alicloud-security-cloudfw
Alibaba Cloud Cloud Firewall service, managing cloud firewall resources via OpenAPI, supporting official SDKs or OpenAPI Explorer.
npx skills add cinience/alicloud-skills --skill alicloud-security-cloudfwBefore / After Comparison
1 组Manually managing Cloud Firewall rules and resource configurations is complex, cumbersome, and prone to errors. This leads to slow security policy deployment and impacts protection effectiveness.
The skill uses OpenAPI to efficiently manage Cloud Firewall resources and simplify the configuration process. It significantly improves security policy deployment efficiency, ensuring stable network security.
description SKILL.md
alicloud-security-cloudfw
Category: service
Cloud Firewall
Use Alibaba Cloud OpenAPI (RPC) with official SDKs or OpenAPI Explorer to manage resources for Cloud Firewall.
Workflow
-
Confirm region, resource identifiers, and desired action.
-
Discover API list and required parameters (see references).
-
Call API with SDK or OpenAPI Explorer.
-
Verify results with describe/list APIs.
AccessKey priority (must follow)
-
Environment variables:
ALICLOUD_ACCESS_KEY_ID/ALICLOUD_ACCESS_KEY_SECRET/ALICLOUD_REGION_IDRegion policy:ALICLOUD_REGION_IDis an optional default. If unset, decide the most reasonable region for the task; if unclear, ask the user. -
Shared config file:
~/.alibabacloud/credentials
API discovery
-
Product code:
Cloudfw -
Default API version:
2017-12-07 -
Use OpenAPI metadata endpoints to list APIs and get schemas (see references).
High-frequency operation patterns
-
Inventory/list: prefer
List*/Describe*APIs to get current resources. -
Change/configure: prefer
Create*/Update*/Modify*/Set*APIs for mutations. -
Status/troubleshoot: prefer
Get*/Query*/Describe*StatusAPIs for diagnosis.
Minimal executable quickstart
Use metadata-first discovery before calling business APIs:
python scripts/list_openapi_meta_apis.py
Optional overrides:
python scripts/list_openapi_meta_apis.py --product-code <ProductCode> --version <Version>
The script writes API inventory artifacts under the skill output directory.
Output policy
If you need to save responses or generated artifacts, write them under:
output/alicloud-security-cloudfw/
Validation
mkdir -p output/alicloud-security-cloudfw
for f in skills/security/firewall/alicloud-security-cloudfw/scripts/*.py; do
python3 -m py_compile "$f"
done
echo "py_compile_ok" > output/alicloud-security-cloudfw/validate.txt
Pass criteria: command exits 0 and output/alicloud-security-cloudfw/validate.txt is generated.
Output And Evidence
-
Save artifacts, command outputs, and API response summaries under
output/alicloud-security-cloudfw/. -
Include key parameters (region/resource id/time range) in evidence files for reproducibility.
Prerequisites
-
Configure least-privilege Alibaba Cloud credentials before execution.
-
Prefer environment variables:
ALICLOUD_ACCESS_KEY_ID,ALICLOUD_ACCESS_KEY_SECRET, optionalALICLOUD_REGION_ID. -
If region is unclear, ask the user before running mutating operations.
References
- Sources:
references/sources.md
Weekly Installs213Repositorycinience/alicloud-skillsGitHub Stars357First SeenFeb 26, 2026Security AuditsGen Agent Trust HubPassSocketPassSnykPassInstalled ongemini-cli211github-copilot211codex211kimi-cli211amp211cursor211
forumUser Reviews (0)
Write a Review
No reviews yet
Statistics
User Rating
Rate this Skill