alibabacloud-pai-dlc-job-diagnostics

Pass

Audited by Gen Agent Trust Hub on May 29, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the official aliyun CLI to perform read-only diagnostics. Subcommands such as aliyun pai-dlc get-job and aliyun paistudio GET are employed to monitor job status and identify scheduling bottlenecks.
  • [EXTERNAL_DOWNLOADS]: The documentation includes instructions for downloading the Alibaba Cloud CLI from trusted vendor domains (aliyuncli.alicdn.com) and installing official product plugins through the aliyun plugin install interface.
  • [SAFE]: The skill implements best practices for credential safety, explicitly directing the agent to avoid echoing AccessKeys and providing instructions for configuring the Aliyun CLI securely using standard configuration files and environment variables.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it processes untrusted pod logs. 1. Ingestion point: aliyun pai-dlc get-pod-logs (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Read-only CLI commands (get-job, get-pod-logs). 4. Sanitization: Absent. The risk is mitigated as the skill's capabilities are restricted to read-only diagnostics and log data is not used to construct sensitive commands or write operations.
Audit Metadata
Risk Level
SAFE
Analyzed
May 29, 2026, 04:19 AM
Security Audit — agent-trust-hub — alibabacloud-pai-dlc-job-diagnostics