alibabacloud-ecs-diagnose
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements rigorous security controls for credential management, explicitly forbidding the agent from reading, echoing, or requesting AccessKey/SecretKey values, and using standard configuration checks to verify authentication status without exposing secrets.
- [SAFE]: External dependencies and download links for the Aliyun CLI are restricted to official vendor-owned domains (aliyun.com, alicdn.com) and the vendor's official GitHub repository, which are trusted sources for this skill's context.
- [SAFE]: The diagnostic workflow is designed with a safety-first approach, separating read-only platform-level diagnostics from internal OS checks; the latter (Deep Diagnostics) requires explicit user confirmation before any commands are executed via Cloud Assistant.
- [SAFE]: Command execution through the Aliyun CLI follows official protocol standards, utilizing Base64 encoding as required by the API and robust JSON parsing with jq to ensure data integrity and prevent injection during automated processing.
Audit Metadata