verified API domains (open.ys7.com, aidialoggw.ys7.com)
Created dedicated Ezviz app (minimal permissions)
Tested with non-production device

Before autonomous use:

Accept remote side effects (agent creation, image capture, AI analysis)
Understand data flow and privacy implications
Configured token cache appropriately for your environment

Update Log

Date	Version	Changes
2026-03-19	1.0.8	Security hardened: unified domains, user confirmation, clean UTF-8
2026-03-19	1.0.7	Global token cache support
2026-03-19	1.0.6	Config file support

Author: EzvizOpenTeam License: MIT-0

安全使用建议

This skill appears to do what it says, but review and accept the side effects before running: it will capture camera images, create/manage Ezviz intelligent agents in your Ezviz account, and upload images to Ezviz's analysis service (aidialoggw.ys7.com). Use a dedicated Ezviz app (not your main account) with minimal permissions. If you don't want automatic credential discovery, remove Ezviz credentials from ~/.openclaw/* or run with explicit environment variables. Consider disabling the global token cache (export EZVIZ_TOKEN_CACHE=0) if you don't want tokens stored under /tmp, and inspect scripts/restaurant_inspection.py and lib/token_manager.py before first run. Test on non-production devices first.

功能分析

Type: OpenClaw Skill Name: ezviz-open-restaurant-inspection Version: 1.0.3 The skill is a legitimate integration for Ezviz (Hikvision) IoT devices, designed to capture camera images and perform AI-based restaurant safety inspections. It demonstrates good security practices by explicitly documenting remote side effects in SKILL.md, using official API domains (open.ys7.com and aidialoggw.ys7.com), and implementing restricted file permissions (0600) for its local token cache in lib/token_manager.py. No evidence of malicious intent, data exfiltration, or prompt injection was found.

能力评估

✓ Purpose & Capability

Name/description ask for Ezviz app credentials and device serial; the code uses those credentials to obtain a token, list/copy intelligent agents, capture images, and call the analysis endpoint (open.ys7.com and aidialoggw.ys7.com). The requested env vars (EZVIZ_APP_KEY, EZVIZ_APP_SECRET, EZVIZ_DEVICE_SERIAL) are appropriate for the declared functionality.

ℹ Instruction Scope

SKILL.md and scripts instruct the agent to read credentials from environment or ~/.openclaw config files, manage agents (list/copy), capture device images, and send them to aidialoggw.ys7.com. These actions match the declared side effects and are explicit. Note: reading OpenClaw config files is a legitimate credential fallback but means the skill may pull Ezviz credentials stored in a user's home config if present — review those files if you don't want automatic credential discovery.

✓ Install Mechanism

No install spec or remote downloads are present; this is a Python script bundle that depends on the requests library (declared in SKILL.md). Nothing is fetched from arbitrary URLs or installed system-wide by the skill.

ℹ Credentials

Requested env vars (app key/secret/device serial) are proportional to the task. Two points to consider: (1) the token manager writes a global cache in /tmp/ezviz_global_token_cache/global_token_cache.json (intended behavior) which may be shared across Ezviz skills — ensure you trust other installed skills, and (2) the script will read ~/.openclaw/* config files as a fallback, which could reveal stored credentials if present. The SKILL.md recommends dedicated Ezviz credentials and offers a way to disable caching (EZVIZ_TOKEN_CACHE=0).

✓ Persistence & Privilege

The skill does not request permanent platform presence (always:false). It uses a ephemeral-global token cache under /tmp (with code setting file mode 0600). It does create resources on the Ezviz service (agents) and captures images — these are expected side effects and are documented.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install ezviz-open-restaurant-inspection
安装完成后，直接呼叫该 Skill 的名称或使用 /ezviz-open-restaurant-inspection 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.3

- Added lib/token_manager.py for improved token management. - Switched skill name and metadata to English; clarified warnings and security notes. - Token is now cached on disk in /tmp/ezviz_global_token_cache/ with restrictive permissions (0600). - Updated documentation to include security checklists, explicit user confirmation, and pre-run verification steps. - Outlined safer credential usage, stricter API endpoint domain usage, and cache disabling option. - No behavioral changes to inspection process; focus is on security, transparency, and safer handling of Ezviz credentials and tokens.

v1.0.2

- Added a new "安全声明" section describing the account-level actions performed by the skill. - Updated metadata to document side effects such as querying and creating intelligent agents, device image capture, and AI analysis calls. - Minor formatting adjustments to code and table sections for improved clarity. - Simplified and clarified example command usage and outputs.

v1.0.1

**智能体自动管理升级：无需手动配置智能体，自动检测并创建餐厅专用智能体，进一步提升易用性。** - 智能体(appId)管理全自动：无需再手动设置 EZVIZ_AGENT_ID，技能会自动检测用户是否已有餐厅行业智能体，如无将自动从模板复制创建。 - 简化环境变量和部署流程：仅需配置 EZVIZ_APP_KEY、EZVIZ_APP_SECRET、EZVIZ_DEVICE_SERIAL；删除了对 EZVIZ_AGENT_ID 的依赖。 - 工作流程新增“查询/创建智能体”步骤，进一步提升首次体验及批量部署兼容性。 - 更新了技能描述、快速开始、流程说明、接口表等文档内容以反映自动化智能体流程。 - 保持所有 API 调用、频率限制、隐私安全特性与此前一致。

v1.0.0

ezviz-restaurant-inspection 1.0.0 - Initial release: AI-powered restaurant/kitchen inspection using Ezviz devices. - Supports automatic image capture and AI analysis for hygiene, fire safety, trash, storage, and mask compliance. - No manual token management needed—access tokens are securely and automatically fetched at runtime. - Handles single or multiple devices, custom analysis prompts, and per-device channel specification. - Clear documentation of API usage, workflow, output formats, security, and privacy considerations.

元数据

Slug ezviz-open-restaurant-inspection

版本 1.0.3

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 4

常见问题