alibabacloud-ecs-health-inspection
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads the Alibaba Cloud CLI installer and setup scripts from official vendor infrastructure (
aliyuncli.alicdn.com). It proactively recommends security best practices, including manual inspection of scripts and hash verification before execution. - [COMMAND_EXECUTION]: Utilizes the
aliyuncommand-line tool to perform read-only health checks and metric collection. Commands are structured to use parallel execution for efficiency and are limited to specific monitoring and metadata APIs. - [PROMPT_INJECTION]: The skill processes monitoring data from external APIs (CloudMonitor and ECS). To mitigate indirect prompt injection risks, it utilizes a dedicated Python renderer (
scripts/render_report.py) that implements HTML escaping for all user-supplied and API-sourced data. Additionally, it enforces a mandatory JSON validation step (--validate) before report generation to ensure data integrity.
Audit Metadata