alibabacloud-pai-dlc-job-diagnostics
Pass
Audited by Gen Agent Trust Hub on May 29, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the official
aliyunCLI to perform read-only diagnostics. Subcommands such asaliyun pai-dlc get-jobandaliyun paistudio GETare employed to monitor job status and identify scheduling bottlenecks. - [EXTERNAL_DOWNLOADS]: The documentation includes instructions for downloading the Alibaba Cloud CLI from trusted vendor domains (
aliyuncli.alicdn.com) and installing official product plugins through thealiyun plugin installinterface. - [SAFE]: The skill implements best practices for credential safety, explicitly directing the agent to avoid echoing AccessKeys and providing instructions for configuring the Aliyun CLI securely using standard configuration files and environment variables.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it processes untrusted pod logs. 1. Ingestion point:
aliyun pai-dlc get-pod-logs(SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Read-only CLI commands (get-job,get-pod-logs). 4. Sanitization: Absent. The risk is mitigated as the skill's capabilities are restricted to read-only diagnostics and log data is not used to construct sensitive commands or write operations.
Audit Metadata