Skills
skills/ascend-ai-coding/awesome-ascend-skills/profiling-analysis-communication/Gen Agent Trust Hub

profiling-analysis-communication

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The script scripts/detect_slow_rank.py downloads the mstt profiling toolset from the vendor-associated Gitee repository (https://gitee.com/ascend/mstt.git). This is a legitimate operation to ensure the necessary analysis tools are available.
  • [REMOTE_CODE_EXECUTION]: The skill automates the installation of the downloaded source code by building a wheel and installing it via pip. This behavior is expected as part of the tool's setup process and originates from a vendor-aligned source.
  • [COMMAND_EXECUTION]: The skill utilizes subprocess.run to execute system-level commands such as git, pip, and msprof-analyze. These calls use argument lists rather than shell strings, which follows security best practices to prevent shell injection.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 06:27 AM
Security Audit — agent-trust-hub — profiling-analysis-communication