The Agent Skills Directory

[COMMAND_EXECUTION]: The skill utilizes subprocess.run within scripts/video_workflow.py to orchestrate the execution of its internal processing scripts and in scripts/health_check.py to verify the installation and configuration of the official Aliyun CLI tool.
[EXTERNAL_DOWNLOADS]: Dependencies listed in scripts/requirements.txt consist entirely of official Alibaba Cloud SDKs, such as alibabacloud-mts20140618 and oss2, which are used to interact with the Media Processing Service and Object Storage Service respectively.
[SAFE]: The skill demonstrates a high level of security awareness through several features:
Input Validation: Scripts that process user-provided URLs or paths, like scripts/mps_audit.py and scripts/mps_transcode.py, include validation functions that protect against Server-Side Request Forgery (SSRF) by blocking private IP ranges and performing DNS verification, as well as preventing path traversal attacks.
Credential Management: It strictly follows best practices by using the alibabacloud-credentials SDK to leverage the default credential chain, explicitly advising against the hardcoding of Access Keys or Secrets in the documentation and scripts.
Destructive Operation Safeguards: The scripts/oss_delete.py tool includes a safety check mechanism that requires extra confirmation for bulk deletions or operations targeting the root of a storage bucket.
Path Security: The scripts/oss_download.py script validates local file paths to ensure that the agent cannot be instructed to overwrite sensitive system directories.

alibabacloud-video-forge