skills/ascend-ai-coding/awesome-ascend-skills/external-gitcode-ascend-cann-operator-env-config/Gen Agent Trust Hub
external-gitcode-ascend-cann-operator-env-config
Fail
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs users to run commands with administrative privileges, including system package managers like apt-get and yum, as well as hardware utility commands like npu-smi.
- [REMOTE_CODE_EXECUTION]: A repository configuration file is downloaded from repo.oepkgs.net directly into /etc/yum.repos.d/, which establishes the trust and source for subsequent software installations via yum.
- [EXTERNAL_DOWNLOADS]: External software sources are configured from repo.huaweicloud.com and repo.oepkgs.net to facilitate the installation of Conda and system-level packages.
- [COMMAND_EXECUTION]: The skill modifies the user's shell configuration file (~/.bashrc) to automatically source environment setup scripts, establishing persistence for the environment configuration in all new shell sessions.
Recommendations
- HIGH: Downloads and executes remote code from: https://repo.oepkgs.net/ascend/cann/ascend.repo - DO NOT USE without thorough review
Audit Metadata