aliyun-arms-query
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security concerns were identified during the analysis of the skill's instructions, scripts, and configuration.
- [EXTERNAL_DOWNLOADS]: The skill utilizes the official Alibaba Cloud Python SDK (
alibabacloud_arms20190808) and the OpenAPI base library (alibabacloud_tea_openapi) from the public PyPI registry. These are well-known, trusted libraries provided by the service vendor. - [CREDENTIALS_UNSAFE]: Proper security practices are followed for authentication. The skill correctly instructs users to provide credentials via standard environment variables or the official
~/.alibabacloud/credentialsfile, and no hardcoded secrets or API keys were found in the source code. - [COMMAND_EXECUTION]: The included Python scripts use standard CLI argument parsing (
argparse) and interact with the service through the official SDK. There is no evidence of arbitrary command execution, unsafe shell interpolation, or persistence mechanisms.
Audit Metadata