Skills
skills/huaweicloud/huaweicloud-skills/huawei-cloud-ascend-remote-connect/Gen Agent Trust Hub

huawei-cloud-ascend-remote-connect

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses subprocess.run to execute local commands including ssh and sshpass. These are used to establish optimized SSH connections via ControlMaster and manage the local execution environment for remote access.
  • [REMOTE_CODE_EXECUTION]: The skill executes commands on remote target servers via SSH using the paramiko library. This is the intended behavior for monitoring Ascend NPUs, managing containers, and performing system administration tasks.
  • [PROMPT_INJECTION]: The skill incorporates a robust CommandValidator that blocks dangerous shell patterns (such as fork bombs) and requires user confirmation for sensitive operations like system reboots, disk formatting, or file deletions. This acts as a mitigation against malicious instructions.
  • [DATA_EXFILTRATION]: No signs of data exfiltration were detected. Network activity is restricted to established SSH tunnels between the agent environment and the user-specified target servers.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 09:10 AM
Security Audit — agent-trust-hub — huawei-cloud-ascend-remote-connect