alibabacloud-rds-mysql-inspection
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references a shell script for installing or upgrading the Aliyun CLI via
https://aliyuncli.alicdn.com/setup.sh. This download targets the official Alibaba Cloud CDN and is a standard procedure for maintaining the required environment. - [COMMAND_EXECUTION]: The
scripts/inspect.pyscript utilizes thesubprocess.runmethod to invoke thealiyunCLI tool. This is used to programmatically retrieve instance attributes, CloudMonitor metrics, and database analysis results. The commands are constructed using argument lists, which follows security best practices to prevent shell injection. - [DATA_EXFILTRATION]: The skill performs read-only operations on database metadata, monitoring data, and slow logs. This data is used to generate local HTML reports and summary files. There is no evidence of data being transmitted to non-vendor or unauthorized third-party domains.
Audit Metadata