Skills
skills/aliyun/alibabacloud-aiops-skills/alibabacloud-dataworks-datastudio-develop/Gen Agent Trust Hub

alibabacloud-dataworks-datastudio-develop

Pass

Audited by Gen Agent Trust Hub on May 10, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides detailed instructions for installing the official Alibaba Cloud CLI. It references binary distributions hosted on official vendor infrastructure.
  • Evidence: Downloads are linked from aliyuncli.alicdn.com in cli-installation-guide.md.
  • [COMMAND_EXECUTION]: The skill is designed to execute command-line operations to manage cloud infrastructure. It uses the aliyun CLI and Python helper scripts for its primary operations.
  • Evidence: SKILL.md and references/related-commands.md document the use of aliyun dataworks-public commands for node and workflow management.
  • Evidence: Python scripts scripts/build.py and scripts/validate.py are used for local file processing and schema validation.
  • [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection surface by ingesting local file content into API payloads through a templating system. The evidence chain is as follows:
  • Ingestion points: scripts/build.py reads user-provided dataworks.properties and code files (SQL, Shell, Python).
  • Boundary markers: Absent in the string substitution logic within build.py.
  • Capability inventory: The skill has the capability to execute code (Shell, SQL, Python) on cloud resources via the CreateNode and UpdateNode APIs (SKILL.md).
  • Sanitization: scripts/validate.py provides JSON schema validation, though it does not perform deep content analysis of the code being deployed.
Audit Metadata
Risk Level
SAFE
Analyzed
May 10, 2026, 07:02 PM