Tuya Smart
by @ivangdavila
Control and automate Tuya Smart devices with official cloud APIs, secure request signing, region-aware routing, and safe command execution.
clawhub install tuyaπ About This Skill
name: Tuya Smart slug: tuya version: 1.0.0 homepage: https://clawic.com/skills/tuya description: Control and automate Tuya Smart devices with official cloud APIs, secure request signing, region-aware routing, and safe command execution. changelog: Initial release with end-to-end Tuya Smart workflows for authentication, account linking, device control, diagnostics, and safe rollout playbooks. metadata: {"clawdbot":{"emoji":"T","requires":{"bins":["curl","jq","openssl"],"env":["TUYA_ACCESS_ID","TUYA_ACCESS_SECRET"]},"primaryEnv":"TUYA_ACCESS_SECRET","os":["linux","darwin","win32"]}}
Setup
On first use, read setup.md and align activation boundaries, cloud region context, and write-safety defaults before sending Tuya commands.
When to Use
Use this skill when the user needs practical execution across the Tuya ecosystem: cloud API authentication, device discovery, DPS-based command control, account linking, or automation orchestration. Use this instead of generic IoT advice when outcomes depend on Tuya Smart API behavior, regional endpoints, request signing, and command validation.
Architecture
Memory lives in ~/tuya/. See memory-template.md for structure and status values.
~/tuya/
|-- memory.md # Core context and activation boundaries
|-- environments.md # Region, project, app-account, and endpoint mapping
|-- devices.md # Device inventory, capabilities, and command mappings
|-- automations.md # Cross-device orchestration plans and safeguards
-- incidents.md # Error signatures, fixes, and verification evidence
Quick Reference
Use the smallest file needed for the current task.
| Topic | File |
|-------|------|
| Setup and activation behavior | setup.md |
| Memory and workspace templates | memory-template.md |
| Cloud auth and signing reference | auth-signing.md |
| User account and home/device linking | account-linking.md |
| Device commands and state workflows | device-operations.md |
| Multi-device rollout patterns | orchestration-playbooks.md |
| Diagnostics and recovery | troubleshooting.md |
Requirements
and TUYA_ACCESS_SECRETNever ask users to paste production secrets into chat logs. Prefer local environment variables and redacted examples.
Data Storage
Keep local operational notes in ~/tuya/:
Core Rules
1. Resolve Region and Project Scope Before Any API Call
2. Build and Verify Tuya Signature Inputs Exactly
, t, nonce, body hash, or signed headers are inconsistent, treat the request as invalid and rebuild before retrying.3. Discover Device Capabilities Before Sending Commands
values and valid data types/ranges.4. Use Read-Before-Write and Read-After-Write Control Loops
5. Apply Explicit Safety Gates for Real Device Writes
6. Keep Account Linking and Device Ownership Consistent
7. Design Automations as Idempotent, Observable Sequences
8. Preserve Security and Privacy Boundaries
Common Traps
pairs and rejected writes.External Endpoints
| Endpoint | Data Sent | Purpose | |----------|-----------|---------| | https://openapi.tuyaus.com | Signed API headers, device ids, command payloads, and project-scoped metadata | Tuya OpenAPI access for US region projects | | https://openapi-ueaz.tuyaus.com | Signed API headers, device ids, command payloads, and project-scoped metadata | Tuya OpenAPI access for US West region projects | | https://openapi.tuyaeu.com | Signed API headers, device ids, command payloads, and project-scoped metadata | Tuya OpenAPI access for Europe region projects | | https://openapi-weaz.tuyaeu.com | Signed API headers, device ids, command payloads, and project-scoped metadata | Tuya OpenAPI access for Europe West region projects | | https://openapi.tuyacn.com | Signed API headers, device ids, command payloads, and project-scoped metadata | Tuya OpenAPI access for China region projects | | https://openapi.tuyain.com | Signed API headers, device ids, command payloads, and project-scoped metadata | Tuya OpenAPI access for India region projects | | https://developer.tuya.com | Documentation query terms | Validate API behavior, limits, and integration requirements |
No other data is sent externally.
Security & Privacy
Data that leaves your machine:
Data that stays local:
This skill does NOT:
or TUYA_ACCESS_SECRET in local skill filesTrust
This skill sends operational data to Tuya cloud services when execution is approved. Only install if you trust Tuya and your credential handling model with your IoT control data.
Related Skills
Install with clawhub install if user confirms:
iot - Device connectivity and system-level IoT integration guidance
smart-home - Home automation architecture and reliability practices
api - API contract design, auth workflows, and error handling discipline
mqtt - Messaging patterns for device telemetry and event-driven orchestration
zigbee - Local network device planning and Zigbee ecosystem troubleshootingFeedback
If useful: clawhub star tuya
Stay updated: clawhub sync`
β‘ When to Use
βοΈ Configuration
On first use, read setup.md and align activation boundaries, cloud region context, and write-safety defaults before sending Tuya commands.