The Agent Skills Directory

[EXTERNAL_DOWNLOADS]: The skill downloads the @alipay/agent-payment package from the NPM registry via the scripts/install-alipay-cli.sh script. This installation process follows security best practices by verifying the package name, version, and maintainer identity, and performing a SHA-512 integrity check against a pinned hash.
[COMMAND_EXECUTION]: The skill executes the alipay-bot CLI tool to submit feedback. During the setup phase, it also executes npm audit signatures and a Node.js verification script to ensure the security of the local environment and the authenticity of the installed tools.
[DATA_EXFILTRATION]: The skill transmits user-provided feedback data to official Alipay servers (*.alipay.com). The documentation confirms that this data collection is limited to problem descriptions provided via the --reason flag and excludes sensitive credentials or account identifiers.

alipay-payment-feedback