The Agent Skills Directory

[CREDENTIALS_UNSAFE]: The skill includes high-quality security instructions that explicitly forbid reading, echoing, or printing Access Keys (AK/SK). It directs users to check credential status via aliyun configure list and perform actual configuration outside of the session or via environment variables, adhering to best practices for secret management.
[EXTERNAL_DOWNLOADS]: The documentation guides users to download the official Aliyun CLI and plugins from aliyuncli.alicdn.com and the aliyun GitHub organization. These are recognized as official vendor-owned sources and are necessary for the skill's primary function.
[COMMAND_EXECUTION]: The skill executes Aliyun CLI commands to interact with Alibaba Cloud services. It includes mandatory input validation rules using regex for Instance IDs and Region IDs, and specifies that all parameters must be properly JSON-escaped using tools like jq to prevent command injection vulnerabilities.
[PROMPT_INJECTION]: The skill includes an attack surface for indirect prompt injection as it processes public OOS template metadata. This is effectively mitigated by the 'Parameter Confirmation' requirement, which forces the agent to display all extracted parameters to the user for approval before the start-execution action occurs.
[DATA_EXFILTRATION]: No patterns of unauthorized data access or exfiltration were detected. The skill uses the official user-agent header for traceability and focuses strictly on cloud infrastructure management within the user's own account.

alibabacloud-ecs-install-extension