Skills
skills/cinience/alicloud-skills/aliyun-oss-ossutil/Gen Agent Trust Hub

aliyun-oss-ossutil

Pass

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches the ossutil binary from Alibaba Cloud's official domain (gosspublic.alicdn.com). This download is documented in references/install.md and references/sources.md as part of the tool's installation process.
  • [COMMAND_EXECUTION]: Executes system commands for environment setup and validation.
  • The installation guide in references/install.md uses curl, unzip, and sudo (for chmod and mv) to deploy the binary to /usr/local/bin.
  • The scripts/check_ossutil.py script uses subprocess.run to execute ossutil --version to verify the installation.
  • [CREDENTIALS_UNSAFE]: Discusses AccessKey (AK) and AccessKey Secret (SK) configuration in SKILL.md. The documentation follows security best practices by recommending environment variables or shared credential files and using placeholders (<your-ak>, <your-sk>) instead of hardcoded secrets.
Audit Metadata
Risk Level
SAFE
Analyzed
May 7, 2026, 04:09 PM