概述

Ezviz Restaurant Inspection Skill

Captures images from Ezviz cameras and sends to Ezviz AI for restaurant safety inspection.

User Confirmation Required

Running this skill means you accept these remote actions:

Query Ezviz agent list (open.ys7.com)
Create agent from template if needed (open.ys7.com)
Capture device images (open.ys7.com)
Send images for AI analysis (aidialoggw.ys7.com)

Data flow: Device -> open.ys7.com -> aidialoggw.ys7.com -> Local output

Privacy:

Images stored on Ezviz (2 hours)
Token cached in /tmp/ezviz_global_token_cache/ (perms 600)

Security Requirements

Use dedicated Ezviz app credentials (not main account)
Minimal permissions: capture + agent APIs only
Prefer environment variables over config files
Test with non-production devices first

Quick Start

Environment Variables (Recommended)

export EZVIZ_APP_KEY="your_key"
export EZVIZ_APP_SECRET="your_secret"
export EZVIZ_DEVICE_SERIAL="dev1,dev2"
python3 scripts/restaurant_inspection.py

Config File (Alternative)

Add to ~/.openclaw/channels.json:

{
  "channels": {
    "ezviz": {
      "appId": "your_app_id",
      "appSecret": "your_app_secret",
      "devices": ["BF6985110"]
    }
  }
}

Then run:

python3 scripts/restaurant_inspection.py

Disable Token Cache (High Security)

export EZVIZ_TOKEN_CACHE=0
python3 scripts/restaurant_inspection.py

Pre-Run Verification

Run these before first use:

# 1. Check for hidden characters
python3 -c "
import sys
for f in ['SKILL.md', 'scripts/restaurant_inspection.py', 'lib/token_manager.py']:
    with open(f, 'rb') as file:
        text = file.read().decode('utf-8')
        for i, c in enumerate(text):
            code = ord(c)
            if code < 32 and code not in [9, 10, 13]:
                print(f'{f}: Control char at {i}')
                sys.exit(1)
print('All files clean')
"

# 2. Verify API domains (should use open.ys7.com only)
grep -r "open.ys7.com" scripts/ lib/  # Should show endpoints

# 3. Verify domain connectivity
curl -I https://open.ys7.com/api/lapp/token/get  # Should return 200 OK

# 4. Check token cache permissions
ls -la /tmp/ezviz_global_token_cache/global_token_cache.json
# Should show: -rw------- (600)

API Endpoints

Domain	Purpose
--------	---------
open.ys7.com	Token, Capture, Agent Management
aidialoggw.ys7.com	AI Analysis

Note: open.ys7.com is the official Ezviz Open API domain (openai = Open API, not AI).

Security Checklist

Before running:

[ ] Reviewed scripts/restaurant_inspection.py
[ ] Reviewed lib/token_manager.py
[ ] Verified API domains (open.ys7.com, aidialoggw.ys7.com)
[ ] Created dedicated Ezviz app (minimal permissions)
[ ] Tested with non-production device

Before autonomous use:

[ ] Accept remote side effects (agent creation, image capture, AI analysis)
[ ] Understand data flow and privacy implications
[ ] Configured token cache appropriately for your environment

Update Log

Date	Version	Changes
------	---------	---------
2026-03-19	1.0.8	Security hardened: unified domains, user confirmation, clean UTF-8
2026-03-19	1.0.7	Global token cache support
2026-03-19	1.0.6	Config file support

Author: EzvizOpenTeam

License: MIT-0

版本历史

共 2 个版本

v1.0.3 当前

2026-03-29 22:57 安全安全
v1.0.2

2026-03-20 04:33

安全检测

腾讯云安全 (Keen)

安全，无风险

查看报告

腾讯云安全 (Sanbu)