Skills
skills/huaweicloud/huaweicloud-skills/huawei-cloud-ascend-command/Gen Agent Trust Hub

huawei-cloud-ascend-command

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill translates natural language instructions into npu-smi and ascend-dmi system commands. Local execution is handled via subprocess.run using shlex.split and shell=False to mitigate shell injection risks.
  • [COMMAND_EXECUTION]: Remote management capability is provided via SSH using the paramiko library. The skill accepts host, user, and password parameters as command-line arguments to establish these connections.
  • [EXTERNAL_DOWNLOADS]: The skill utilizes the paramiko Python package to support its remote SSH functionality.
  • [SAFE]: High-impact operations, such as firmware upgrades, virtualization management, and ECC configuration, are protected by a mandatory confirmation workflow in scripts/executor.py. This ensures that sensitive actions require an explicit 'confirm' response from the user before execution.
  • [SAFE]: Credential handling follows security guidelines; passwords are accepted only as one-time command-line arguments, and the instructions explicitly prohibit logging or echoing these values.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 09:10 AM
Security Audit — agent-trust-hub — huawei-cloud-ascend-command