← Back to Skills Marketplace
235
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install tapo-camera
Description
Connect to Tapo cameras, verify local access, capture snapshots, and inspect frames with local-first RTSP workflows and safe fallbacks.
Usage Guidance
This skill appears to do what it says (local discovery and one-frame RTSP captures), but consider these before installing:
- Confirm install steps: make sure python-kasa (pip) / the kasa CLI will be installed or available, since the registry install spec only showed ffmpeg. The skill needs both python-kasa and the kasa CLI to function.
- Avoid revealing credentials: the tool uses RTSP URLs that may embed usernames/passwords. Do not use --show-rtsp unless you understand the risk, and do not paste RTSP URLs or credentials into chat or shared logs.
- Be aware of local exposure: passing the RTSP URL to ffmpeg as a command argument can expose credentials to other local users via process lists on some systems. If this is a concern, run captures on a single-user machine, or modify the capture logic to use a secured input method (e.g., ffmpeg reading from a file descriptor or authenticated local proxy).
- Review the code (tapo-capture.py) yourself if possible and test on an isolated trusted network first. If you need automated installs, ensure the pip step for python-kasa is explicitly performed by your environment or installer.
- If you want stricter guarantees, ask the skill to avoid writing any captures or memory files unless you explicitly approve each write.
Capability Analysis
Type: OpenClaw Skill
Name: tapo-camera
Version: 1.0.0
The Tapo Camera skill bundle is a well-structured tool for local camera management and snapshot capture. The included Python script (tapo-capture.py) uses the legitimate python-kasa library and ffmpeg to interact with devices on the local network, with explicit checks to prevent credential leakage in logs. The instructions (SKILL.md and supporting markdown files) consistently emphasize privacy, local-first workflows, and secure handling of environment-based secrets (TAPO_CAMERA_USERNAME/PASSWORD), showing no signs of malicious intent or prompt injection.
Capability Assessment
Purpose & Capability
The name, description, docs, and code all align: discovery with python-kasa, then a one-frame capture via RTSP and ffmpeg. Required binaries (python3, ffmpeg, kasa) and the ~/tapo-camera/ config path make sense for the stated local-first camera workflow. One minor mismatch: the registry-level install spec only lists a brew formula for ffmpeg, while the skill metadata and docs also expect python-kasa (pip) and the kasa CLI; the installer info may be incomplete.
Instruction Scope
Runtime instructions and the script stay focused on user-owned local cameras and explicitly avoid cloud exfiltration. However, the helper passes the full RTSP URL (which can contain credentials) directly to ffmpeg as a command argument; on many systems that can expose credentials via process listings to other local users. The script redacts output by default and only prints the full RTSP URL when --show-rtsp is used, but it does not mitigate process-argument exposure.
Install Mechanism
The only explicit registry install step shown is brew install ffmpeg (reasonable). The SKILL.md metadata lists a pip install for python-kasa in its internal 'install' section, but the registry metadata did not surface that as an install action — installation instructions are mixed between locations. No downloads from untrusted URLs are present.
Credentials
No required secrets are declared; only optional environment variables (TAPO_CAMERA_USERNAME, TAPO_CAMERA_PASSWORD, KASA_CREDENTIALS_HASH) are used, which are appropriate for camera authentication. The single required config path (~/tapo-camera/) is proportionate to the skill's local persistence goals.
Persistence & Privilege
The skill is not always-enabled and does not request unusual platform privileges. It writes only to its own ~/tapo-camera/ area and documents consent before creating files. Autonomous invocation is allowed (default) but not combined with elevated privileges or cross-skill config changes.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install tapo-camera - After installation, invoke the skill by name or use
/tapo-camera - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release with local discovery, RTSP snapshot capture, device-boundary guardrails, and API fallback guidance for unsupported cases.
Metadata
Frequently Asked Questions
What is Tapo Camera?
Connect to Tapo cameras, verify local access, capture snapshots, and inspect frames with local-first RTSP workflows and safe fallbacks. It is an AI Agent Skill for Claude Code / OpenClaw, with 235 downloads so far.
How do I install Tapo Camera?
Run "/install tapo-camera" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is Tapo Camera free?
Yes, Tapo Camera is completely free, licensed under MIT-0. You can download, install and use it at no cost.
Which platforms does Tapo Camera support?
Tapo Camera is cross-platform and runs anywhere OpenClaw / Claude Code is available (darwin, linux, win32).
Who created Tapo Camera?
It is built and maintained by Iván (@ivangdavila); the current version is v1.0.0.
More Skills