aliyun-arms-query

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security concerns were identified during the analysis of the skill's instructions, scripts, and configuration.
  • [EXTERNAL_DOWNLOADS]: The skill utilizes the official Alibaba Cloud Python SDK (alibabacloud_arms20190808) and the OpenAPI base library (alibabacloud_tea_openapi) from the public PyPI registry. These are well-known, trusted libraries provided by the service vendor.
  • [CREDENTIALS_UNSAFE]: Proper security practices are followed for authentication. The skill correctly instructs users to provide credentials via standard environment variables or the official ~/.alibabacloud/credentials file, and no hardcoded secrets or API keys were found in the source code.
  • [COMMAND_EXECUTION]: The included Python scripts use standard CLI argument parsing (argparse) and interact with the service through the official SDK. There is no evidence of arbitrary command execution, unsafe shell interpolation, or persistence mechanisms.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 12:47 PM
Security Audit — agent-trust-hub — aliyun-arms-query