alibabacloud-dlf-manage
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the official Alibaba Cloud Python SDK (
alibabacloud-dlfnext20250310) for all operations, which is the recommended approach for interacting with DLF services. - [SAFE]: Authentication is managed through the official
alibabacloud-credentialslibrary, leveraging the default credential chain (environment variables, config files, or instance roles) rather than handling raw secrets. - [SAFE]: The script
scripts/dlf_metadata_query.pyimplements robust input validation using regular expressions and length constraints for all command-line arguments to prevent malformed or malicious inputs from reaching the API. - [SAFE]: The skill is strictly read-only, focusing entirely on listing and retrieving metadata. It contains no functionality for creating, modifying, or deleting cloud resources.
- [SAFE]: The skill instructs the user on secure credential management and warns against practices like hardcoding or printing Access Keys.
Audit Metadata