alibabacloud-ecs-health-inspection

Pass

Audited by Gen Agent Trust Hub on Jun 14, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads the Alibaba Cloud CLI installer and setup scripts from official vendor infrastructure (aliyuncli.alicdn.com). It proactively recommends security best practices, including manual inspection of scripts and hash verification before execution.
  • [COMMAND_EXECUTION]: Utilizes the aliyun command-line tool to perform read-only health checks and metric collection. Commands are structured to use parallel execution for efficiency and are limited to specific monitoring and metadata APIs.
  • [PROMPT_INJECTION]: The skill processes monitoring data from external APIs (CloudMonitor and ECS). To mitigate indirect prompt injection risks, it utilizes a dedicated Python renderer (scripts/render_report.py) that implements HTML escaping for all user-supplied and API-sourced data. Additionally, it enforces a mandatory JSON validation step (--validate) before report generation to ensure data integrity.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 14, 2026, 03:28 PM
Security Audit — agent-trust-hub — alibabacloud-ecs-health-inspection