alibabacloud-csas-user-device-ops
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill performs operations by executing
aliyunCLI commands and local bash scripts provided within the skill package. These scripts manage data aggregation and batch processing for SASE resources using standard plugin-mode commands. - [EXTERNAL_DOWNLOADS]: The documentation references official Alibaba Cloud mirrors (
aliyuncli.alicdn.com) for downloading the required CLI tools. These are recognized vendor domains and follow secure installation practices. - [SAFE]: The skill incorporates robust security instructions, explicitly forbidding the reading, echoing, or prompting for Access Key (AK) or Secret Key (SK) values, and instead directs users to use the CLI's native configuration tools.
- [SAFE]: All write operations, such as locking devices, follow a mandatory 'preview-confirm-execute' workflow. The skill generates a dry-run report and waits for explicit user confirmation before proceeding with any changes.
- [SAFE]: The skill restricts its scope to non-destructive actions, guiding users to the official Alibaba Cloud Console for irreversible operations like resource deletion.
Audit Metadata