aliyun-live-manage-test
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Python script
tests/common/compile_skill_scripts.pyto verify the compilation of the target skill. - [PROMPT_INJECTION]: The skill ingests data from an external file (
skills/media/live/aliyun-live-manage/SKILL.md) to dynamically determine which API operations to execute, creating a surface for indirect prompt injection. - Ingestion points:
skills/media/live/aliyun-live-manage/SKILL.mdreferenced inSKILL.md. - Boundary markers: Absent.
- Capability inventory:
python3command execution and filesystem writes to theoutput/directory. - Sanitization: Absent.
Audit Metadata