1688-product-search
>- 1688商品搜索SKILL:提供完整的1688商品搜索能力,包括类目查询、关键词搜索、图片搜索、商品详情、相关性商品、拉取货盘底池等9个核心接口。 支持多语言搜索和商品推荐,使用1688开放平台官方API,统一鉴权,Token全局缓存共享。
Install caution
Risk: High
Source: OpenClaw Master Skills
Path: skills/1688-product-search/SKILL.md
Review flags: credential or secret references, network access or external URLs, shell command snippets. These are review signals, not definitive security judgments; inspect before installing.
Required permissions
- • Environment variables / secrets
- • Shell commands
- • Network/API usage
Permissions are inferred from SKILL.md text only. They are review prompts, not guarantees about runtime behavior.
Risk flags explained
Mentions tokens, API keys, passwords, or private-key style environment variables.
Mentions external URLs, network APIs, downloads, or HTTP client usage.
Contains shell command snippets. Review commands before copy/paste or agent execution.
Score explanation
Trust
- • Trust starts at 90 before review-signal penalties and metadata bonuses.
- • Risk-signal penalty: -38 from 3 detected flag(s).
- • Metadata bonus: +5 from author/version/description fields.
Utility
- • Utility starts at 55 and rewards clear descriptions, runnable examples, and explicit setup needs.
- • Description present: yes.
- • Command examples detected: 17.
- • Environment variables detected: 8.
Momentum
- • Momentum starts at 45 and uses public repo activity signals.
- • Recent commit activity: latest repo update was 6 day(s) ago.
- • Recent commit volume: 6 commit(s) in the lookback window (+18).
- • Source has strong public adoption: 2049 stars.
- • Fork activity suggests reuse: 309 forks.
Overall
- • Overall score weights trust 45%, utility 35%, and momentum 20%.
Detected signals
Env vars
- • ALI1688_ACCESS_TOKEN
- • ALI1688_APP_KEY
- • ALI1688_APP_SECRET
- • ALI1688_REFRESH_TOKEN
- • API
- • APPKEY
- • YOUR_APPKEY
- • YOUR_APPSECRET
Commands
- • curl -X POST "https://gw.open.1688.com/openapi/param2/1/system.oauth2/getToken/YOUR_APPKEY" -d "grant_type=authorization_code" -d "need_refresh_token=true" -d "client_id=YOUR_APPKEY" -d "client_secret=YOUR_APPSECRET" -d "redirect_uri=YOUR_REDIRECT_URI" -d "code=授权码"
- • python3 scripts/product_search.py category 0
- • python3 scripts/product_search.py category 0 --language en
- • python3 scripts/product_search.py image-search "your_image_id" --country en
- • python3 scripts/product_search.py image-search --image-path "/path/to/your/image.jpg" --country en
- • python3 scripts/product_search.py image-search --image-url "https://example.com/image.jpg" --country en
- • python3 scripts/product_search.py keyword-search "dress" --country en
- • python3 scripts/product_search.py keyword-search "dress" --country en --filter "shipIn48Hours,shipIn24Hours" --sort '{"price":"asc"}'
- • python3 scripts/product_search.py keyword-search "连衣裙" --country en
- • python3 scripts/product_search.py offer-recommend "keyword" --country en
- • python3 scripts/product_search.py pool-pull --pool-id 111 --task-id 1 --cate-id 11 --sort-field order1m --sort-type DESC --page-no 1 --page-size 10
- • python3 scripts/product_search.py pool-pull --pool-id 111 --task-id 1 --page-no 1 --page-size 10
URLs
- • https://auth.1688.com/oauth/authorize?client_id=YOUR_APPKEY&site=1688&redirect_uri=YOUR_REDIRECT_URI
- • https://detail.1688.com/offer/683381849222.html?fromkv=...(promotionURL)
- • https://detail.1688.com/offer/{offerId}.html`
- • https://example.com/image.jpg
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/category.translation.getById/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/pool.product.pull/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/product.image.upload/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/product.related.recommend/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/product.search.imageQuery/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/product.search.keywordQuery/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/product.search.offerRecommend/${APPKEY}`
- • https://gw.open.1688.com/openapi/param2/1/com.alibaba.fenxiao.crossborder/product.search.queryProductDetail/${APPKEY}`
Provenance & evidence
SkillRadar makes each review traceable back to the exact source path, source blob SHA, scanner version, and text-only policy that produced the report.
Evidence snippets
…u5c40\u7f13\u5b58\u5171\u4eab\u3002", "metadata": "openclaw: primaryEnv: ALI1688_APP_KEY, ALI1688_APP_SECRET, ALI1688_REFRESH_TOKEN requires: env: - ALI1688_APP_KEY - ALI1688_APP_SECRET - ALI1688_RE…
…失败、Token 过期),按以下步骤操作: #### Step 1:注册开发者 & 创建应用 → 获取 AppKey + AppSecret 1. 打开 [1688开放平台](https://open.1688.com),用1688账号登录 2. 进入 [控制中心](https://open.1688.com/console) 3. 点击「我的应用」→「创建应用」 4.…
…2. 用1688账号登录并同意授权 3. 页面会跳转到你的回调地址,URL 中带有 `code` 参数 4. 用 code 换取 Token(有效期短,需在10分钟内使用): ```bash curl -X POST "https://gw.open.1688.com/openapi/param2/1/system.oauth2/getToken/YOUR_APPK…
Watch this skill
Get alerted when this skill adds credential requirements, shell commands, external domains, remote installer patterns, or risk-level changes.
Join watchlist betaMethodology note
SkillRadar scans SKILL.md as hostile text only. It does not execute commands, install packages, or load third-party skills.